ZyXEL Communications ZyWALL 1000 User Manual

 Chapter 29 IDP

ZyWALL USG 1000 User’s Guide

Figure 321   Anti-X > IDP > General > Add

The following table describes the screens in this screen. 

An IDP profile is a set of packet inspection signatures. 
Packet inspection signatures examine packet content for malicious data. Packet inspection 
applies to OSI (Open System Interconnection) layer-4 to layer-7 contents. You need to 
subscribe for IDP service in order to be able to download new signatures.
In general, packet inspection signatures are created for known attacks while anomaly detection 
looks for abnormal behavior (see 

 for information on anomaly 

detection).

The ZyWALL comes with several base profiles. You use base profiles to create new profiles. 
In the Anti-X > IDP > Profile screen, click the Add icon to display the following screen.

Table 128   Anti-X > IDP > General > Add 

Enable

Select this check box to turn on this IDP profile to traffic direction binding.

From

Traffic direction is defined by the zone the traffic is coming from and the zone 

the traffic is going to.
Use the From field to specify the zone from which the traffic is coming.

To

Use the To field to specify the zone to which the traffic is going.

IDP Profile

An IDP profile is a set of IDP rules with configured activation, log and action 

settings. Select an IDP profile to bind to the entry’s traffic direction. Configure 

the IDP profiles in the IDP profile screens. 

OK

Click OK to save your changes. 

Cancel

Click Cancel to exit this screen without saving your changes.