This chapter introduces IDP-related commands.
34.1 Overview
Commands mostly mirror web configurator features. It is recommended you use the web
configurator for IDP features such as searching for web signatures, creating/editing an IDP profile
or creating/editing a custom signature. Some web configurator terms may differ from the
command-line equivalent.
Note: The "no" command negates the action or returns it to the default value.
The following table lists valid input for IDP commands.
Table 126 Input Values for IDP Commands
LABEL
zone_profile
idp_profile
34.2 General IDP Commands
34.2.1 IDP Activation
Note: You must register for the IDP/AppPatrol signature service (at least the trial) before
you can use it. See
This table shows the IDP signature, and system-protect activation commands.
Table 127 IDP Activation
COMMAND
[no] idp
{signature |
system-
protect} activate
idp system-protect
deactivate
ZyWALL / USG (ZLD) CLI Reference Guide
DESCRIPTION
The name of a zone. For some ZyWALL / USG models, use up to 31 characters (a-zA-Z0-9_-
). The name cannot start with a number. This value is case-sensitive.
For other ZyWALL / USG models, use pre-defined zone names like DMZ, LAN1, SSL
VPN,IPSec VPN, OPT, and WAN.
The name of an IDP profile. It can consist of alphanumeric characters, the underscore, and
the dash, and it is 1-31 characters long. Spaces are not allowed.
Chapter 5 on page
DESCRIPTION
Enables IDP signatures, anomaly detection, and/or system-protect. IDP signatures use
requires IDP service registration. If you don't have a standard license, you can register for a
once-off trial one.
The
no
Disables system-protect.
C
HAPTER
IDP Commands
49.
command disables the specified service.
3 4
225