ZyXEL Communications ZyWall USG 2000 User Manual page 511
Unified security gateway
Hide thumbs
Also See for ZyWall USG 2000:
- User manual (1114 pages) ,
- Manual (964 pages) ,
- Support notes (227 pages)
Table of Contents
Advertisement
Table 153 Anti-X > IDP > Custom Signatures > Add/Edit (continued)
LABEL
Fragmentation
Fragmentation
Offset
Time to Live
IP Options
Same IP
Transport Protocol
Transport
Protocol: TCP
Port
ZyWALL USG 2000 User's Guide
DESCRIPTION
A fragmentation flag identifies whether the IP datagram should be
fragmented, not fragmented or is a reserved bit. Some intrusions can
be identified by this flag. Select the check box and then select the
flag that the intrusion uses.
When an IP datagram is fragmented, it is reassembled at the final
destination. The fragmentation offset identifies where the fragment
belongs in a set of fragments. Some intrusions use an invalid
Fragmentation Offset number. Select the check box, select Equal,
Smaller or Greater and then type in a number
Time to Live is a counter that decrements every time it passes
through a router. When it reaches zero, the datagram is discarded.
Usually it's used to set an upper limit on the number of routers a
datagram can pass through. Some intrusions can be identified by the
number in this field. Select the check box, select Equal, Smaller or
Greater and then type in a number.
IP options is a variable-length list of IP options for a datagram that
define IP Security Option, IP Stream Identifier, (security and
handling restrictions for the military), Record Route (have each
router record its IP address), Loose Source Routing (specifies a list
of IP addresses that must be traversed by the datagram), Strict
Source Routing (specifies a list of IP addresses that must ONLY be
traversed by the datagram), Timestamp (have each router record
its IP address and time), End of IP List and No IP Options. IP
Options can help identify some intrusions. Select the check box,
then select an item from the list box that the intrusion uses
Select the check box for the signature to check for packets that have
the same source and destination IP addresses.
The following fields vary depending on whether you choose TCP,
UDP or ICMP.
Select the check box and then enter the source and destination TCP
port numbers that will trigger this signature.
Chapter 31 IDP
511
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall USG 2000
Related Products for ZyXEL Communications ZyWall USG 2000
- ZyXEL Communications ZYWALL USG 20W
- ZyXEL Communications USG210
- ZyXEL Communications ZyWall USG20W-VPN
- ZyXEL Communications ZyWall USG20-VPN
- ZyXEL Communications ZYWALL USG 300
- ZyXEL Communications USG-50 - V2.21 ED 1
- ZyXEL Communications USG-100@USG-200 - V2.20 ED 2
- ZyXEL Communications USG-300 - V2.20 ED 2