I. Application Patrol Faq; I01. What Is Application Patrol; I02. What Applications Can The Application Patrol Function Inspect; I03. Why Does The Application Patrol Fail To Drop/Reject Invalid Access For Some Applications - ZyXEL Communications ZYWALL 1050 Support Notes
Internet security appliance
Hide thumbs
Also See for ZYWALL 1050:
- User manual (892 pages) ,
- Support notes (345 pages) ,
- Cli reference manual (284 pages)
Table of Contents
Advertisement
ZyWALL 1050 Support Notes
I. Application Patrol FAQ
I01. What is Application Patrol?
Application Patrol is to inspect and determine the application type accurately by looking at the
application payload, OSI layer 7, regardless of the port numbers.
.
I02. What applications can the Application Patrol function inspect?
The Application Patrol on ZyWALL 1050 supports four categories of application protocols at
the time of writing.
1. General protocols -- HTTP, FTP, SMTP, POP3 and IRC.
2. IM category -- MSN, Yahoo Messenger, AOL-ICQ, QQ
3. P2P category -- BT, eDonkey, Fasttrack, Gnutella, Napster, H.323, SIP, Soulseek
4. Streaming Protocols -- RTSP (Real Time Streaming Protocol)
Note:
The applications support is not configurable (add or remove).
I03. Why does the application patrol fail to drop/reject invalid access for some
applications?
There are two possible reasons for this problem. One is that this application version is not
supported by the Application Patrol (please refer to Application Patrol Support List). The other
is that the Application Patrol needs several session packets for the application identification.
After the session is identified successfully (or it can't be identified), specified action is taken.
If the session is terminated before being identified, application patrol won't take any action.
But it seldom happens.
I04. What is the difference for Portless and Port-based settings in the
287
All contents copyright (c) 2006 ZyXEL Communications Corporation.
Advertisement
Table of Contents
