Filter
Top Products
ZyWALL IDP 10 Quick Start Guide
17
4. Enable/disable the stealth function on either or both the LAN and WAN ports. The MGMT
port has no stealth function. Stealth enabled on a port means that the ZyWALL IDP drops all
incoming packets destined for the ZyWALL IDP received on that port with no response to the
sender.
When you enable Stealth on a port, you cannot perform management via that
port.
Figure 14 Wizard– Stealth Setting
When Stealth is enabled on a port,
the ZyWALL IDP doesn’t respond
to ICMP requests such as Ping (no
ICMP_ECHO_REPLY packets).
The ZyWALL IDP doesn’t send
TCP_RST packets if a TCP
connection is blocked nor does it
send ICMP_PORT
UNREACHABLE packets for UDP
requests or forwarded traffic.
Click Next to continue.
5. Select whether you want the ZyWALL IDP to detect and take action, just detect and send alerts
about attacks or neither in the following screen.
Monitor state may be advisable when you first deploy the ZyWALL IDP in your network. As
each network is different, in Inline mode the ZyWALL IDP may initially block valid traffic
(“false positive”) or allow invalid traffic (“false negative”). When “false positives” and “false
negatives” have been identified and corrected, you should then change to Inline.