ZyXEL Communications ZyXEL ZyWALL IDP 10 User Manual

ZyWALL IDP 10 User’s Guide

6-22

IDP

Policies

Table 6-6 User-defined Policies

LABEL

DESCRIPTION

Enable

Use this checkbox to enable or disable an individual user-defined rule without deleting it.
Clear this checkbox to have the ZyWALL skip this (user-defined) rule when detecting
intrusions.

Alarm

An alarm is an action (an e-mail is sent) to be taken on the policy when a packet
matches a rule. Alarm e-mails are not sent instantly but rather at periodic intervals
(minimum five minutes).

Select this checkbox to enable the alarm action. For other actions, select from the
Action drop-down list box.

Type

Assign a signature category to your rule as described in section 6.3.

Name

This is the rule name you configured for this intrusion type.

Direction

A policy rule direction refers to the intent of the policy rule.

o

Incoming means the policy applies to traffic coming from the WAN to the LAN.

o

Outgoing means the policy applies to traffic coming from the LAN to the WAN.

o

Bidirectional means the policy applies to traffic coming from and going to either
direction.

Action

This field defines the action to be taken for a rule match. See Table 6-2 for details on
actions. An alarm is also an action to be taken on the policy, but you must select the
Alarm checkbox to have the ZyWALL send an alarm when a traffic flow matches a rule.

Note

This field displays your added description of the rule you configured.

Modify

You may edit or delete an individual rule using these icons. Click

to edit the rule or

click

to delete the rule. Before the rule is deleted, you will first see a confirmation

dialog box.