ZyXEL Communications zywall idp 10 User Manual

IDP Support Notes

Is IDP able to investigate VPN traffic?

No, VPN traffics are encrypted, IDP is not able to decrypted VPN traffics, and thus it

could not investigate VPN packets.

Product FAQ

What is ZyWALL IDP10?

ZyWALL IDP10 functions as a plug and play bridge device filtering malicious traffic

from attacking your networks. With continuous signatures update, users can get free

from network-based intrusions.

Why do I need ZyWALL IDP, if I already have ZyWALL 5/35/70?

ZyWALL 5/35/70 work as layer 3/4 firewalls, which can block traffic based on

source/destination IP addresses, protocol number, and source/destination ports. With

stateful packet inspection, the response traffic can be successfully forwarded while

traffic initiated from outside can be blocked. And ZyWALL 5/35/70 can protect your

network from network based DoS attacks, such as TCP synch flood, ping of death, IP

spoofing…etc.

A common misunderstanding is that firewall recognizes all kinds of attacks and can

block them. However, attacks nowadays may flow into trusted network through

legitimate ports forwarded on firewall devices.

Located at the boundary to your network, firewall can be a gate-keeper from your

network to Internet; however, it’s not enough to protect your network from being

hacked inside the network.

Some reasons for adding IDS to your firewall are:

• Double-checks mis-configured firewalls.
• Catches attacks that firewalls legitimate allow through (such as attacks against

web servers).

• Catches attempts that fail.
• Catches insider hacking.

Will I lose network access if my ZyWALL IDP 10 lost power or