Chapter 30 IDP

IDP Profiles

An IDP profile is a set of related IDP signatures that you can activate as a set and configure common log and action settings. You can apply IDP profiles to traffic flowing from one zone to another. For example, apply the default LAN_IDP profile to any traffic going to the LAN zone in order to protect your LAN computers.

Note: You can only apply one IDP profile to one traffic flow.

Base IDP Profiles

Base IDP profiles are templates that you use to create new IDP profiles.The ZyWALL comes with several base profiles. See Table 143 on page 484 for details on base profiles.

IDP Policies

An IDP policy refers to application of an IDP profile to a traffic flowing from one zone to another.

Applying Your IDP Configuration

Changes to the ZyWALL’s IDP settings affect new sessions (not the sessions that already existed before you applied the changed settings).

Finding Out More

See Section 6.5.19 on page 103 for IDP prerequisite information.

See Section 31.1 on page 513 for anomaly detection and protection.

See Section 30.9 on page 510 for more information on network-based intrusions

See Section 30.6.2 on page 490 for a list of attacks that the ZyWALL can protect against.

See Section 30.7 on page 497 for how to create your own custom IDP signatures.

30.1.3Before You Begin

Register for a trial IDP subscription in the Registration screen (see Section 10.2 on page 211). This gives you access to free signature updates. This is important as new signatures are created as new attacks evolve. When the trial subscription expires, purchase and enter a license key using the same screens to continue the subscription.

Configure zones on the ZyWALL - see Chapter 15 on page 311 for more information.

480

 

ZyWALL USG 50 User’s Guide