Features, 2 features – ZyXEL Communications ZyXEL ZyWALL IDP 10 User Manual

ZyWALL IDP10 User’s Guide

1-2

Introducing the ZyWALL IDP 10

1.2 Features

LAN, WAN and Management Ports

You can also manage the ZyWALL via the LAN or WAN port, but the MGMT port is dedicated for
management. If you manage the ZyWALL via the LAN or WAN port then the ZyWALL itself may be
susceptible to being compromised.

Intrusion Detection & Prevention (IDP)

Real-time detection & prevention system at structure

Inline, Monitor, Bypass modes

Automatic signature update

Protect against:

o DoS and DDoS attacks

o Buffer overflow
o Network and port scans

o Trojan Horse attacks

o Back Door attacks
o Worms

Detection Methods:

o Heuristic Analysis based on exceeding statistical thresholds such as abnormal port scan

probes.

o Pattern Matching where a signature database identifies malicious code strings in packets.

o Protocol Anomaly Detection based on RFC protocol violations.
o Traffic flow anomalies where certain applications such as peer-to-peer applications for

example are defined as “abnormal” and therefore an “intrusion”.

o Stateful pattern matching based on reassembling TCP screams to make the complete string

available to the detection engine.

User-defined rules allow:

o Multiple Attack Pattern Detection

o Multiple string match

o IP/TCP/UDP/ICMP and IGMP packets filters that block suspect attack sources.

Firmware Upgrade

Automatically schedule download and upgrade

Logs & Reports

Automatically schedule reports sent by E-mail.

Alarms are urgent notification of attacks.