ZyXEL Communications ZyWALL 1000 29.2 Traffic Directions and Profiles, 29.3Configuring IDP General, 29.1.4 Signatures

Chapter 29 IDP

29.1.4 Signatures

If a packet matches a signature, the action specified by the signature is taken. You can change the default signature actions in the profile screens.

29.2 Traffic Directions and Profiles

A zone is a combination of ZyWALL interfaces and VPN connections for security. See the zone chapter for details on zones and the interfaces chapter for details on interfaces. Traffic direction is defined by the zone the traffic is coming from and the zone the traffic is going to.

An IDP profile is a set of IDP rules with configured activation, log and action settings. The ZyWALL comes with default profiles that you can bind to traffic directions. For example, by default, the default LAN_IDP profile is bound to any traffic going to the LAN zone. You could use this to protect your LAN computers.

You can also create your own IDP profiles from base profiles. See Table 129 on page 422 for details on base profiles.

"You can only bind one profile to one traffic direction.

29.3Configuring IDP General

Click Anti-X > IDP > General to open this screen. Use this screen to turn IDP on or off, bind IDP profiles to traffic directions, and view registration and signature information.

"You must register in order to use packet inspection signatures. See the Registration screens.

If you try to enable IDP when the IDP service has not yet been registered, a warning screen displays and IDP is not enabled.