ZyXEL Communications ZYWALL SSL 10 Support Notes page 65
Integrated ssl-vpn appliance
Hide thumbs
Also See for ZYWALL SSL 10:
- User manual (100 pages) ,
- Quick start manual (97 pages) ,
- Specifications (6 pages)
Table of Contents
Advertisement
Security Policy Configuration for SSL VPN traffic on the ZyWALL A
1). Switch to SECURITY > FIREWALL > Default Rule Setup page. Remember to turn
on the firewall global switch otherwise all firewall ACL won't actually take effect on
inspecting the packet. We allow the SSL VPN traffic to be forwarded to ZyWALL SSL10 at
DMZ network. Thus, we Drop all traffic except SSL traffic from WAN to DMZ network.
The exception is configured at the next step (2).
2) Switch to Rule Summary page and select the packet direction from WAN to DMZ then
insert a dedicate rule to allow any host to access the ZyWALL SSL10 via service type
"HTTPS" (port 443).
3) ZyWALL also can inspect packet/mails from WAN to DMZ by IDP/AV and AS features.
The configuration is similar to the firewall rule setting. There is a traffic direction matrix
All contents copyright (c) 2006 ZyXEL Communications Corporation.
ZyWALL SSL 10 Support Notes
65
Advertisement
Table of Contents
