ZyXEL Communications ZLD 186

Chapter 22 IDP Commands

Table 103 Editing/Creating Anomaly Profiles (continued)

COMMAND	DESCRIPTION
[no] http-inspection {http-xxx} activate	Activates or deactivates http-inspection options where
	http-xxx = {ascii-encoding u-encoding bare-byte-
	unicode-encoding base36-encoding utf-8-encoding
	iis-unicode-codepoint-encoding multi-slash-encoding
	iis-backslash-evasion self-directory-traversal
	directory-traversal apache-whitespace non-rfc-http-
	delimiter non-rfc-defined-char oversize-request-uri-
	directory oversize-chunk-encoding webroot-
	directory-traversal}

http-inspection {http-xxx} log [alert]	Sets http-inspection log or alert.
no http-inspection {http-xxx} log	Deactivates http-inspection logs.
[no] http-inspection {http-xxx} action {drop	Sets http-inspection action
reject-sender reject-receiver reject-both}}
[no] tcp-decoder {tcp-xxx} activate	Activates or deactivates tcp decoder options where
	{tcp-xxx} = {undersize-len undersize-offset
	oversize-offset bad-length-options truncated-options
	ttcp-detected obsolete-options experimental-
	options}

tcp-decoder {tcp-xxx} log [alert]	Sets tcp decoder log or alert options.
no tcp-decoder {tcp-xxx} log	Deactivates tcp decoder log or alert options.
[no] tcp-decoder {tcp-xxx} action {drop reject-	Sets tcp decoder action
sender reject-receiver reject-both}}
[no] udp-decoder {truncated-header undersize-len	Activates or deactivates udp decoder options
oversize-len} activate
udp-decoder {truncated-header undersize-len	Sets udp decoder log or alert options.
oversize-len} log [alert]
no udp-decoder {truncated-header undersize-len	Deactivates udp decoder log options.
oversize-len} log
udp-decoder {truncated-header undersize-len	Sets udp decoder action
oversize-len} action {drop reject-sender
reject-receiver reject-both}
no udp-decoder {truncated-header undersize-len	Deactivates udp decoder actions.
oversize-len} action
[no] icmp-decoder {truncated-header truncated-	Activates or deactivates icmp decoder options
timestamp-header truncated-address-header}
activate
icmp-decoder {truncated-header truncated-	Sets icmp decoder log or alert options.
timestamp-header truncated-address-header} log
[alert]
no icmp-decoder {truncated-header truncated-	Deactivates icmp decoder log options.
timestamp-header truncated-address-header} log
icmp-decoder {truncated-header truncated-	Sets icmp decoder action
timestamp-header truncated-address-header}
action {drop reject-sender reject-receiver
reject-both}}
no icmp-decoder {truncated-header truncated-	Deactivates icmp decoder actions.
timestamp-header truncated-address-header}
action
show idp anomaly profile scan-detection [all details]	Shows all scan-detection settings of the specified IDP
	profile.

186
186	ZyWALL (ZLD) CLI Reference Guide