ZyXEL UAG715 User Guide - Page 326
Table 124, Label, Description
View all ZyXEL UAG715 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 326 highlights
Chapter 27 ADP The following table describes the fields in this screen. Table 124 Configuration > ADP > Profile > Protocol Anomaly LABEL Name DESCRIPTION This is the name of the profile. You may use 1-31 alphanumeric characters, underscores(_), or dashes (-), but the first character cannot be a number. This value is case-sensitive. These are valid, unique profile names: MyProfile mYProfile Mymy12_3-4 These are invalid profile names: 1mYProfile My Profile MyProfile? Whatalongprofilename123456789012 HTTP Inspection/TCP Decoder/UDP Decoder/ICMP Decoder Activate To turn on an entry, select it and click Activate. Inactivate To turn off an entry, select it and click Inactivate. Log To edit an item's log option, select it and use the Log icon. Select whether to have the UAG generate a log (log), log and alert (log alert) or neither (no) when traffic matches this anomaly rule. See Chapter 40 on page 467 for more on logs. Action To edit what action the UAG takes when a packet matches a rule, select a rule and use the Action icon. none: Select this action to have the UAG take no action when a packet matches a rule. drop: Select this action to have the UAG silently drop a packet that matches a rule. Neither sender nor receiver are notified. reject-sender: Select this action to have the UAG send a reset to the sender when a packet matches the rule. If it is a TCP attack packet, the UAG will send a packet with a 'RST' flag. If it is an ICMP or UDP attack packet, the UAG will send an ICMP unreachable packet. reject-receiver: Select this action to have the UAG send a reset to the receiver when a packet matches the rule. If it is a TCP attack packet, the UAG will send a packet with an a 'RST' flag. If it is an ICMP or UDP attack packet, the UAG will do nothing. # Status Name Log Action OK reject-both: Select this action to have the UAG send a reset to both the sender and receiver when a packet matches the rule. If it is a TCP attack packet, the UAG will send a packet with a 'RST' flag to the receiver and sender. If it is an ICMP or UDP attack packet, the UAG will send an ICMP unreachable packet. This is the entry's index number in the list. The activate (light bulb) icon is lit when the entry is active and dimmed when the entry is inactive. This is the name of the protocol anomaly rule. Click the Name column heading to sort in ascending or descending order according to the protocol anomaly rule name. These are the log options. To edit this, select an item and use the Log icon. This is the action the UAG should take when a packet matches a rule. To edit this, select an item and use the Action icon. Click OK to save your settings to the UAG, complete the profile and return to the profile summary page. 326 UAG715 User's Guide