ZyXEL Communications USG 2000 User Manual
Chapter 34 IDP
ZyWALL USG 2000 User’s Guide
566
Remove
Select an entry and click this to delete it.
Activate
To turn on an entry, select it and click Activate.
Inactivate
To turn off an entry, select it and click Inactivate.
Move
To change an entry’s position in the numbered list, select it and click
Move to display a field to type a number for where you want to put
that entry and press [ENTER] to move the entry to the number that
you typed.
Move to display a field to type a number for where you want to put
that entry and press [ENTER] to move the entry to the number that
you typed.
#
This is the entry’s index number in the list.
Priority
IDP policies are applied in order of priority.
Status
The activate (light bulb) icon is lit when the entry is active and
dimmed when the entry is inactive.
dimmed when the entry is inactive.
From, To
This is the direction of travel of packets to which an IDP profile is
bound. Traffic direction is defined by the zone the traffic is coming
from and the zone the traffic is going to.
bound. Traffic direction is defined by the zone the traffic is coming
from and the zone the traffic is going to.
Note: Depending on your network topology and traffic load,
binding every packet direction to an IDP profile may affect
the ZyWALL’s performance.
the ZyWALL’s performance.
Use the From field to specify the zone from which the traffic is
coming. Use the To field to specify the zone to which the traffic is
going.
coming. Use the To field to specify the zone to which the traffic is
going.
From LAN To LAN means packets traveling from a computer on one
LAN subnet to a computer on another LAN subnet via the ZyWALL’s
LAN zone interfaces. The ZyWALL does not check packets traveling
from a LAN computer to another LAN computer on the same subnet.
LAN subnet to a computer on another LAN subnet via the ZyWALL’s
LAN zone interfaces. The ZyWALL does not check packets traveling
from a LAN computer to another LAN computer on the same subnet.
From WAN To WAN means packets that come in from the WAN
zone and the ZyWALL routes back out through the WAN zone.
zone and the ZyWALL routes back out through the WAN zone.
IDP Profile
This field shows which IDP profile is bound to which traffic direction.
Select an IDP profile to apply to the entry’s traffic direction.
Configure the IDP profiles in the IDP profile screens.
Select an IDP profile to apply to the entry’s traffic direction.
Configure the IDP profiles in the IDP profile screens.
License
You need to create an account at myZyXEL.com, register your
ZyWALL and then subscribe for IDP in order to be able to download
new packet inspection signatures from myZyXEL.com. There’s an
initial free trial period for IDP after which you must pay to subscribe
to the service. See the Registration chapter for details.
ZyWALL and then subscribe for IDP in order to be able to download
new packet inspection signatures from myZyXEL.com. There’s an
initial free trial period for IDP after which you must pay to subscribe
to the service. See the Registration chapter for details.
License Status
Licensed, Not Licensed or Expired indicates whether you have
subscribed for IDP services or not or your registration has expired.
subscribed for IDP services or not or your registration has expired.
License Type
This field shows Trial, Standard or None depending on whether
you subscribed to the IDP trial, bought an iCard for IDP service or
neither.
you subscribed to the IDP trial, bought an iCard for IDP service or
neither.
Apply new
Registration
This link appears if you have not registered for the service or only
have the trial registration. Click this link to go to the screen where
you can register for the service.
have the trial registration. Click this link to go to the screen where
you can register for the service.
Signature
Information
Information
The following fields display information on the current signature set
that the ZyWALL is using.
that the ZyWALL is using.
Table 150 Configuration > Anti-X > IDP > General (continued)
LABEL
DESCRIPTION