ZyWALL IDP 10 Quick Start Guide 1 Introduction to Intrusions Refer to the following figure for the introduction. Figure 1 Intrusions Figure 1 represents a typical business network consisting of an employee LAN, a DMZ (DeMilitarized Zone) containing the company web, FTP, mail etc. servers, a firewall and/or NAT router connected to a broadband modem for Internet access.
ZyWALL IDP 10 Quick Start Guide Network-based intrusions have the goal of bringing down a network or networks by attacking computer(s), switch(es), router(s) or modem(s) (see 1, 2, 3 and 4 in Figure 1). If the LAN and/or DMZ switch is compromised (see 2 in Figure 1), then those networks are compromised. If the firewall/router is attacked (see 3 in Figure 1) and/or the Internet access broadband modem (see 4 in Figure 1), then this is the equivalent of a Denial of Service (DoS) attack on your network(s).
ZyWALL IDP 10 Quick Start Guide Figure 2 Installation Example 4 Hardware Connections This section describes the front and rear panels of the ZyWALL IDP. 4.1 Front Panel The front panel contains ports and LEDs.
LABEL WAN 10/100 Connect a firewall, switch or cable/DSL modem to this port depending on where you deploy the ZyWALL IDP (see Figure 2). LAN 10/100 Use a crossover Ethernet cable to connect a computer to this port or use a straight- through Ethernet cable to connect a hub.
LABEL CONSOLE Use this port if you want to configure the ZyWALL IDP using the command-line interface. See your User’s Guide for details on commands. Connect the 9-pin male end of the console cable to the console port of the ZyWALL IDP and the other end to a serial port (COM1, COM2 or other COM port) on your computer.
Table 2 Rear Panel Power Connection LABEL WARNING: Using an incorrect power adapter will damage your device! After you’ve made the connections, use the power cord to connect the power adaptor to a power source and look at the front panel LEDs. 4.3 The Front Panel LEDs The PWR LED turns on when you first connect the power.
COLOR STATUS Blinking Amber Blinking 10/100 Green Blinking Amber Blinking MGMT Green Blinking Amber Blinking 5 Accessing Your ZyWALL IDP Choose one of these methods to access (and configure) the ZyWALL IDP. Command line interface via the console port using terminal emulation software. Web Configurator via the MGMT port using a web browser.
By default remote management is disabled on both the LAN and WAN ports. You must first enable remote management on these ports via the console port or the MGMT port if you want to configure the ZyWALL IDP using these ports. 6 Setting Up Your Computer’s IP Address Use this section to set up your computer to use a static IP address of 192.168.1.1, 192.168.1.2 or from 192.168.1.4 to 192.168.1.254 with a subnet mask of 255.255.255.0.
The Internet Protocol TCP/IP Properties screen opens (the General tab in Windows XP). -Click Use the following IP Address and fill in the IP address (choose an used one from 192.168.1.1, 192.168.1.2 or from 192.168.1.4 to 192.168.1.254), Subnet mask (255.255.255.0), and Default gateway (192.168.1.3) fields (if your computer is connected directly to the ZyWALL IDP.
The default password (“1234”) is already in the password field (in non-readable format). Click Login to proceed to a screen asking you to change your password. Click Reset to revert to the default password in the password field. It is highly recommended you change the default password. Enter a new password, retype it to confirm and click Apply;...
ZyWALL IDP 10 Quick Start Guide You should now see the web configurator HOME screen. Navigation panel Setup Wizard LOGOUT Figure 10 Home Screen Click Quick Setup to begin a wizard to help you configure your ZyWALL IDP for the first time. Click a link under SYSTEM in the navigation panel to configure general ZyWALL IDP features.
Click LOGOUT when you have finished a ZyWALL IDP management session. The ZyWALL IDP automatically logs you out if a management session (web or console) is left idle for five minutes. If this happens, you will have to log back 7 ZyWALL IDP Quick Setup Wizard Click Quick Setup in the HOME screen of the web configurator.
Figure 12 Wizard– Network Setting The following wizard screen allows you to enter the ZyWALL IDP time and date. Figure 13 Wizard–Time Setting ZyWALL IDP 10 Quick Start Guide Enter the ZyWALL IDP IP address, subnet mask, gateway IP address and DNS server IP address in these fields.
Enable/disable the stealth function on either or both the LAN and WAN ports. The MGMT port has no stealth function. Stealth enabled on a port means that the ZyWALL IDP drops all incoming packets destined for the ZyWALL IDP received on that port with no response to the sender.
Figure 15 Wizard– State Setting The following read-only screen shows a summary of all the ZyWALL IDP settings you have configured in this wizard. Changes have not been saved to the ZyWALL IDP yet. Figure 16 Wizard - Summary ZyWALL IDP 10 Quick Start Guide Inline means the ZyWALL IDP will both identify suspicious or malicious packets and perform the...
The final wizard screen shows which settings have been saved successfully to the ZyWALL IDP. Figure 17 Wizard Result ZyWALL IDP 10 Quick Start Guide Check the Result screen and click Close to return to the Home screen. Fields incorrectly configured display “Error”.
8 Troubleshooting PROBLEM None of the LEDs turn Make sure that you have the included power adaptor connected to the ZyWALL on when you turn on IDP and connected to an appropriate power source. Using an incorrect power the ZyWALL IDP. adaptor will damage your device! Check all cable connections.
Page 21
ZyWALL IDP 10 Quick Start Guide PROBLEM CORRECTIVE ACTION Forgot My Password If you forgot your console and web configurator password, then you will have to enter debug mode to reset the ZyWALL IDP to the factory defaults. See your User’s Guide for details.