Filter
Top Products
Chapter 14 IDP Commands
ZyWALL (ZyNOS) CLI Reference Guide
94
idp config dir wlan-dmz <on|off> Configures the protected traffic direction setting. R+B
idp config dir wlan-lan <on|off> Configures the protected traffic direction setting. R+B
idp config dir wlan-wan <on|off> Configures the protected traffic direction setting. R+B
idp config dir wlan-wan2
<on|off>
Configures the protected traffic direction setting. R+B
idp config dir wlan-wlan
<on|off>
Configures the protected traffic direction setting. R+B
idp config enable <on|off> Turns IDP on or off. R+B
idp config save Saves the enable setting and the protected traffic directions. R+B
idp config tune config l4cpmssck
<on|off>
Enables or disables the TCP packet header MSS check. This
has the ZyWALL not check invalid packets, which can reduce
the number of false alarms.
R+B
idp config tune config
l4Icmpcjsum <on|off>
Enables or disables the ICMP packet header checksum check.
This has the ZyWALL not check invalid packets, which can
reduce the number of false alarms.
R+B
idp config tune config l4Smtpasm
<on|off>
Enables or disables TCP assembly for SMTP. Disabling packet
assembly can enhance throughput, but may allow more
intrusions to go undetected.
R+B
idp config tune config
l4Tcpcksum <on|off>
Enables or disables the TCP packet header checksum check.
This has the ZyWALL not check invalid packets, which can
reduce the number of false alarms.
R+B
idp config tune config
l4Tcpwindowck <on|off>
Enables or disables the TCP packet window check. This has
the ZyWALL not check invalid packets, which can reduce the
number of false alarms.
R+B
idp config tune config
l4Udpcksum <on|off>
Enables or disables the UDP packet header checksum check.
This has the ZyWALL not check invalid packets, which can
reduce the number of false alarms.
R+B
idp config tune config l7Ftpasm
<on|off>
Enables or disables TCP assembly for FTP. Disabling packet
assembly can enhance throughput, but may allow more
intrusions to go undetected.
R+B
idp config tune config
l7Ftpdataasm <on|off>
Enables or disables TCP assembly for FTPDATA. Disabling
packet assembly can enhance throughput, but may allow more
intrusions to go undetected.
R+B
idp config tune config l7Httpasm
<on|off>
Enables or disables TCP assembly for HTTP. Disabling packet
assembly can enhance throughput, but may allow more
intrusions to go undetected.
R+B
idp config tune config
l7Otherasm <on|off>
Enables or disables TCP assembly for other protocols.
Disabling packet assembly can enhance throughput, but may
allow more intrusions to go undetected.
R+B
idp config tune config l7Pop3asm
<on|off>
Enables or disables TCP assembly for POP3. Disabling packet
assembly can enhance throughput, but may allow more
intrusions to go undetected.
R+B
idp config tune display Displays the tune configuration. R+B
idp config tune load Loads the tune configuration. IDP tuning allows you to enable or
disable packet header checks and packet assembly.
R+B
idp config tune save Saves the tune configuration. R+B
idp display Displays whether or not IDP is enabled and what traffic flows
the ZyWALL checks for intrusions.
R+B
Table 40 IDP Commands (continued)
COMMAND DESCRIPTION M