ZyXEL Communications USG-50 - V2.21 ED 1 Guía de usuario Pagina 189
- Pagina / 390
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Chapter 22 IDP Commands
ZyWALL (ZLD) CLI Reference Guide
189
Note: You CANNOT change the base profile later!
Table 103 Editing/Creating Anomaly Profiles
COMMAND DESCRIPTION
idp anomaly newpro [base {all | none}] Creates a new IDP anomaly profile called newpro.
newpro uses the base profile you specify. Enters sub-
command mode. All the following commands relate to
the new profile. Use
exit to quit sub-command mode.
scan-detection sensitivity {low | medium | high} Sets scan-detection sensitivity.
no scan-detection sensitivity Clears scan-detection sensitivity. The default sensitivity
is medium.
scan-detection block-period <1..3600> Sets for how many seconds the ZyWALL blocks all
packets from being sent to the victim (destination) of a
detected anomaly attack.
[no] scan-detection {tcp-xxx} {activate | log
[alert] | block}
Activates TCP scan detection options where {tcp-xxx} =
{tcp-portscan | tcp-decoy-portscan | tcp-portsweep |
tcp-distributed-portscan | tcp-filtered-portscan | tcp-
filtered-decoy-portscan | tcp-filtered-distributed-
portscan | tcp-filtered-portsweep}. Also sets TCP scan-
detection logs or alerts and blocking.
no deactivates
TCP scan detection, its logs, alerts or blocking.
[no] scan-detection {udp-xxx} {activate | log
[alert] | block}
Activates or deactivates UDP scan detection options
where {udp-xxx} = {udp-portscan | udp-decoy-
portscan | udp-portsweep | udp-distributed-portscan |
udp-filtered-portscan | udp-filtered-decoy-portscan |
udp-filtered-distributed-portscan | udp-filtered-
portsweep}. Also sets UDP scan-detection logs or alerts
and blocking.
no deactivates UDP scan detection, its
logs, alerts or blocking.
[no] scan-detection {ip-xxx} {activate | log
[alert] | block}
Activates or deactivates IP scan detection options where
{ip-xxx} = {ip-protocol-scan | ip-decoy-protocol-scan |
ip-protocol-sweep | ip-distributed-protocol-scan | ip-
filtered-protocol-scan | ip-filtered-decoy-protocol-scan |
ip-filtered-distributed-protocol-scan | ip-filtered-
protocol-sweep}. Also sets IP scan-detection logs or
alerts and blocking.
no deactivates IP scan detection,
its logs, alerts or blocking.
[no] scan-detection {icmp-sweep | icmp-filtered-
sweep} {activate | log [alert] | block}
Activates or deactivates ICMP scan detection options.
Also sets ICMP scan-detection logs or alerts and
blocking.
no deactivates ICMP scan detection, its logs,
alerts or blocking.
[no] scan-detection open-port {activate | log
[alert] | block}
Activates or deactivates open port scan detection
options. Also sets open port scan-detection logs or
alerts and blocking.
no deactivates open port scan
detection, its logs, alerts or blocking.
flood-detection block-period <1..3600> Sets for how many seconds the ZyWALL blocks all
packets from being sent to the victim (destination) of a
detected anomaly attack.
[no] flood-detection {tcp-flood | udp-flood | ip-
flood | icmp-flood} {activate | log [alert] |
block}
Activates or deactivates TCP, UDP, IP or ICMP flood
detection. Also sets flood detection logs or alerts and
blocking.
no deactivates flood detection, its logs, alerts
or blocking.
- USG ZyWALL Series 1
- Intended Audience 3
- How To Use This Guide 3
- Document Conventions 4
- Document Conventions 5
- Contents Overview 7
- Table of Contents 10
- Table of Contents 11
- Chapter 38 18
- Introduction 21
- CHAPTER 1 23
- 1.2.1 Console Port 24
- Router(config)# 26
- 1.2.3 Telnet 27
- 1.2.4 SSH (Secure SHell) 27
- 1.5 CLI Modes 29
- 1.6 Shortcuts and Help 30
- 1.7 Input Values 32
- TAG # VALUES LEGAL VALUES 33
- 1.8 Ethernet Interfaces 35
- 1.10 Logging Out 36
- CHAPTER 2 37
- 2.1.1 Debug Commands 38
- Reference 41
- CHAPTER 3 43
- CHAPTER 4 45
- Chapter 4 Status 46
- Chapter 4 Status 47
- CHAPTER 5 49
- 5.2 Registration Commands 50
- 5.2.1 Command Examples 51
- 5.3 Country Code 52
- Chapter 5 Registration 56
- CHAPTER 6 57
- Chapter 6 Interfaces 62
- Chapter 6 Interfaces 63
- 6.2.2 DHCP Setting Commands 67
- 6.2.4 RIP Commands 72
- 6.2.5 OSPF Commands 72
- 6.3.2 Port Grouping Commands 76
- 6.6.1 Cellular Status 82
- Table 28 Cellular Status 83
- STATUS DESCRIPTION 83
- 6.9 WLAN Specific Commands 87
- 6.9.1 WLAN General Commands 88
- CHAPTER 7 97
- 7.4 Trunk Commands Summary 98
- 7.5 Trunk Command Examples 99
- 7.6 Link Sticking 100
- Chapter 7 Trunks 102
- CHAPTER 8 103
- Chapter 8 Route 105
- COMMAND DESCRIPTION 105
- Chapter 8 Route 106
- 8.4 Static Route Commands 109
- 8.3 IP Static Route 109
- CHAPTER 9 111
- 9.2.1 RIP Commands 112
- 9.2.2 General OSPF Commands 112
- 9.2.3 OSPF Area Commands 113
- 9.2.4 Virtual Link Commands 113
- CHAPTER 10 115
- 10.2 Zone Commands Summary 116
- 10.2.1 Zone Command Examples 117
- Chapter 10 Zones 118
- CHAPTER 11 119
- 11.2 DDNS Commands Summary 120
- Chapter 11 DDNS 121
- Chapter 11 DDNS 122
- CHAPTER 12 123
- Chapter 12 Virtual Servers 124
- 192.168.3.7 126
- CHAPTER 13 127
- 13.2 HTTP Redirect Commands 128
- Chapter 13 HTTP Redirect 129
- Chapter 13 HTTP Redirect 130
- CHAPTER 14 131
- 14.2 ALG Commands 132
- 14.3 ALG Commands Example 133
- Chapter 14 ALG 134
- CHAPTER 15 135
- Chapter 15 IP/MAC Binding 136
- IP/MAC binding status 136
- CHAPTER 16 137
- 16.2 Firewall Commands 138
- Chapter 16 Firewall 139
- Chapter 16 Firewall 140
- 16.2.1 Firewall Sub-Commands 141
- 16.3 Session Limit Commands 143
- means all IP addresses 144
- CHAPTER 17 145
- 17.2.1 IKE SA Commands 147
- Chapter 17 IPSec VPN 150
- 17.2.6 SA Monitor Commands 153
- CHAPTER 18 155
- 18.2.1 SSL VPN Commands 156
- Chapter 18 SSL VPN 159
- Chapter 18 SSL VPN 160
- CHAPTER 19 161
- 19.3 Policy Route 162
- 19.4 L2TP VPN Commands 163
- 19.5 L2TP VPN Example 164
- CHAPTER 20 167
- 20.2.2.1 Rule Sub-commands 169
- Chapter 20 Application Patrol 174
- CHAPTER 21 177
- Chapter 21 Anti-Virus 179
- 21.2.3 White and Black Lists 180
- 21.4 Anti-virus Statistics 183
- Chapter 21 Anti-Virus 184
- CHAPTER 22 185
- 22.3 IDP Profile Commands 186
- old_profile new_profile 187
- Chapter 22 IDP Commands 189
- Chapter 22 IDP Commands 190
- 22.3.6 Signature Search 192
- If you want to 194
- 22.4 IDP Custom Signatures 195
- 22.5 Update IDP Signatures 199
- 22.6 IDP Statistics 200
- CHAPTER 23 203
- Chapter 23 Content Filtering 204
- LABEL DESCRIPTION 204
- Chapter 5 on page 49) 211
- 8 Activate the customization 212
- Chapter 23 Content Filtering 213
- CHAPTER 24 215
- Chapter 24 Anti-Spam 217
- 24.2.3 White and Black Lists 218
- Table 122 DNSBL Commands 221
- 24.2.4.1 DNSBL Example 222
- 24.3 Anti-Spam Statistics 223
- Chapter 24 Anti-Spam 224
- CHAPTER 25 225
- 25.1.1 Before You Begin 226
- #%^*={}:,.~ characters 228
- VRRP Group Overview 229
- 25.6.1 VRRP Group Commands 230
- Chapter 25 Device HA 232
- CHAPTER 26 233
- 26.2.1 User Commands 234
- 26.2.2 User Group Commands 235
- 26.2.3 User Setting Commands 235
- Chapter 26 User/Group 236
- Chapter 26 User/Group 237
- CHAPTER 27 241
- Chapter 27 Addresses 243
- ()+/:=?!*#@$_% 245
- Chapter 27 Addresses 246
- CHAPTER 28 247
- Chapter 28 Services 250
- CHAPTER 29 251
- CHAPTER 30 253
- 30.2.2 ldap-server Commands 254
- CHAPTER 31 259
- 31.3 test aaa Command 260
- CHAPTER 32 263
- characters 264
- Chapter 32 Certificates 265
- Chapter 32 Certificates 266
- CHAPTER 33 268
- CHAPTER 34 270
- Chapter 34 SSL Application 271
- Chapter 34 SSL Application 272
- CHAPTER 35 273
- Requirements 274
- Chapter 35 Endpoint Security 275
- Chapter 35 Endpoint Security 276
- CHAPTER 36 280
- CHAPTER 37 283
- 37.3 Host Name Commands 285
- 37.4 Time and Date 285
- 37.5 Console Port Speed 286
- 37.6 DNS Overview 287
- 37.6.3 DNS Command Example 288
- CHAPTER 38 289
- 38.3 HTTP/HTTPS Commands 290
- 38.4 SSH 292
- 38.4.3 SSH Commands 293
- 38.4.4 SSH Command Examples 293
- 38.5 Telnet 294
- 38.6 Telnet Commands 294
- 38.7 Configuring FTP 295
- 38.8 SNMP 296
- 38.8.3 SNMP Commands 297
- 38.9 ICMP Filter 298
- 38.10 Dial-in Management 298
- 38.10.1 AT Command Strings 299
- 38.10.2 DTR Signal 299
- 38.10.3 Response Strings 299
- 38.11 Vantage CNM 300
- 38.12 Language Commands 301
- 38.13 IPv6 Commands 302
- CHAPTER 39 303
- Chapter 39 File Manager 307
- 39.6 FTP File Transfer 308
- 1. Boot Module 310
- 2. Recovery Image 310
- 3. Firmware 310
- Firmware 311
- CHAPTER 40 321
- 40.1.1 Log Entries Commands 322
- 40.1.2 System Log Commands 322
- 40.1.3 Debug Log Commands 323
- Chapter 40 Logs 325
- CHAPTER 41 327
- 41.1.3 Session Commands 328
- 41.3 Reboot 332
- CHAPTER 42 333
- Chapter 42 Session Timeout 334
- CHAPTER 43 335
- Chapter 43 Diagnostics 336
- CHAPTER 44 337
- CHAPTER 45 341
- Chapter 45 Packet Flow Filter 344
- CHAPTER 46 345
- Chapter 46 Maintenance Tools 346
- CHAPTER 47 351
- 47.3 Application Watchdog 352
- Chapter 47 Watchdog Timer 353
- Chapter 47 Watchdog Timer 354
- 383
Relacionado con productos y manuales para Gateways / Controladores ZyXEL Communications USG-50 - V2.21 ED 1
(2 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.031 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales