Sign In
Upload
Manuals
Brands
ZyXEL Communications Manuals
Gateway
PPC 10
ZyXEL Communications PPC 10 Manuals
Manuals and User Guides for ZyXEL Communications PPC 10. We have
4
ZyXEL Communications PPC 10 manuals available for free PDF download: User Manual, Quick Start Manual
ZyXEL Communications PPC 10 User Manual (495 pages)
Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 14.9 MB
Table of Contents
Information for Canadian Users
4
Online Registration
5
Zyxel Limited Warranty
5
Customer Support
6
Table of Contents
7
Chapter 31 Troubleshooting
28
Related Documentation
30
Syntax Conventions
30
Table 1-1 Model Specific Features
35
Chapter 1 Getting to Know Your Zywall
35
The Zywall 10/10W/50/100 Internet Security Gateway
35
Physical Features
36
Time and Date
37
Reset Button
37
Content Filtering
38
Wireless Lan Mac Address Filtering
38
Packet Filtering
38
Call Scheduling
39
Pptp Encapsulation
39
Dynamic Dns Support
39
Ip Policy Routing
39
Traffic Redirect
40
Port Forwarding
40
Full Network Management
40
Logging and Tracing
40
Applications for the Zywall
41
Figure 1-1 Secure Internet Access Via Cable, DSL or Wireless Modem
42
Figure 1-2 VPN Application
43
Chapter 2 Hardware Installation
45
Front Panel Leds and Back Panel Ports
45
Figure 2-1 Zywall 100 Front Panel
45
Figure 2-2 Zywall 50 Front Panel
45
Figure 2-3 Zywall 10W Front Panel
45
Figure 2-4 Zywall 10 Front Panel
46
Table 2-1 LED Descriptions
46
Zywall Rear Panel and Connections
47
Figure 2-5 Zywall 100 Rear Panel
48
Figure 2-6 Zywall 50 Rear Panel
48
Figure 2-7 Zywall 10W Rear Panel
49
Figure 2-8 Zywall 10 Rear Panel
49
Connecting the Console Port
50
Table 2-2 LAN Port Connections with an Uplink Button
51
Additional Installation Requirements
52
Figure 2-9 Inserting the Wireless LAN Card
52
Additional Installation Requirements for Using 802.1X
53
Chapter 3 Initial Setup
57
Turning on Your Zywall
57
Figure 3-1 Initial Screen
57
Navigating the SMT Interface
58
Figure 3-2 Password Screen
58
Table 3-1 Main Menu Commands
58
Table 3-2 Main Menu Summary
59
Figure 3-3 Main Menu (Zywall 100)
59
Figure 3-4 Getting Started and Advanced Applications SMT Menus
61
Figure 3-5 Advanced Management SMT Menus
62
Changing the System Password
63
Figure 3-6 Schedule Setup and Ipsec VPN Configuration SMT Menus
63
Figure 3-7 Menu 23: System Password
63
Resetting the Zywall
64
Chapter 4 SMT Menu 1 - General Setup
65
System Name
65
Dynamic Dns
65
Figure 4-1 Menu 1: General Setup
66
Table 4-1 General Setup Menu Field
66
Figure 4-2 Configure Dynamic DNS
67
Table 4-2 Configure Dynamic DNS Menu Fields
67
Figure 5-1 MAC Address Cloning in WAN Setup
69
Cloning the Mac Address
69
Table 5-1 MAC Address Cloning in WAN Setup
70
Dial Backup
70
Configuring Dial Backup in Menu
70
Figure 5-2 Menu 2: Dial Backup Setup
71
Table 5-2 Menu 2: Dial Backup Setup
71
Advanced Wan Setup
72
At Command Strings
72
Dtr Signal
72
Response Strings
72
Figure 5-3 Menu 2.1 Advanced WAN Setup
73
Table 5-3 Advanced WAN Port Setup: at Commands Fields
73
Backup Remote Node Setup
74
Table 5-4 Advanced WAN Port Setup: Call Control Parameters
74
Figure 5-4 Menu 11.1 Remote Node Profile (Backup ISP)
75
Remote Node Profile (Backup Isp)
75
Table 5-5 Fields in Menu 11.1 Remote Node Profile (Backup ISP)
75
Editing Ppp Options
77
Figure 5-5 Menu 11.2 - Remote Node PPP Options
78
Figure 5-6 Remote Node PPP Options Menu Fields
78
Figure 5-7 Menu 11.3: Remote Node Network Layer Options
79
Table 5-6 Remote Node Network Layer Options Menu Fields
79
Editing Tcp/Ip Options
79
Editing Login Script
80
Figure 5-8 Menu 11.4 - Remote Node Setup Script
82
Table 5-7 Remote Node Script Menu Fields
82
Figure 5-9 Menu 11.5: Remote Node Filter (Ethernet)
83
Figure 5-10 Menu 11.5: Remote Node Filter (Pppoe or PPTP)
83
Figure 6-1 Menu 3: LAN Setup
85
Lan Port Filter Setup
85
Figure 6-2 Menu 3.1: LAN Port Filter Setup
86
Tcp/Ip and Lan Dhcp
86
Ip Address and Subnet Mask
87
Private Ip Addresses
87
Table 6-1 Example of Network Properties for LAN Servers with Fixed IP Addresses
87
Rip Setup
88
Table 6-2 Private IP Address Ranges
88
Figure 6-3 Physical Network
89
Figure 6-4 Partitioned Logical Networks
89
Figure 6-5 Menu 3: TCP/IP and DHCP Setup
90
Figure 6-6 Menu 3.2: TCP/IP and DHCP Ethernet Setup
90
Table 6-3 DHCP Ethernet Setup Menu Fields
91
Table 6-4 LAN TCP/IP Setup Menu Fields
91
Ip Alias Setup
92
Figure 6-7 Menu 3.2.1: IP Alias Setup
93
Table 6-5 IP Alias Setup Menu Fields
93
Wireless Lan
94
Rts Threshold
94
Figure 6-8 RTS Threshold
95
Figure 6-9 Menu 3.5 - Wireless LAN Setup
96
Table 6-6 Wireless LAN Setup Menu Fields
96
Figure 7-1 Zywall Wireless Security Levels
99
Levels of Security
99
Data Encryption with Wep
99
Figure 7-2 Wireless LAN
100
Table 7-1 Wireless LAN
101
Network Authentication
101
Types of Radius Messages
102
Figure 7-3 Sequence for EAP Authentication
103
Figure 7-4 Wireless LAN 802.1X Authentication
104
Table 7-2 Wireless LAN 802.1X Authentication
104
Figure 7-5 Authentication RADIUS
105
Table 7-3 Authentication RADIUS
105
Local User Authentication
106
Figure 7-6 Local User Database
107
Table 7-4 Local User Database
108
MAC Address Filtering
108
Figure 7-7 WLAN MAC Address Filter
109
Table 7-5 WLAN MAC Address Filter
109
Chapter 8 DMZ Setup
111
Introduction
111
Figure 8-1 Menu 5: DMZ Setup
111
Figure 8-2 Menu 5.1: DMZ Port Filter Setup
112
Figure 8-3 Menu 5: TCP/IP Setup
112
Figure 8-4 Menu 5.2: TCP/IP Setup
113
Figure 8-5 Menu 5.2.1: IP Alias Setup
114
Chapter 9 Internet Access
115
Table 9-1 Menu 4: Internet Access Setup Menu Fields
115
Figure 9-1 Menu 4: Internet Access Setup (Ethernet)
115
Figure 9-2 Internet Access Setup (PPTP)
117
Table 9-2 New Fields in Menu 4 (PPTP) Screen
117
Figure 9-3 Internet Access Setup (Pppoe)
118
Table 9-3 New Fields in Menu 4 (Pppoe) Screen
119
Basic Setup Complete
119
Advanced Applications
121
Chapter 10 Remote Node Setup
123
Figure 10-1 Menu 11 Remote Node Setup
123
Remote Node Profile
124
Figure 10-2 Menu 11.1: Remote Node Profile for Ethernet Encapsulation
124
Pppoe Encapsulation
125
Figure 10-3 Menu 11.1: Remote Node Profile for Pppoe Encapsulation
126
Table 10-2 Fields in Menu 11.1 (Pppoe Encapsulation Specific)
127
Figure 10-4 Menu 11.1: Remote Node Profile for PPTP Encapsulation
128
Table 10-3 Fields in Menu 11.1 (PPTP Encapsulation)
128
Editing TCP/IP Options (with Ethernet Encapsulation)
129
Figure 10-5 Menu 11.3: Remote Node Network Layer Options for Ethernet Encapsulation
129
Table 10-4 Remote Node Network Layer Options Menu Fields
129
Figure 10-6 Menu 11.3: Remote Node Network Layer Options for PPTP Encapsulation
131
Table 10-5 Remote Node Network Layer Options Menu Fields
132
Remote Node Filter
133
Figure 10-7 Menu 11.5: Remote Node Filter (Ethernet Encapsulation)
133
Traffic Redirect
134
Figure 10-8 Menu 11.5: Remote Node Filter (Pppoe or PPTP Encapsulation)
134
Figure 10-9 Traffic Redirect WAN Setup
134
Figure 10-10 Traffic Redirect LAN Setup
135
Figure 10-11 Menu 11.1: Remote Node Profile
135
Figure 10-12 Menu 11.6: Traffic Redirect Setup
136
Table 10-6 Menu 11.1: Remote Node Profile (Traffic Redirect Field)
136
Table 10-7 Traffic Redirect Setup
136
Chapter 11 IP Static Route Setup
139
Figure 11-1 Example of Static Routing Topology
139
IP Static Route Setup
140
Figure 11-2 Menu 12: IP Static Route Setup (Zywall 10W)
140
Figure 11-3 Menu 12. 1: Edit IP Static Route
141
Table 11-1 IP Static Route Menu Fields
141
Table 12-1 NAT Definitions
143
Chapter 12 Network Address Translation (NAT)
143
Introduction
143
What Nat Does
144
How Nat Works
144
Figure 12-1 How NAT Works
145
Figure 12-2 NAT Application with IP Alias
146
Table 12-2 NAT Mapping Types
147
Using NAT
148
Figure 12-3 Menu 4: Applying NAT for Internet Access
149
NAT Setup
150
Figure 12-4 Menu 11.3: Applying NAT to the Remote Node
150
Figure 12-5 Menu 15: NAT Setup
151
Figure 12-6 Menu 15.1: Address Mapping Sets
151
Figure 12-7 Menu 15.1.255: SUA Address Mapping Rules
152
Table 12-4 SUA Address Mapping Rules
152
Figure 12-8 Menu 15.1.1: First Set
153
Figure 12-9 Menu 15.1.1.1: Editing/Configuring an Individual Rule in a Set
155
Table 12-6 Menu 15.1.1.1: Editing/Configuring an Individual Rule in a Set
155
Table 12-7 Services & Port Numbers
156
NAT Server Sets – Port Forwarding
156
Configuring a Server Behind Nat
157
Figure 12-10 Menu 15.2: NAT Server Setup
158
Figure 12-11 Multiple Servers Behind NAT Example
158
General NAT Examples
159
Figure 12-12 NAT Example 1
159
Figure 12-13 Menu 4: Internet Access & NAT Example
159
Figure 12-14 NAT Example 2
160
Figure 12-15 Menu 15.2: Specifying an Inside Server
161
Figure 12-16 NAT Example 3
162
Figure 12-17 Example 3: Menu 11.3
163
Figure 12-18 Example 3: Menu 15.1.1.1
163
Figure 12-19 Example 3: Final Menu 15.1.1
164
Figure 12-20 Example 3: Menu 15.2
164
Figure 12-21 NAT Example 4
165
Trigger Port Forwarding
166
Figure 12-22 Example 4: Menu 15.1.1.1: Address Mapping Rule
166
Figure 12-23 Example 4: Menu 15.1.1: Address Mapping Rules
166
Figure 12-24 Trigger Port Forwarding Process: Example
167
Figure 12-25 Menu 15.3-Trigger Port Setup
168
Table 12-8 Menu 15.3-Trigger Port Setup Description
169
Firewall and Content Filters
171
Chapter 13 Firewalls
173
What Is a Firewall?
173
Types of Firewalls
173
Stateful Inspection Firewalls
174
Introduction to Zyxel's Firewall
174
Figure 13-1 Zywall Firewall Application
175
Denial of Service
175
Types of Dos Attacks
176
Table 13-1 Common IP Ports
176
Figure 13-2 Three-Way Handshake
177
Figure 13-3 SYN Flood
177
Figure 13-4 Smurf Attack
178
Table 13-2 ICMP Commands that Trigger Alerts
178
Table 13-3 Legal Netbios Commands
179
Table 13-4 Legal SMTP Commands
179
Stateful Inspection
179
Figure 13-5 Stateful Inspection
180
Stateful Inspection and the Zywall
181
Tcp Security
182
Upper Layer Protocols
183
Guidelines for Enhancing Security with Your Firewall
183
Security in General
184
Packet Filtering Vs Firewall
184
Figure 14-1 Menu 21: Filter and Firewall Setup
187
Access Methods
187
Using Zywall Smt Menus
187
Figure 14-2 Menu 21.2: Firewall Setup
188
Web Configurator Login and Main Menu Screens
189
Enabling the Firewall
189
Figure 15-1 Enabling the Firewall (Zywall 100)
190
Attack Alert
190
Threshold Values
191
Figure 15-2 Attack Alert
193
Table 15-1 Attack Alert
193
Rules Overview
197
Rule Logic Overview
198
Rule Checklist
198
Security Ramifications
199
Key Fields for Configuring Rules
199
Destination Address
199
Figure 16-1 LAN to WAN Traffic
200
Connection Direction Examples
200
Figure 16-2 WAN to LAN Traffic
201
Rule Summary
201
Figure 16-3 Firewall Rules Summary: First Screen (Zywall100)
202
Table 16-1 Firewall Rules Summary: First Screen
202
Table 16-2 Predefined Services
204
Figure 16-4 Creating/Editing a Firewall Rule (Zywall100)
208
Table 16-3 Creating/Editing a Firewall Rule
208
Figure 16-5 Adding/Editing Source and Destination Addresses
210
Custom Ports
211
Table 16-4 Adding/Editing Source and Destination Addresses
211
Creating/Editing a Custom Port
211
Figure 16-6 Creating/Editing a Custom Port
212
Table 16-5 Creating/Editing a Custom Port
212
Figure 16-7 Firewall Rule Configuration Screen (Zywall100)
213
Example Firewall Rule
213
Figure 16-8 Firewall IP Config Screen
214
Figure 16-9 Custom Port for Myservice
215
Figure 16-10 Myservice Rule Configuration (Zywall100)
216
Figure 16-11 Example 3: Rule Summary (Zywall100)
217
Restrict Web Features
219
Filter List
219
Days and Times
219
Figure 17-1Content Filter: Categories
220
Table 17-1 Content Filter: Categories
220
Figure 17-2 Content Filter: Free
224
Table 17-2 Content Filter: Free
224
Figure 17-3 Content Filter: Icard
225
Table 17-3 Content Filter: Icard
225
List Update
226
Figure 17-4 Content Filter: List Update
227
Table 17-4 Content Filter: List Update
227
Exempt Computers
228
Figure 17-5 Content Filter: Exempt Zone
228
Table 17-5 Content Filter: Exempt Zone
228
Customizing
229
Figure 17-6 Content Filter: Customize
230
Table 17-6 Content Filter: Customize
230
Figure 17-7 Content Filter: Domain Name
232
Table 17-7 Content Filter: Domain Name
232
Chapter 18 Centralized Logs
237
View Log
237
Figure 18-1 View Log
238
Table 18-1 View Log
238
Log Settings
239
Figure 18-2 Log Settings
240
Table 18-2 Log Settings Screen
241
Chapter 19 Filter Configuration
243
About Filtering
243
Figure 19-1 Outgoing Packet Filtering Process
244
Figure 19-2 Filter Rule Process
245
Configuring a Filter Set
246
Figure 19-4 Menu 21: Filter and Firewall Setup
246
Figure 19-5 Menu 21.1: Filter Set Configuration
246
Table 19-1 Abbreviations Used in the Filter Rules Summary Menu
247
Configuring a Filter Rule
248
Table 19-2 Rule Abbreviations Used
248
Figure 19-6 Menu 21.1.1.1: TCP/IP Filter Rule
249
Table 19-3 TCP/IP Filter Rule Menu Fields
249
Figure 19-7 Executing an IP Filter
252
Figure 19-8 Menu 21.1.4.1: Generic Filter Rule
253
Table 19-4 Generic Filter Rule Menu Fields
254
Example Filter
255
Figure 19-9 Telnet Filter Example
255
Figure 19-10 Example Filter: Menu 21.1.3.1
256
Figure 19-11 Example Filter Rules Summary: Menu 21.1.3
257
Filter Types and NAT
258
Firewall
258
Figure 19-12 Protocol and Device Filter Sets
258
Applying a Filter and Factory Defaults
259
Figure 19-13 Filtering LAN Traffic
259
Figure 19-14Filtering DMZ Traffic
260
Figure 19-15 Filtering Remote Node Traffic
260
Chapter 20 SNMP Configuration
261
About SNMP
261
Figure 20-1 SNMP Management Model
262
Supported Mibs
263
Figure 20-2 Menu 22: SNMP Configuration
263
Table 20-1 SNMP Configuration Menu Fields
263
Table 20-2 SNMP Traps
264
Configuration File Maintenance
265
Chapter 21 System Information & Diagnosis
267
System Status
267
Figure 21-1 Menu 24: System Maintenance
267
Figure 21-2 Menu 24.1: System Maintenance: Status (Zywall 100)
268
Table 21-1 System Maintenance: Status Menu Fields
268
Figure 21-3 Menu 24.2: System Information and Console Port Speed
269
Figure 21-4 Menu 24.2.1: System Maintenance: Information (Zywall 10W)
270
Table 21-2 Fields in System Maintenance: Information
270
Log and Trace
271
Figure 21-5 Menu 24.2.2: System Maintenance: Change Console Port Speed
271
Figure 21-6 Menu 24.3: System Maintenance: Log and Trace
272
Figure 21-7 Examples of Error and Information Messages
272
Figure 21-8 Menu 24.3.2: System Maintenance: UNIX Syslog (Zywall 100)
273
Table 21-3 System Maintenance Menu Syslog Parameters
273
System Information and Diagnosis
274
Firewall Log
275
Diagnostic
276
Figure 21-9 Call-Triggering Packet Example
276
Figure 21-10 Menu 24.4: System Maintenance: Diagnostic
277
Figure 21-11 WAN & LAN DHCP
278
Table 21-4 System Maintenance Menu Diagnostic
278
Chapter 22 Firmware and Configuration File Maintenance
279
Filename Conventions
279
Table 22-1 Filename Conventions
280
Backup Configuration
280
Figure 22-1 Telnet into Menu 24.5
281
Figure 22-2 FTP Session Example
282
Table 22-2 General Commands for GUI-Based FTP Clients
282
Backup Configuration Using Tftp
283
Table 22-3 General Commands for GUI-Based TFTP Clients
284
Tftp Command Example
284
Backup Via Console Port
284
Figure 22-3 System Maintenance: Backup Configuration
285
Figure 22-4 System Maintenance: Starting Xmodem Download Screen
285
Figure 22-5 Backup Configuration Example
285
Figure 22-6 Successful Backup Confirmation Screen
285
Restore Configuration
286
Figure 22-7 Telnet into Menu 24.6
287
Figure 22-8 Restore Using FTP Session Example
288
Figure 22-9 System Maintenance: Restore Configuration
288
Figure 22-10 System Maintenance: Starting Xmodem Download Screen
288
Uploading Firmware and Configuration Files
289
Figure 22-11 Restore Configuration Example
289
Figure 22-12 Successful Restoration Confirmation Screen
289
Figure 22-13 Telnet into Menu 24.7.1: Upload System Firmware
290
Figure 22-14 Telnet into Menu 24.7.2: System Maintenance
291
Figure 22-15 FTP Session Example of Firmware File Upload
292
Tftp Upload Command Example
293
Uploading Via Console Port
293
Figure 22-16 Menu 24.7.1 as Seen Using the Console Port
294
Figure 22-17 Example Xmodem Upload
295
Figure 22-18 Menu 24.7.2 as Seen Using the Console Port
296
Figure 22-19 Example Xmodem Upload
297
Chapter 23 System Maintenance & Information
301
Command Interpreter Mode
301
Figure 23-1 Command Mode in Menu 24
301
Call Control Support
302
Figure 23-2 Valid Commands
302
Figure 23-3 Call Control
302
Figure 23-4 Budget Management
303
Table 23-1 Budget Management
303
Figure 23-5 Call History
304
Table 23-2 Call History Fields
304
Time and Date Setting
305
Figure 23-6 Menu 24: System Maintenance
305
Figure 23-7 Menu 24.10 System Maintenance: Time and Date Setting
306
Table 23-3 Time and Date Setting Fields
306
Resetting the Time
307
Chapter 24 Remote Management
309
Remote Management and the Firewall
309
Telnet
309
Figure 24-1 Telnet Configuration on a TCP/IP Network
309
Snmp
310
Remote Management
310
Figure 24-2 Menu 24.11 - Remote Management Control
311
Table 24-1 Menu 24.11 - Remote Management Control
311
Remote Management and NAT
312
System Timeout
313
Bandwidth Management
315
Chapter 25 Bandwidth Management
317
Introduction
317
Bandwidth Classes and Filters
317
Proportional Bandwidth Allocation
318
Bandwidth Management Usage Examples
318
Figure 25-1 Application-Based Bandwidth Management Example
319
Figure 25-2 Subnet-Based Bandwidth Management Example
319
Scheduler
320
Figure 25-3 Application and Subnet-Based Bandwidth Management Example
320
Table 25-1 Application and Subnet-Based Bandwidth Management Example
320
Maximize Bandwidth Usage
321
Figure 25-4 Bandwidth Allotment Example
322
Figure 25-5 Maximize Bandwidth Usage Example
323
Bandwidth Borrowing
324
Figure 25-6 Bandwidth Borrowing Example
325
Bandwidth Management Setup
326
Figure 25-7 Bandwidth Manager: Summary
327
Table 25-2 Bandwidth Manager: Summary
328
Figure 25-8 Bandwidth Manager: Class Setup
329
Table 25-3 Bandwidth Manager: Class Setup
329
Figure 25-9 Bandwidth Manager: Class Configuration
330
Table 25-4 Bandwidth Manager: Class Configuration
330
Figure 25-10 Bandwidth Management Statistics
332
Table 25-5Services and Port Numbers
332
Table 25-6 Bandwidth Management Statistics
333
Figure 25-11 Bandwidth Manager Monitor
334
Table 25-7 Bandwidth Manager Monitor
334
Chapter 26 IP Policy Routing
337
Introduction
337
Benefits
337
Routing Policy
337
Figure 26-2 IP Routing Policy Setup
338
Figure 26-4 Menu 25.1: Sample IP Routing Policy Setup
339
Table 26-1 IP Routing Policy Setup
339
Figure 26-5 IP Routing Policy
340
Table 26-2 IP Routing Policy
340
Applying an IP Policy
342
Figure 26-6 Menu 3.2: TCP/IP and DHCP Ethernet Setup
342
IP Policy Routing Example
343
Figure 26-7 Example of IP Policy Routing
343
Figure 26-8 IP Routing Policy Example
344
Figure 26-9 IP Routing Policy
345
Figure 26-10 Applying IP Policies
346
Chapter 27 Call Scheduling
347
Introduction
347
Figure 27-1 Menu 26 - Schedule Setup
347
Figure 27-2 Schedule Set Setup
348
Table 27-1Schedule Set Setup Fields
348
Figure 27-3 Applying Schedule Set(S) to a Remote Node (Pppoe)
350
Figure 27-4 Applying Schedule Set(S) to a Remote Node (PPTP)
351
Chapter 28 Introduction to Ipsec
353
Introduction
353
Figure 28-1 Encryption and Decryption
354
Ipsec Architecture
355
Figure 28-2 VPN Application
355
Figure 28-3 Ipsec Architecture
356
Ipsec and NAT
357
Table 28-1 VPN and NAT
358
Chapter 29 Vpn/Ipsec Setup
359
Figure 29-1 VPN SMT Menu Tree
359
Ipsec Algorithms
360
Figure 29-2 Menu 27: Vpn/Ipsec Setup
360
Ipsec Summary
361
Figure 29-3 Ipsec Summary Fields
361
Table 29-1 AH and ESP
361
ID Type and Content
362
Table 29-2 Local Fields
362
Table 29-3 Peer Fields
363
Table 29-4 Matching ID Type and Content Configuration Example
363
My Ip Address
364
Secure Gateway Address
364
Table 29-5 Mismatching ID Type and Content Configuration Example
364
Figure 29-4 Telecommuter's Zywall Configuration
365
Figure 29-5 Headquarters Zywall Configuration
365
Table 29-6 Telecommuter and Headquarters Configuration Example
365
Figure 29-6 Menu 27.1: Ipsec Summary
366
Table 29-7 Menu 27.1: Ipsec Summary
366
Ipsec Setup
369
Figure 29-7 Menu 27.1.1: Ipsec Setup
370
IKE Setup
375
Figure 29-8 Two Phases to Set up the Ipsec SA
375
Negotiation Mode
376
Table 29-9 Menu 27.1.1.1: IKE Setup
378
Manual Setup
379
Table 29-10 Active Protocol: Encapsulation and Security Protocol
379
Table 29-11 Menu 27.1.1.2: Manual Setup
380
Chapter 30 SA Monitor
383
Introduction
383
Using SA Monitor
383
Table 30-1 Menu 27.2: SA Monitor
384
Troubleshooting
385
Table 31-1 Troubleshooting the Start-Up of Your Zywall
387
Problems Starting up the Zywall
387
Problems with the LAN Interface
388
Problems with the DMZ Interface
388
Table 31-2 Troubleshooting the LAN Interface
388
Table 31-3 Troubleshooting the LAN Interface
388
Table 31-4 Troubleshooting the WAN Interface
389
Table 31-5 Troubleshooting Internet Access
389
Problems with the WAN Interface
389
Problems with Internet Access
389
Table 31-6 Troubleshooting the Password
390
Table 31-7 Troubleshooting Telnet
390
Problems with the Password
390
Problems with Remote Management
390
Appendix A Setting up Your Computer's IP Address
393
Macintosh os X
402
Appendix B Triangle Route
404
Gateways on the Wan Side
406
Appendix C the Big Picture
407
Benefits of a Wireless Lan
408
Appendix E Wireless LAN with IEEE 802.1X
412
Appendix F Pppoe
415
How Pppoe Works
416
Appendix G PPTP
417
Appendix H Hardware Specifications
420
Cable Pin Assignments
421
Universal Plug and Play
425
Upnp and Zyxel
425
Nat Traversal
425
Installing Upnp in Windows Me
427
Installing Upnp in Windows Xp
428
Using Upnp in Windows Xp Example
429
Web Configurator Easy Access
431
Appendix J IP Subnetting
434
Subnet Masks
435
Example Eight Subnets
439
Subnetting with Class a and Class B Networks
440
Appendix K Safety Warnings and Instructions
442
Command Interpreter
447
Command Syntax
447
Command Usage
447
Appendix N Firewall Commands
448
Firewall Commands
450
Netbios Filter Commands
455
Display Netbios Filter Settings
455
Netbios Filter Configuration
457
Boot Commands
459
Appendix Q Log Descriptions
461
Log Descriptions
472
Log Commands
477
Displaying Logs
477
Log Command Example
478
Advertisement
ZyXEL Communications PPC 10 User Manual (228 pages)
10-100 series Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Network Router
| Size: 2.26 MB
Table of Contents
Online Registration
5
Zyxel Limited Warranty
5
Customer Support
6
Table of Contents
7
Related Documentation
21
Syntax Conventions
21
Chapter 1 Introducing the SMT
25
Figure 1-1 Initial Screen
25
Figure 1-2 Password Screen
26
Navigating the SMT Interface
26
Table 1-1 Main Menu Commands
26
Figure 1-3 Main Menu (Zywall 100)
27
Table 1-2 Main Menu Summary
27
Figure 1-4 Getting Started and Advanced Applications SMT Menus
29
Figure 1-5 Advanced Management SMT Menus
30
Changing the System Password
31
Figure 1-6 Schedule Setup and Ipsec VPN Configuration SMT Menus
31
Figure 1-7 Menu 23: System Password
31
Figure 1-8 Example Xmodem Upload
32
Resetting the Zywall
32
Procedure to Use the Reset Button
33
Figure 2-1 Menu 1: General Setup
35
Table 2-1 General Setup Menu Field
35
Chapter 2 SMT Menu 1 - General Setup
35
Figure 2-2 Configure Dynamic DNS
36
Table 2-2 Configure Dynamic DNS Menu Fields
37
Chapter 3 WAN and Dial Backup Setup
39
Figure 3-1 MAC Address Cloning in WAN Setup
39
Dial Backup
40
Table 3-1 MAC Address Cloning in WAN Setup
40
Figure 3-2 Menu 2: Dial Backup Setup
41
Table 3-2 Menu 2: Dial Backup Setup
41
Figure 3-3 Menu 2.1 Advanced WAN Setup
42
Table 3-3 Advanced WAN Port Setup: at Commands Fields
42
Table 3-4 Advanced WAN Port Setup: Call Control Parameters
43
Figure 3-4 Menu 11.1 Remote Node Profile (Backup ISP)
44
Table 3-5 Fields in Menu 11.1 Remote Node Profile (Backup ISP)
44
Editing PPP Options
46
Figure 3-5 Menu 11.2 - Remote Node PPP Options
47
Figure 3-6 Remote Node PPP Options Menu Fields
47
Editing TCP/IP Options
48
Figure 3-7 Menu 11.3: Remote Node Network Layer Options
48
Table 3-6 Remote Node Network Layer Options Menu Fields
48
Editing Login Script
49
Figure 3-8 Menu 11.4 - Remote Node Setup Script
51
Remote Node Filter
51
Table 3-7 Remote Node Script Menu Fields
51
Figure 3-10 Menu 11.5: Remote Node Filter (Pppoe or PPTP)
52
Figure 3-9 Menu 11.5: Remote Node Filter (Ethernet)
52
Figure 4-1 Menu 3: LAN Setup
53
Chapter 4 LAN Setup
53
Figure 4-2 Menu 3.1: LAN Port Filter Setup
54
Figure 4-3 Menu 3: TCP/IP and DHCP Setup
54
Figure 4-4 Menu 3.2: TCP/IP and DHCP Ethernet Setup
55
Table 4-1 DHCP Ethernet Setup Menu Fields
55
Table 4-2 LAN TCP/IP Setup Menu Fields
56
Figure 4-5 Menu 3.2.1: IP Alias Setup
57
Table 4-3 IP Alias Setup Menu Fields
57
Figure 4-6 Menu 3.5 - Wireless LAN Setup
58
Table 4-4 Wireless LAN Setup Menu Fields
59
Chapter 5 DMZ Setup
61
Figure 5-1 Menu 5: DMZ Setup
61
Figure 5-2 Menu 5.1: DMZ Port Filter Setup
61
Figure 5-3 Menu 5: TCP/IP Setup
62
Figure 5-4 Menu 5.2: TCP/IP Setup
63
Figure 5-5 Menu 5.2.1: IP Alias Setup
64
Chapter 6 Internet Access
65
Configuring the PPTP Client
66
Figure 6-2 Internet Access Setup (PPTP)
67
Table 6-2 New Fields in Menu 4 (PPTP) Screen
67
Configuring the Pppoe Client
67
Figure 6-3 Internet Access Setup (Pppoe)
68
Table 6-3 New Fields in Menu 4 (Pppoe) Screen
68
Basic Setup Complete
68
Table 6-1 Menu 4: Internet Access Setup Menu Fields
65
Chapter 7 Remote Node Setup
71
Figure 7-1 Menu 11 Remote Node Setup
72
Figure 7-2 Menu 11.1: Remote Node Profile for Ethernet Encapsulation
73
Pppoe Encapsulation
74
Figure 7-3 Menu 11.1: Remote Node Profile for Pppoe Encapsulation
75
Table 7-2 Fields in Menu 11.1 (Pppoe Encapsulation Specific)
76
Figure 7-4 Menu 11.1: Remote Node Profile for PPTP Encapsulation
77
Table 7-3 Fields in Menu 11.1 (PPTP Encapsulation)
77
Figure 7-5 Menu 11.3: Remote Node Network Layer Options for Ethernet Encapsulation
78
Table 7-4 Remote Node Network Layer Options Menu Fields
78
Figure 7-6 Menu 11.5: Remote Node Filter (Ethernet Encapsulation)
80
Figure 7-7 Menu 11.5: Remote Node Filter (Pppoe or PPTP Encapsulation)
81
Figure 7-8 Menu 11.1: Remote Node Profile
81
Figure 7-9 Menu 11.6: Traffic Redirect Setup
82
Table 7-5 Menu 11.1: Remote Node Profile (Traffic Redirect Field)
82
Table 7-6 Traffic Redirect Setup
83
Figure 8-1 Menu 12: IP Static Route Setup (Zywall 10W)
85
Figure 8-2 Menu 12. 1: Edit IP Static Route
86
Table 8-1 IP Static Route Menu Fields
86
Chapter 8 IP Static Route Setup
89
Chapter 9 Network Address Translation (NAT)
89
Figure 9-1 Menu 4: Applying NAT for Internet Access
90
Figure 9-2 Menu 11.3: Applying NAT to the Remote Node
91
NAT Setup
91
Figure 9-3 Menu 15: NAT Setup
92
Figure 9-4 Menu 15.1: Address Mapping Sets
92
Figure 9-5 Menu 15.1.255: SUA Address Mapping Rules
93
Table 9-2 SUA Address Mapping Rules
93
Figure 9-6 Menu 15.1.1: First Set
94
Table 9-3 Fields in Menu 15.1.1
95
Figure 9-7 Menu 15.1.1.1: Editing/Configuring an Individual Rule in a Set
96
Table 9-4 Menu 15.1.1.1: Editing/Configuring an Individual Rule in a Set
96
Configuring a Server Behind NAT
97
Figure 9-8 Menu 15.2: NAT Server Setup (Zywall 10)
98
Figure 9-9 Multiple Servers Behind NAT Example
98
Figure 9-11 Menu 4: Internet Access & NAT Example
99
General NAT Examples
99
Figure 9-12 NAT Example 2
100
Figure 9-13 Menu 15.2: Specifying an Inside Server
101
Figure 9-14 NAT Example 3
102
Figure 9-15 Example 3: Menu 11.3
103
Figure 9-17 Example 3: Final Menu 15.1.1
104
Figure 9-19 NAT Example 4
105
Figure 9-20 Example 4: Menu 15.1.1.1: Address Mapping Rule
106
Figure 9-21 Example 4: Menu 15.1.1: Address Mapping Rules
106
Trigger Port Forwarding
106
Figure 9-22 Trigger Port Forwarding Process: Example
107
Figure 9-23 Menu 15.3-Trigger Port Setup
108
Table 9-5 Menu 15.3-Trigger Port Setup Description
109
Figure 10-1 Menu 21: Filter and Firewall Setup
111
Chapter 10 Introducing the Zywall Firewall
111
Figure 10-2 Menu 21.2: Firewall Setup
112
Chapter 11 Filter Configuration
113
Figure 11-1 Outgoing Packet Filtering Process
114
Figure 11-2 Filter Rule Process
115
Configuring a Filter Set
116
Figure 11-4 Menu 21: Filter and Firewall Setup
116
Figure 11-5 Menu 21.1: Filter Set Configuration
116
Table 11-1 Abbreviations Used in the Filter Rules Summary Menu
117
Table 11-2 Rule Abbreviations Used
118
Figure 11-6 Menu 21.1.1.1: TCP/IP Filter Rule
119
Table 11-3 TCP/IP Filter Rule Menu Fields
119
Figure 11-7 Executing an IP Filter
122
Figure 11-8 Menu 21.1.4.1: Generic Filter Rule
123
Table 11-4 Generic Filter Rule Menu Fields
123
Figure 11-9 Telnet Filter Example
125
Figure 11-10 Example Filter: Menu 21.1.3.1
126
Filter Types and NAT
127
Figure 11-12 Protocol and Device Filter Sets
128
Firewall Versus Filters
128
Figure 11-13 Filtering LAN Traffic
129
Figure 11-14Filtering DMZ Traffic
130
Figure 11-15 Filtering Remote Node Traffic
130
Figure 12-1 Menu 22: SNMP Configuration
131
Table 12-1 SNMP Configuration Menu Fields
131
Chapter 12 SNMP Configuration
131
Table 12-2 SNMP Traps
132
Chapter 16 Remote Management
133
Chapter 13 System Information & Diagnosis
135
Figure 13-1 Menu 24: System Maintenance
135
Figure 13-2 Menu 24.1: System Maintenance: Status (Zywall 100)
136
Table 13-1 System Maintenance: Status Menu Fields
136
System Information and Console Port Speed
137
Figure 13-3 Menu 24.2: System Information and Console Port Speed
138
Figure 13-4 Menu 24.2.1: System Maintenance: Information (Zywall 10W)
138
Figure 13-5 Menu 24.2.2: System Maintenance: Change Console Port Speed
139
Table 13-2 Fields in System Maintenance: Information
139
Figure 13-6 Menu 24.3: System Maintenance: Log and Trace
140
Figure 13-7 Examples of Error and Information Messages
141
Figure 13-8 Menu 24.3.2: System Maintenance: UNIX Syslog (Zywall 100)
141
Table 13-3 System Maintenance Menu Syslog Parameters
142
Filter Log
143
Diagnostic
145
Figure 13-9 Call-Triggering Packet Example
145
Figure 13-10 Menu 24.4: System Maintenance: Diagnostic
146
Figure 13-11 WAN & LAN DHCP
147
Table 13-4 System Maintenance Menu Diagnostic
147
Chapter 14 Firmware and Configuration File Maintenance
149
Table 14-1 Filename Conventions
150
Backup Configuration
150
Figure 14-1 Telnet into Menu 24.5
151
Figure 14-2 FTP Session Example
152
Table 14-2 General Commands for GUI-Based FTP Clients
152
Backup Configuration Using Tftp
153
Table 14-3 General Commands for GUI-Based TFTP Clients
154
Figure 14-3 System Maintenance: Backup Configuration
155
Figure 14-4 System Maintenance: Starting Xmodem Download Screen
155
Figure 14-5 Backup Configuration Example
155
Figure 14-6 Successful Backup Confirmation Screen
155
Restore Configuration
156
Figure 14-7 Telnet into Menu 24.6
157
Figure 14-8 Restore Using FTP Session Example
158
Figure 14-9 System Maintenance: Restore Configuration
158
Figure 14-10 System Maintenance: Starting Xmodem Download Screen
158
Figure 14-11 Restore Configuration Example
159
Figure 14-12 Successful Restoration Confirmation Screen
159
Uploading Firmware and Configuration Files
159
Figure 14-13 Telnet into Menu 24.7.1: Upload System Firmware
160
Figure 14-14 Telnet into Menu 24.7.2: System Maintenance
161
Figure 14-15 FTP Session Example of Firmware File Upload
162
Tftp Upload Command Example
163
Uploading Via Console Port
163
Figure 14-16 Menu 24.7.1 as Seen Using the Console Port
164
Figure 14-17 Example Xmodem Upload
165
Figure 14-18 Menu 24.7.2 as Seen Using the Console Port
166
Figure 14-19 Example Xmodem Upload
167
Chapter 15 System Maintenance & Information
169
Figure 15-2 Valid Commands
170
Table 15-1 Valid Commands
170
Call Control Support
171
Figure 15-3 Call Control
171
Figure 15-4 Budget Management
172
Table 15-2 Budget Management
172
Figure 15-5 Call History
173
Table 15-3 Call History Fields
173
Figure 15-6 Menu 24: System Maintenance
174
Time and Date Setting
174
Figure 15-7 Menu 24.10 System Maintenance: Time and Date Setting
175
Table 15-4 Time and Date Setting Fields
175
Resetting the Time
176
Remote Management
177
Figure 16-1 Menu 24.11 - Remote Management Control
178
Table 16-1 Menu 24.11 - Remote Management Control
178
Remote Management Limitations
179
Troubleshooting
181
Chapter 17 IP Policy Routing
183
Figure 17-2 IP Routing Policy Setup
184
Figure 17-4 Menu 25.1: Sample IP Routing Policy Setup
185
Table 17-1 IP Routing Policy Setup
185
Figure 17-5 IP Routing Policy
186
Table 17-2 IP Routing Policy
186
Applying an IP Policy
188
Figure 17-6 Menu 3.2: TCP/IP and DHCP Ethernet Setup
188
Figure 17-7 Example of IP Policy Routing
189
Figure 17-8 IP Routing Policy Example
190
Figure 17-9 IP Routing Policy
191
Figure 17-10 Applying IP Policies
192
Figure 18-1 Schedule Setup
193
Chapter 18 Call Scheduling
193
Figure 18-2 Schedule Set Setup
194
Table 18-1Schedule Set Setup Fields
194
Figure 18-3 Applying Schedule Set(S) to a Remote Node (Pppoe)
196
Figure 18-4 Applying Schedule Set(S) to a Remote Node (PPTP)
197
Chapter 19 Vpn/Ipsec Setup
199
Figure 19-1 VPN SMT Menu Tree
199
Figure 19-2 Menu 27: Vpn/Ipsec Setup
200
Figure 19-3 Menu 27.1: Ipsec Summary
200
Ipsec Summary Screen
200
Table 19-1 Menu 27.1: Ipsec Summary
201
Ipsec Setup
204
IKE Setup
209
Table 19-3 Menu 27.1.1.1: IKE Setup
210
Manual Setup
211
Figure 19-6 Menu 27.1.1.2: Manual Setup
212
Table 19-4 Active Protocol: Encapsulation and Security Protocol
212
Table 19-5 Menu 27.1.1.2: Manual Setup
212
Figure 20-1 Menu 27.2: SA Monitor
215
Chapter 20 SA Monitor
215
Table 20-1 Menu 27.2: SA Monitor
216
Chapter 21 Troubleshooting
217
Table 21-1 Troubleshooting the Start-Up of Your Zywall
217
Problems with the LAN Interface
218
Table 21-2 Troubleshooting the LAN Interface
218
Table 21-3 Troubleshooting the DMZ Interface
218
Problems with the WAN Interface
219
Table 21-4 Troubleshooting the WAN Interface
219
Table 21-5 Troubleshooting Internet Access
219
Problems with the Password
220
Table 21-6 Troubleshooting the Password
220
Table 21-7 Troubleshooting Telnet
220
ZyXEL Communications PPC 10 User Manual (17 pages)
Phoneline PCI Card
Brand:
ZyXEL Communications
| Category:
PCI Card
| Size: 0.06 MB
Table of Contents
Ppc-10 Phoneline Pci Card
2
Disclaimer
2
Trademarks
2
Fcc Statement
3
Information for Canadian Users
4
Zyxel Limited Warranty
6
Customer Support
8
Table of Contents
9
1 Introduction
11
Features
11
System Requirements
11
Unpacking
12
Installing the Phoneline Card
12
Connecting the Phoneline Network
13
Drivers and Utilities Diskette
13
Software Installation
14
Led Definitions
14
Product Specifications
15
2 PHONELINE PCI Âà±Μ¥D
16
ϥλ¡©Ú®Ñ
16
Advertisement
ZyXEL Communications PPC 10 Quick Start Manual (11 pages)
Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 0.7 MB
Table of Contents
Quick Start Guide
1
Introducing the Zywall
2
Quick Start Overview
2
Rear Panel
3
Hardware Installation
3
The Front Panel Leds
4
Setting up Your Computer's IP Address
5
Configuring Your Zywall
6
Accessing Your Zywall Via Web Configurator
7
Test Your Internet Connection
10
Troubleshooting
10
Advertisement
Related Products
ZyXEL Communications p-661hw series
ZyXEL Communications P-661HW-D Series
ZyXEL Communications P660HW-T1V3
ZyXEL Communications P-660HW-T - V2
ZyXEL Communications P-660HN-Fx series
ZyXEL Communications P-870HN-51B - V1.0
ZyXEL Communications P-794H
ZyXEL Communications P-870HN-53b
ZyXEL Communications P-870M-I3
ZyXEL Communications P-660HW-Tx v2 Series
ZyXEL Communications Categories
Gateway
Network Router
Switch
Wireless Router
Adapter
More ZyXEL Communications Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL