Chapter 20 IDP Commands
ZyWALL (ZLD) CLI Reference Guide
139
20.3.1.1 Example of Global Profile Commands
In this example we rename an IDP signature profile from “old_profile” to “new_profile”,
delete the “bye_profile” and show all base profiles available.
20.3.2 IDP Zone to Zone Rules
Use the following rules to apply IDP profiles to specific directions of packet travel.
Router# configure terminal
Router(config)# idp rename signature old_profile new_profile
Router(config)# no idp signature bye_profile
Router(config)# show idp signature base profile
No. Base Profile Name
==============================================================
1 none
2 all
3 wan
4 lan
5 dmz
Router(config)#
Table 77 IDP Zone to Zone Rule Commands
COMMAND DESCRIPTION
idp {signature| anomaly } rule { append
| <1..32> | insert <1..32> }
Create an IDP signature or anomaly rule and enter the sub-
command mode.
bind profile Binds the IDP profile to the entry’s traffic direction.
no bind Removes the IDP profile’s binding.
[no] from-zone zone_profile Specifies the zone the traffic is coming from. The no
command removes the zone specification.
[no] to-zone zone_profile Specifies the zone the traffic is going to. The no command
removes the zone specification.
[no] activate Turns on the IDP profile to traffic direction binding. The no
command turns it off.
idp {signature| anomaly } rule { delete
<1..32> | move <1..32> to <1..32> }
Remove or move an IDP profile to traffic direction entry.
no idp {signature| anomaly } rule
<1..32>
Removes an IDP profile to traffic direction entry.
show idp {signature| anomaly } rules Displays the IDP zone to zone rules.
To Next Page
Loading...
