Stealth, 3 stealth – ZyXEL Communications ZyXEL ZyWALL IDP 10 User Manual

ZyWALL IDP 10 User’s Guide

4-2

Interface

Screens

Table 4-1 Interface: Link

LABEL

DESCRIPTION

WAN

Select the speed (10 or 100 Mbps) and duplex mode (Full, Half, Auto) for this port.

LAN

Select the speed (10 or 100 Mbps) and duplex mode (Full, Half, Auto) for this port.

Management

Select the speed (10 or 100 Mbps) and duplex mode (Full, Half, Auto) for this port.

Apply

Click this button to save your changes back to the ZyWALL.

Reset

Click this button to begin configuring this screen afresh.

4.3 Stealth

Stealth enabled on a port means that the ZyWALL drops all incoming packets destined for the
ZyWALL received on that port with no response to the sender. The ZyWALL doesn’t respond to
ICMP requests such as Ping, that is, it doesn’t send ICMP_ECHO_REPLY packets. It doesn’t send
TCP_RST packets if a TCP connection is blocked nor does it send ICMP_PORT UNREACHABLE
packets for UDP requests or forwarded traffic.

Replies to outgoing traffic from the ZyWALL are also not allowed.

When a port is in stealth mode, you cannot do remote

management or policy updates on that port.

You will have to disable stealth on the LAN port or WAN port (via the MGMT port or console port)
before being allowed to manage the ZyWALL from that port. The MGMT port has no stealth function.

To change your ZyWALL’s stealth settings, click INTERFACE, then the Stealth tab.

Figure 4-2 Interface: Stealth

The following table describes the fields in this screen.