ZyXEL Communications ZYWALL USG 20 Manuals

Manuals and User Guides for ZyXEL Communications ZYWALL USG 20. We have 3 ZyXEL Communications ZYWALL USG 20 manuals available for free PDF download: Manual, User Manual, Brochure & Specs

ZyXEL Communications ZYWALL USG 20 Manual (959 pages)

Unified Security Gateway

Brand: ZyXEL Communications | Category: Gateway | Size: 20.3 MB

About this User's Guide

3
Document Conventions

6
Safety Warnings

8
Contents Overview

9
- Table of Contents
  9
Table of Contents

11
User's Guide

27
PART I User's Guide

27
Chapter 1 Introducing the Zywall

29
- Overview and Key Default Settings
  29
- Wall-Mounting
  29
- Front Panel
  32
  - Front Panel Leds
    32
- Management Overview
  33
- Starting and Stopping the Zywall
  34
Chapter 2 Features and Applications

37
- Features
  37
- Applications
  39
  - VPN Connectivity
    39
  - SSL VPN Network Access
    39
  - User-Aware Access Control
    41
- Web Configurator
  43
Chapter 3 Web Configurator

43
- Web Configurator Requirements
  43
- Web Configurator Access
  43
- Web Configurator Screens Overview
  45
  - Title Bar
    46
  - Navigation Panel
    47
    
    Monitor Menu
    48
    
    Configuration Menu
    48
  - Main Window
    52
  - Tables and Lists
    54
  - Working with Table Entries
    57
Chapter 4 Installation Setup Wizard

59
- Installation Setup Wizard Screens
  59
  - Internet Access Setup - WAN Interface
    59
  - Internet Access: Ethernet
    60
  - Internet Access: Pppoe
    61
  - Internet Access: PPTP
    63
  - ISP Parameters
    63
  - Internet Access - Finish
    65
- Device Registration
  65
- Quick Setup
  69
Chapter 5 Quick Setup

69
- Quick Setup Overview
  69
- WAN Interface Quick Setup
  70
- VPN Quick Setup
  75
- VPN Setup Wizard: Wizard Type
  76
- VPN Express Wizard - Scenario
  77
Chapter 6 Configuration Basics

87
- Object-Based Configuration
  87
- Zones, Interfaces, and Physical Ports
  88
  - Interface Types
    89
  - Default Interface and Zone Configuration
    90
- Terminology in the Zywall
  91
- Packet Flow
  91
  - Routing Table Checking Flow
    92
  - NAT Table Checking Flow
    94
- Feature Configuration Overview
  95
  - Feature
    95
  - Licensing Registration
    96
  - Interface
    96
  - Trunks
    96
  - Policy Routes
    96
  - Static Routes
    98
  - Zones
    98
  - Ddns
    98
  - Nat
    98
  - HTTP Redirect
    99
  - Alg
    100
  - Auth. Policy
    100
  - Firewall
    100
  - Ipsec VPN
    101
  - Ssl Vpn
    101
  - Bandwidth Management
    102
  - Adp
    102
  - Content Filter
    102
  - Anti-Spam
    103
- Objects
  103
  - User/Group
    104
- System
  105
  - DNS, WWW, SSH, TELNET, FTP, SNMP, Vantage CNM
    105
  - Logs and Reports
    105
  - File Manager
    106
  - Diagnostics
    106
  - Shutdown
    106
- Tutorials
  107
Chapter 7 Tutorials

107
Technical Reference

163
Part II: Technical Reference

163
- Dashboard
  165
Chapter 8 Dashboard

165
- Overview
  165
  - What You Can Do in this Chapter
    165
- The Dashboard Screen
  165
  - The CPU Usage Screen
    171
  - The Memory Usage Screen
    172
  - The Active Sessions Screen
    173
  - The VPN Status Screen
    174
  - The DHCP Table Screen
    174
  - The Number of Login Users Screen
    175
- Monitor
  177
Chapter 9 Monitor

177
- Overview
  177
  - What You Can Do in this Chapter
    177
- The Port Statistics Screen
  178
  - The Port Statistics Graph Screen
    180
- Interface Status Screen
  181
- The Traffic Statistics Screen
  183
- The Session Monitor Screen
  186
- The DDNS Status Screen
  189
- IP/MAC Binding Monitor
  189
- The Login Users Screen
  190
- WLAN Status Screen
  191
- The Following Table Describes the Labels in this Menu.cellular Status Screen
  192
  - More Information
    194
- USB Storage Screen
  195
- The Ipsec Monitor Screen
  196
  - Regular Expressions in Searching Ipsec Sas
    198
- The SSL Connection Monitor Screen
  198
- The Content Filter Statistics Screen
  200
- Content Filter Cache Screen
  202
- The Anti-Spam Statistics Screen
  204
- The Anti-Spam Status Screen
  206
- Log Screen
  207
- Registration
  211
Chapter 10 Registration

211
- Overview
  211
  - What You Can Do in this Chapter
    211
  - What You Need to Know
    211
- The Registration Screen
  212
- The Service Screen
  214
Chapter 11 Interfaces

217
- Interface Overview
  217
  - What You Can Do in this Chapter
    217
  - What You Need to Know
    218
  - Relationships between Interfaces
    219
- Port Role
  220
- Ethernet Summary Screen
  222
  - Ethernet Edit
    223
  - Object References
    232
- PPP Interfaces
  233
  - PPP Interface Summary
    234
  - PPP Interface Add or Edit
    235
- Cellular Configuration Screen (3G)
  239
  - Cellular Add/Edit Screen
    241
- WLAN Interface General Screen
  248
  - WLAN Add/Edit Screen
    252
  - WLAN Add/Edit: WEP Security
    258
  - WLAN Add/Edit: WPA-PSK/WPA2-PSK Security
    259
  - WLAN Add/Edit: WPA/WPA2 Security
    260
- WLAN Interface MAC Filter
  262
- VLAN Interfaces
  264
  - VLAN Summary Screen
    266
  - VLAN Add/Edit
    267
- Bridge Interfaces
  274
  - Bridge Summary
    276
  - Bridge Add/Edit
    277
  - Virtual Interfaces Add/Edit
    282
- Interface Technical Reference
  284
Chapter 12 Trunks

289
- Overview
  289
  - What You Can Do in this Chapter
    289
  - What You Need to Know
    290
- The Trunk Summary Screen
  292
- Configuring a Trunk
  293
- Trunk Technical Reference
  295
Chapter 13 Policy and Static Routes

297
- Policy and Static Routes Overview
  297
  - What You Can Do in this Chapter
    297
  - What You Need to Know
    298
- Policy Route Screen
  300
  - Policy Route Edit Screen
    303
- IP Static Route Screen
  307
  - Static Route Add/Edit Screen
    308
- Policy Routing Technical Reference
  309
  - Port Triggering
    310
  - Maximize Bandwidth Usage
    311
Chapter 14 Routing Protocols

313
- Routing Protocols Overview
  313
  - What You Can Do in this Chapter
    313
  - What You Need to Know
    313
- The RIP Screen
  314
- The OSPF Screen
  315
  - Configuring the OSPF Screen
    319
  - OSPF Area Add/Edit Screen
    322
  - Virtual Link Add/Edit Screen
    323
- Routing Protocol Technical Reference
  324
Chapter 15 Zones

327
- Zones Overview
  327
  - What You Can Do in this Chapter
    327
  - What You Need to Know
    328
- The Zone Screen
  329
- Zone Edit
  330
- Ddns
  331
Chapter 16 DDNS

331
- DDNS Overview
  331
  - What You Can Do in this Chapter
    331
  - What You Need to Know
    331
- The DDNS Screen
  332
  - The Dynamic DNS Add/Edit Screen
    334
- Nat
  337
Chapter 17 NAT

337
- NAT Overview
  337
  - What You Can Do in this Chapter
    337
  - What You Need to Know
    338
- The NAT Screen
  338
  - The NAT Add/Edit Screen
    340
- NAT Technical Reference
  343
- HTTP Redirect
  347
Chapter 18 HTTP Redirect

347
- Overview
  347
  - What You Can Do in this Chapter
    347
  - What You Need to Know
    348
- The HTTP Redirect Screen
  349
  - The HTTP Redirect Edit Screen
    350
- Alg
  351
Chapter 19 ALG

351
- ALG Overview
  351
  - What You Can Do in this Chapter
    351
  - What You Need to Know
    352
  - Before You Begin
    355
- The ALG Screen
  355
- ALG Technical Reference
  357
- IP/MAC Binding
  359
Chapter 20 IP/MAC Binding

359
- IP/MAC Binding Overview
  359
  - What You Can Do in this Chapter
    359
  - What You Need to Know
    360
- IP/MAC Binding Summary
  360
  - IP/MAC Binding Edit
    361
  - Static DHCP Edit
    362
- IP/MAC Binding Exempt List
  363
Chapter 21 Authentication Policy

365
- Overview
  365
  - What You Can Do in this Chapter
    365
  - What You Need to Know
    366
- Authentication Policy Screen
  366
  - Creating/Editing an Authentication Policy
    369
- Firewall
  373
Chapter 22 Firewall

373
- Overview
  373
  - What You Can Do in this Chapter
    373
  - What You Need to Know
    374
  - Firewall Rule Example Applications
    376
  - Firewall Rule Configuration Example
    379
- The Firewall Screen
  381
  - Configuring the Firewall Screen
    382
  - The Firewall Add/Edit Screen
    385
- The Session Limit Screen
  386
  - The Session Limit Add/Edit Screen
    388
Chapter 23

391
- Ipsec VPN
  
  391
  - Ipsec VPN Overview
    391
    
    What You Can Do in this Chapter
    391
    
    What You Need to Know
    392
    
    Before You Begin
    394
  - The VPN Connection Screen
    394
    
    The VPN Connection Add/Edit (IKE) Screen
    396
    
    The VPN Connection Add/Edit Manual Key Screen
    403
  - The VPN Gateway Screen
    406
    
    The VPN Gateway Add/Edit Screen
    407
  - Ipsec VPN Background Information
    415
  - Ipsec Sa Overview
    421
Chapter 24 SSL VPN

427
- Overview
  427
  - What You Can Do in this Chapter
    427
  - What You Need to Know
    427
- The SSL Access Privilege Screen
  429
  - The SSL Access Policy Add/Edit Screen
    430
- The SSL Global Setting Screen
  433
  - How to Upload a Custom Logo
    434
- Establishing an SSL VPN Connection
  435
Chapter 25 SSL User Screens

437
- Overview
  437
  - What You Need to Know
    437
- Remote User Login
  438
- The SSL VPN User Screens
  443
- Bookmarking the Zywall
  444
- Logging out of the SSL VPN User Screens
  444
Chapter 26 SSL User Application Screens

447
- SSL User Application Screens Overview
  447
- The Application Screen
  447
Chapter 27 Zywall Secuextender

449
- The Zywall Secuextender Icon
  449
- Statistics
  450
- View Log
  451
- Suspend and Resume the Connection
  451
- Stop the Connection
  452
- Uninstalling the Zywall Secuextender
  452
Chapter 28 Bandwidth Management

453
- Overview
  453
- Thebandwidth Management Screen
  461
  - The Bandwidth Management Add/Edit Screen
    463
Chapter 29 ADP

467
- Overview
  467
  - What You Can Do in this Chapter
    467
  - What You Need to Know
    467
  - Before You Begin
    468
- The ADP General Screen
  469
- The Profile Summary Screen
  470
  - Base Profiles
    471
  - Configuring the ADP Profile Summary Screen
    471
  - Creating New ADP Profiles
    472
  - Traffic Anomaly Profiles
    472
  - Protocol Anomaly Profiles
    475
  - Protocol Anomaly Configuration
    475
- ADP Technical Reference
  479
Chapter 30 Content Filtering

487
- Overview
  487
  - What You Can Do in this Chapter
    487
  - What You Need to Know
    487
  - Before You Begin
    489
- Content Filter General Screen
  489
- Content Filter Policy Add or Edit Screen
  492
- Content Filter Profile Screen
  494
- Content Filter Categories Screen
  494
  - Content Filter Blocked and Warning Messages
    508
- Content Filter Customization Screen
  508
- Content Filter Technical Reference
  511
Chapter 31

513
- Content Filter Reports
  
  513
  - Overview
    513
  - Viewing Content Filter Reports
    513
  - Anti-Spam
    521
Chapter 32 Anti-Spam

521
- Overview
  521
  - What You Can Do in this Chapter
    521
  - What You Need to Know
    521
- Before You Begin
  523
- The Anti-Spam General Screen
  523
  - The Anti-Spam Policy Add or Edit Screen
    525
- The Anti-Spam Black List Screen
  527
  - The Anti-Spam Black or White List Add/Edit Screen
    529
  - Regular Expressions in Black or White List Entries
    530
- The Anti-Spam White List Screen
  531
- The DNSBL Screen
  532
- Anti-Spam Technical Reference
  534
- User/Group
  539
Chapter 33 User/Group

539
- Overview
  539
  - What You Can Do in this Chapter
    539
  - What You Need to Know
    539
- User Summary Screen
  542
  - User Add/Edit Screen
    542
- User Group Summary Screen
  545
  - Group Add/Edit Screen
    546
- Setting Screen
  547
  - Default User Authentication Timeout Settings Edit Screens
    550
  - User Aware Login Example
    552
- User /Group Technical Reference
  553
- Addresses
  555
Chapter 34 Addresses

555
- Overview
  555
  - What You Can Do in this Chapter
    555
  - What You Need to Know
    555
- Address Summary Screen
  555
  - Address Add/Edit Screen
    557
- Address Group Summary Screen
  558
  - Address Group Add/Edit Screen
    559
- Services
  561
Chapter 35 Services

561
- Overview
  561
  - What You Can Do in this Chapter
    561
  - What You Need to Know
    561
- The Service Summary Screen
  562
  - The Service Add/Edit Screen
    564
- The Service Group Summary Screen
  564
  - The Service Group Add/Edit Screen
    566
- Schedules
  567
Chapter 36 Schedules

567
- Overview
  567
  - What You Can Do in this Chapter
    567
  - What You Need to Know
    567
- The Schedule Summary Screen
  568
  - The One-Time Schedule Add/Edit Screen
    569
  - The Recurring Schedule Add/Edit Screen
    570
Chapter 37 AAA Server

573
- Overview
  573
  - Directory Service (AD/LDAP)
    573
  - RADIUS Server
    574
  - Asas
    574
  - What You Can Do in this Chapter
    574
  - What You Need to Know
    575
- Active Directory or LDAP Server Summary
  577
  - Adding an Active Directory or LDAP Server
    577
- RADIUS Server Summary
  579
  - Adding a RADIUS Server
    581
Chapter 38 Authentication Method

583
- Overview
  583
- Authentication Method Objects
  584
  - Creating an Authentication Method Object
    585
- Certificates
  589
Chapter 39 Certificates

589
- Overview
  589
  - What You Can Do in this Chapter
    589
  - What You Need to Know
    589
  - Verifying a Certificate
    591
- The My Certificates Screen
  593
- The Trusted Certificates Screen
  603
  - The Trusted Certificates Edit Screen
    604
  - The Trusted Certificates Import Screen
    608
- Certificates Technical Reference
  609
Chapter 40 ISP Accounts

611
- Overview
  611
  - What You Can Do in this Chapter
    611
- ISP Account Summary
  611
  - ISP Account Edit
    612
Chapter 41 SSL Application

615
- Overview
  615
- The SSL Application Screen
  617
  - Creating/Editing a Web-Based SSL Application Object
    618
Chapter 42 Endpoint Security

621
- Overview
  621
  - What You Can Do in this Chapter
    622
  - What You Need to Know
    622
- Endpoint Security Screen
  623
- Endpoint Security Add/Edit
  624
Chapter 43 System

629
- Overview
  629
  - What You Can Do in this Chapter
    629
- Host Name
  630
- USB Storage
  631
- Date and Time
  631
  - Pre-Defined NTP Time Servers List
    634
  - Time Server Synchronization
    635
- Console Port Speed
  636
- DNS Overview
  636
  - DNS Server Address Assignment
    637
  - Configuring the DNS Screen
    637
  - Address Record
    640
  - PTR Record
    640
  - Adding an Address/Ptr Record
    640
  - Domain Zone Forwarder
    641
  - Adding a Domain Zone Forwarder
    641
  - MX Record
    642
  - Adding a MX Record
    643
  - Adding a DNS Service Control Rule
    643
- WWW Overview
  644
  - Service Access Limitations
    644
  - System Timeout
    645
  - Https
    645
  - Configuring WWW Service Control
    646
  - Service Control Rules
    650
  - Customizing the WWW Login Page
    650
  - HTTPS Example
    654
    
    Netscape Navigator Warning Messages
    655
    
    Avoiding Browser Warning Messages
    655
    
    Login Screen
    656
    
    Enrolling and Importing Ssl Client Certificates
    656
    
    Using a Certificate When Accessing the Zywall Example
    660
- Ssh
  661
  - How SSH Works
    662
  - SSH Implementation on the Zywall
    663
  - Requirements for Using SSH
    663
  - Configuring SSH
    663
  - Secure Telnet Using SSH Examples
    665
- Telnet
  666
  - Configuring Telnet
    667
- Ftp
  668
  - Configuring FTP
    668
- Snmp
  670
  - Supported Mibs
    672
  - SNMP Traps
    672
  - Configuring SNMP
    672
- Vantage CNM
  674
  - Configuring Vantage CNM
    675
- Language Screen
  677
- Log and Report
  679
Chapter 44 Log and Report

679
- Overview
  679
  - What You Can Do in this Chapter
    679
- Email Daily Report
  679
- Log Setting Screens
  681
  - Log Setting Summary
    682
  - Edit System Log Settings
    683
  - Edit Remote Server Log Settings
    688
  - Active Log Summary Screen
    690
- File Manager
  693
Chapter 45 File Manager

693
- Overview
  693
- The Configuration File Screen
  696
- The Firmware Package Screen
  700
- The Shell Script Screen
  702
  - Diagnostics
    705
Chapter 46 Diagnostics

705
- Overview
  705
  - What You Can Do in this Chapter
    705
- The Diagnostic Screen
  705
  - The Diagnostics Files Screen
    706
- The Packet Capture Screen
  707
  - The Packet Capture Files Screen
    710
  - Example of Viewing a Packet Capture File
    711
- Core Dump Screen
  712
  - Core Dump Files Screen
    713
- The System Log Screen
  714
- Packet Flow Explore
  715
Chapter 47 Packet Flow Explore

715
- Overview
  715
  - What You Can Do in this Chapter
    715
- The Routing Status Screen
  715
- The SNAT Status Screen
  719
Chapter 48 Reboot

723
- Overview
  723
  - What You Need to Know
    723
- The Reboot Screen
  723
Chapter 49

725
- Shutdown
  
  725
  - Overview
    725
    
    What You Need to Know
    725
  - The Shutdown Screen
    725
  - Troubleshooting
    727
Chapter 50 Troubleshooting

727
- Resetting the Zywall
  738
- Getting more Troubleshooting Help
  739
Chapter 51 Product Specifications

741
- Power Adaptor Specifications
  745
Appendix A Log Descriptions

747
- Myzyxel.com Logs
  758
Appendix B Common Services

799
Appendix C Wireless Lans

803
- Wireless Lan Topologies
  803
- Fragmentation Threshold
  807
- Preamble Type
  807
- Wireless Security Overview
  808
- Dynamic Wep Key Exchange
  811
- Security Parameters Summary
  816
- Antenna Characteristics
  817
- Types of Antennas for Wlan
  817
- Positioning Antennas
  818
Appendix D Importing Certificates

819
Appendix E Open Software Announcements

845
Appendix F Legal Information

935
- Zyxel Limited Warranty
  937
Index

939

ZyXEL Communications ZYWALL USG 20 User Manual (88 pages)

ZLD 2.21 Support Notes

Brand: ZyXEL Communications | Category: Gateway | Size: 5.18 MB

ZyXEL Communications ZYWALL USG 20 Brochure & Specs (6 pages)

Unified Security Gateway

Brand: ZyXEL Communications | Category: Gateway | Size: 0.58 MB

ZyXEL Communications Categories

Gateway

Network Router

Switch Wireless Router Adapter

More ZyXEL Communications Manuals

ZyXEL Communications ZYWALL USG 20 Manuals

ZyXEL Communications ZYWALL USG 20 Manual (959 pages)

Table of Contents

About this User's Guide

Document Conventions

Safety Warnings

Contents Overview

Table of Contents

User's Guide

PART I User's Guide

Chapter 1 Introducing the Zywall

Chapter 2 Features and Applications

Chapter 3 Web Configurator

Chapter 4 Installation Setup Wizard

Chapter 5 Quick Setup

Chapter 6 Configuration Basics

Chapter 7 Tutorials

Technical Reference

Part II: Technical Reference

Chapter 8 Dashboard

Chapter 9 Monitor

Chapter 10 Registration

Chapter 11 Interfaces

Chapter 12 Trunks

Chapter 13 Policy and Static Routes

Chapter 14 Routing Protocols

Chapter 15 Zones

Chapter 16 DDNS

Chapter 17 NAT

Chapter 18 HTTP Redirect

Chapter 19 ALG

Chapter 20 IP/MAC Binding

Chapter 21 Authentication Policy

Chapter 22 Firewall

Chapter 23

Ipsec VPN

Chapter 24 SSL VPN

Chapter 25 SSL User Screens

Chapter 26 SSL User Application Screens

Chapter 27 Zywall Secuextender

Chapter 28 Bandwidth Management

Chapter 29 ADP

Chapter 30 Content Filtering

Chapter 31

Content Filter Reports

Chapter 32 Anti-Spam

Chapter 33 User/Group

Chapter 34 Addresses

Chapter 35 Services

Chapter 36 Schedules

Chapter 37 AAA Server

Chapter 38 Authentication Method

Chapter 39 Certificates

Chapter 40 ISP Accounts

Chapter 41 SSL Application

Chapter 42 Endpoint Security

Chapter 43 System

Chapter 44 Log and Report

Chapter 45 File Manager

Chapter 46 Diagnostics

Chapter 47 Packet Flow Explore

Chapter 48 Reboot

Chapter 49

Shutdown

Chapter 50 Troubleshooting

Chapter 51 Product Specifications

Appendix A Log Descriptions

Appendix B Common Services

Appendix C Wireless Lans

Appendix D Importing Certificates

Appendix E Open Software Announcements

Appendix F Legal Information

Index

ZyXEL Communications ZYWALL USG 20 User Manual (88 pages)

Table of Contents

ZyXEL Communications ZYWALL USG 20 Brochure & Specs (6 pages)

Related Products

ZyXEL Communications Categories