COMMAND |
| DESCRIPTION | M |
idp config | dir | Configures the protected traffic direction setting. | R+B |
idp config | dir | Configures the protected traffic direction setting. | R+B |
idp config | dir | Configures the protected traffic direction setting. | R+B |
idp config | dir | Configures the protected traffic direction setting. | R+B |
<onoff> |
|
|
|
idp config dir | Configures the protected traffic direction setting. | R+B | |
<onoff> |
|
|
|
idp config enable <onoff> | Turns IDP on or off. | R+B | |
idp config save | Saves the enable setting and the protected traffic directions. | R+B | |
idp config tune config l4cpmssck | Enables or disables the TCP packet header MSS check. This | R+B | |
<onoff> |
| has the ZyWALL not check invalid packets, which can reduce |
|
|
| the number of false alarms. |
|
idp config tune config | Enables or disables the ICMP packet header checksum check. | R+B | |
l4Icmpcjsum <onoff> | This has the ZyWALL not check invalid packets, which can |
| |
|
| reduce the number of false alarms. |
|
idp config tune config l4Smtpasm | Enables or disables TCP assembly for SMTP. Disabling packet | R+B | |
<onoff> |
| assembly can enhance throughput, but may allow more |
|
|
| intrusions to go undetected. |
|
idp config tune config | Enables or disables the TCP packet header checksum check. | R+B | |
l4Tcpcksum <onoff> | This has the ZyWALL not check invalid packets, which can |
| |
|
| reduce the number of false alarms. |
|
idp config tune config | Enables or disables the TCP packet window check. This has | R+B | |
l4Tcpwindowck <onoff> | the ZyWALL not check invalid packets, which can reduce the |
| |
|
| number of false alarms. |
|
idp config tune config | Enables or disables the UDP packet header checksum check. | R+B | |
l4Udpcksum <onoff> | This has the ZyWALL not check invalid packets, which can |
| |
|
| reduce the number of false alarms. |
|
idp config tune config l7Ftpasm | Enables or disables TCP assembly for FTP. Disabling packet | R+B | |
<onoff> |
| assembly can enhance throughput, but may allow more |
|
|
| intrusions to go undetected. |
|
idp config tune config | Enables or disables TCP assembly for FTPDATA. Disabling | R+B | |
l7Ftpdataasm <onoff> | packet assembly can enhance throughput, but may allow more |
| |
|
| intrusions to go undetected. |
|
idp config tune config l7Httpasm | Enables or disables TCP assembly for HTTP. Disabling packet | R+B | |
<onoff> |
| assembly can enhance throughput, but may allow more |
|
|
| intrusions to go undetected. |
|
idp config tune config | Enables or disables TCP assembly for other protocols. | R+B | |
l7Otherasm <onoff> | Disabling packet assembly can enhance throughput, but may |
| |
|
| allow more intrusions to go undetected. |
|
idp config tune config l7Pop3asm | Enables or disables TCP assembly for POP3. Disabling packet | R+B | |
<onoff> |
| assembly can enhance throughput, but may allow more |
|
|
| intrusions to go undetected. |
|
idp config tune display | Displays the tune configuration. | R+B | |
idp config tune load | Loads the tune configuration. IDP tuning allows you to enable or | R+B | |
|
| disable packet header checks and packet assembly. |
|
idp config tune save | Saves the tune configuration. | R+B | |
idp display |
| Displays whether or not IDP is enabled and what traffic flows | R+B |
|
| the ZyWALL checks for intrusions. |
|
94 |
| |
ZyWALL (ZyNOS) CLI Reference Guide |
| |
|
|
|