ZyXEL Communications ZyWall 110 User Manual page 489
Security firewalls
Hide thumbs
Also See for ZyWall 110:
- User manual (1090 pages) ,
- Handbook (749 pages) ,
- Handbook & instructions (255 pages)
Table of Contents
Advertisement
Table 202 Configuration > UTM Profile> IDP > Profile > Add > Group View (continued)
LABEL
DESCRIPTION
Switch to query
Click this button to go to a screen where you can search for signatures by criteria such as
view
name, ID, severity, attack type, vulnerable attack platforms, service category, log options
or actions.
Severity Level
Select a severity level and these use the icons to enable/disable and configure logs and
actions for all signatures of that level.
Signature
Group
Activate
To turn on an entry, select it and click Activate.
Inactivate
To turn off an entry, select it and click Inactivate.
Log
To edit an item's log option, select it and use the Log icon. These are the log options:
no: Select this option on an individual signature or a complete service group to have the
ZyWALL/USG create no log when a packet matches a signature(s).
log: Select this option on an individual signature or a complete service group to have the
ZyWALL/USG create a log when a packet matches a signature(s).
log alert: An alert is an e-mailed log for more serious events that may need more
immediate attention. They also appear in red in the Monitor > Log screen. Select this
option to have the ZyWALL/USG send an alert when a packet matches a signature(s).
Action
To edit what action the ZyWALL/USG takes when a packet matches a signature, select the
signature and use the Action icon.
none: Select this action on an individual signature or a complete service group to have the
ZyWALL/USG take no action when a packet matches the signature(s).
drop: Select this action on an individual signature or a complete service group to have the
ZyWALL/USG silently drop a packet that matches the signature(s). Neither sender nor
receiver are notified.
reject-sender: Select this action on an individual signature or a complete service group to
have the ZyWALL/USG send a reset to the sender when a packet matches the signature. If
it is a TCP attack packet, the ZyWALL/USG will send a packet with a 'RST' flag. If it is an
ICMP or UDP attack packet, the ZyWALL/USG will send an ICMP unreachable packet.
reject-receiver: Select this action on an individual signature or a complete service group
to have the ZyWALL/USG send a reset to the receiver when a packet matches the
signature. If it is a TCP attack packet, the ZyWALL/USG will send a packet with an a 'RST'
flag. If it is an ICMP or UDP attack packet, the ZyWALL/USG will do nothing.
reject-both: Select this action on an individual signature or a complete service group to
have the ZyWALL/USG send a reset to both the sender and receiver when a packet matches
the signature. If it is a TCP attack packet, the ZyWALL/USG will send a packet with a 'RST'
flag to the receiver and sender. If it is an ICMP or UDP attack packet, the ZyWALL/USG will
send an ICMP unreachable packet.
#
This is the entry's index number in the list.
Status
The activate (light bulb) icon is lit when the entry is active and dimmed when the entry is
inactive.
Message
This displays the message of the violation of IDP Profile rule.
SID
This displays the Signature ID number. The SID is a numerical field in the 9000000 to
9999999 range.
Chapter 30 IDP
ZyWALL/USG Series User's Guide
489
- Quick Links:
- Web Configurator
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall 110
Related Products for ZyXEL Communications ZyWall 110
- ZyXEL Communications 11Mbps Wireless LAN PC Card
- ZyXEL Communications Prestige 128L
- ZyXEL Communications Internet Security Gateway 10~100 Series
- ZyXEL Communications PRESTIGE 128
- ZyXEL Communications Version 1.03
- ZyXEL Communications Prestige 128Plus
- ZyXEL Communications USG FLEX 100H
- ZyXEL Communications 100230