User`s guide
ZyWALL IDP 10 User’s Guide
Chapter 9 Command Line Interface Overview 104
detect vpnbypass <ON/OFF> Allow/disallow bypass of VPN
packets it doesn’t recognize.
portscan <ON/OFF> Allow/disallow port scanning
fragment <ON/OFF> Enable/disable fragment
function
stateful <ON/OFF> Enable/disable TCP state
check
integrity <ON/OFF> Enable /disable TCP packet
state integrity using this
command
tcptimeout <value> Set the maximum TCP idle
timeout (this is how long a
TCP connection is allowed to
remain idle.
pinglen <value> Set up maximum ping length
pingmax <value> wan Set up maximum ping packet
accepted at wan port
lan Set up maximum ping packet
accepted at lan port
policy wan <ON/
OFF>
Set up policy check on/off wan
port. Policy checks include
both user-defined and pre-
defined rules.
lan <ON/
OFF>
Set up policy check on/off loan
port
Interface link wan 10 <half/
full>
Set up wan port speed 10 at
full/half duplex
100 <half/
full>
Set up wan port speed 100 at
full/half duplex
auto <half/
full>
Enable auto negotiation
lan 10 <half/
full>
Set up lan port speed 10 at
full/half duplex
100 <half/
full>
Set up lan port speed 100;
atfull/half duplex
auto <half/
full>
Enable auto negotiation
stealth wan <ON/OFF> Enable/disable stealth mode
on the wan port. Replies to
outgoing traffic are not
allowed. When a port is in
stealth mode, you cannot do
remote management nor
policy checks on that port.
lan <ON/OFF> Enable/disable stealth mode
on the lan port
Table 31 Commands Summary (continued)
COMMAND DESCRIPTION