Chapter 34 IDP

 

Table 150 Configuration > Anti-X > IDP > General (continued)

 

LABEL

DESCRIPTION

 

Current Version

This field displays the IDP signature set version number. This number

 

 

gets larger as the set is enhanced.

 

 

 

 

Signature

This field displays the number of IDP signatures in this set. This

 

Number

number usually gets larger as the set is enhanced. Older signatures

 

 

and rules may be removed if they are no longer applicable or have

 

 

been supplanted by newer ones.

 

 

 

 

Released Date

This field displays the date and time the set was released.

 

 

 

 

Update

Click this link to go to the screen you can use to download signatures

 

Signatures

from the update server.

 

 

 

 

Apply

Click Apply to save your changes.

 

 

 

 

Reset

Click Reset to return the screen to its last-saved settings.

 

 

 

34.3 Introducing IDP Profiles

An IDP profile is a set of packet inspection signatures.

Packet inspection signatures examine packet content for malicious data. Packet inspection applies to OSI (Open System Interconnection) layer-4 to layer-7 contents. You need to subscribe for IDP service in order to be able to download new signatures.

In general, packet inspection signatures are created for known attacks while anomaly detection looks for abnormal behavior (see Chapter 35 on page 597 for information on anomaly detection).

 

567

ZyWALL USG 2000 User’s Guide