Filter
Top Products
ZyWALL (ZLD) CLI Reference Guide 163
CHAPTER 20
Application Patrol
This chapter describes how to set up application patrol for the ZyWALL.
20.1 Application Patrol Overview
Application patrol provides a convenient way to manage the use of various applications on the
network. It manages general protocols (for example, http and ftp) and instant messenger (IM),
peer-to-peer (P2P), Voice over IP (VoIP), and streaming (RSTP) applications. You can even control
the use of a particular application’s individual features (like text messaging, voice, video
conferencing, and file transfers). Application patrol also has powerful bandwidth management
including traffic prioritization to enhance the performance of delay-sensitive applications like voice
and video.
Note: The ZyWALL checks firewall rules before application patrol rules for traffic going
through the ZyWALL. To use a service, make sure both the firewall and application
patrol allow the service’s packets to go through the ZyWALL.
Application patrol examines every TCP and UDP connection passing through the ZyWALL and
identifies what application is using the connection. Then, you can specify, by application, whether or
not the ZyWALL continues to route the connection.
20.2 Application Patrol Commands Summary
The following table describes the values required for many application patrol commands. Other
values are discussed with the corresponding commands.
Table 81 Input Values for Application Patrol Commands
LABEL DESCRIPTION
protocol_name The name of a pre-defined application. These are listed by category.
general:
ftp | smtp | pop3 | irc | http
im: msn | aol-icq | yahoo | qq
p2p: bittorrent | eDonkey | fasttrack | gnutella | napster | h323 | sip
|
soulseek
stream: rtsp
rule_number The number of an application patrol rule. 1 - X where X is the highest number of rules the
ZyWALL model supports. See the ZyWALL’s User’s Guide for details.