Introducing the zywall idp 10, Introduction, Chapter 1 introducing the zywall idp 10 – ZyXEL Communications ZyXEL ZyWALL IDP 10 User Manual

ZyWALL IDP10 User’s Guide

Introducing the ZyWALL IDP 10

1-1

Chapter 1

Introducing the ZyWALL IDP 10

This chapter introduces the main features and applications of the ZyWALL.

1.1 Introduction

An IDP system can detect malicious or suspicious packets and respond instantaneously. It can detect
anomaly detections based on violations of protocol standards (RFCs – Requests for Comments) or
traffic flows and abnormal flows such as port scans. The rules that define how to identify and respond
to intrusions are called “signatures”.

See the appendices for more detailed information on intrusions,

intrusion examples and detection types.

The ZyWALL is an Intrusion Detection and Prevention (IDP) Appliance designed to protect against
network-based intrusions. The ZyWALL functions as a transparent plug and play bridge designed to
protect networks from intrusions while allowing safe Internet access.

The ZyWALL comes with a built-in signature set that can be regularly updated. Regular updates are
vital as new intrusions evolve.

For people with knowledge of packet header types and OSI (Open System Interconnection), the IDP
allows you to create your own rules.

You can configure the ZyWALL using the friendly, embedded web configurator or the command-line
interface you access via the console port.

Figure 1-1 ZyWALL