Sign In
Upload
Manuals
Brands
ZyXEL Communications Manuals
Gateway
ZyXEL ZyWALL 30W
ZyXEL Communications ZyXEL ZyWALL 30W Manuals
Manuals and User Guides for ZyXEL Communications ZyXEL ZyWALL 30W. We have
4
ZyXEL Communications ZyXEL ZyWALL 30W manuals available for free PDF download: User Manual, Quick Start Manual
ZyXEL Communications ZyXEL ZyWALL 30W User Manual (708 pages)
Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 15 MB
Table of Contents
Information for Canadian Users
4
Zyxel Limited Warranty
5
Customer Support
6
Table of Contents
9
List of Figures
21
List of Tables
33
Preface
39
Related Documentation
39
Syntax Conventions
40
Getting Started
41
Chapter 1 Getting to Know Your Zywall
43
Zywall Internet Security Gateway Overview
43
Zywall Features
43
Reset Button
44
Wep Encryption
46
Pptp Encapsulation
47
Dynamic Dns Support
47
Traffic Redirect
48
Port Forwarding
48
Figure 6-3 Wireless
49
Table 1-1 Model Specific Features
49
Table 6-1 Wireless
49
Applications for the Zywall
51
Figure 1-1 Secure Internet Access Via Cable, DSL or Wireless Modem
51
Figure 1-2 VPN Application
52
Chapter 2 Introducing the Web Configurator
53
Web Configurator Overview
53
Accessing the Zywall Web Configurator
53
Figure 2-1 Change Password Screen
53
Resetting the Zywall
54
Figure 2-2 Replace Certificate Screen
54
Figure 2-3 Example Xmodem Upload
55
Navigating the Zywall Web Configurator
56
Figure 2-4 Web Configurator MAIN MENU Screen
56
Table 2-1Web Configurator Screens Summary
56
Chapter 3 Wizard Setup
61
Wizard Setup Overview
61
Wizard Setup: General Setup and System Name
61
Wizard Setup: Screen 2
62
Wizard Setup: Screen 3
62
Figure 3-1 Wizard 1
62
Figure 3-2 Wizard 2: Ethernet Encapsulation
63
Table 3-1 Ethernet Encapsulation
63
Pppoe Encapsulation
64
Figure 3-3 Wizard2: Pppoe Encapsulation
65
Table 3-2 Pppoe Encapsulation
65
Figure 3-4 Wizard 2: PPTP Encapsulation
67
Table 3-3 PPTP Encapsulation
67
Table 3-4 Private IP Address Ranges
68
Dns Server Address Assignment
69
Ip Address and Subnet Mask
69
Table 3-5 Example of Network Properties for LAN Servers with Fixed IP Addresses
70
Figure 3-5 Wizard 3
70
Table 3-6 WAN Setup
71
Basic Setup Complete
72
System, LAN and Wireless LAN
73
Chapter 4 System Screens
75
System Overview
75
DNS Overview
75
Configuring General Setup
75
Figure 4-1 System General Setup
75
Table 4-1 System General Setup
76
Dynamic DNS
77
Configuring Dynamic DNS
77
Dyndns Wildcard
77
Figure 4-2 DDNS
78
Table 4-2 DDNS
78
Configuring Password
79
Figure 4-3 Password
79
Pre-Defined NTP Time Servers List
80
Table 4-3 Password
80
Table 4-4 Pre-Defined Time Servers
80
Configuring Time Setting
81
Figure 4-4 Time Setting
81
Table 4-5 Time Setting
82
Chapter 5 LAN Screens
83
LAN Overview
83
DHCP Setup
83
Ip Pool Setup
83
Dns Servers
83
Factory Lan Defaults
83
Lan Tcp/Ip
83
Rip Setup
84
Configuring IP
85
Figure 5-1 IP
85
Table 5-1 IP
85
Configuring Static DHCP
88
Figure 5-2 Static DHCP
88
Table 5-2 Static DHCP
88
Configuring IP Alias
89
Figure 5-3 Physical Network Figure 5-4 Partitioned Logical Networks
89
Figure 5-5 IP Alias
90
Table 5-3 IP Alias
90
Chapter 6 Wireless LAN Screens
93
Wireless LAN Overview
93
Wireless LAN Basics
93
Figure 6-1 RTS Threshold
94
Wireless Security
95
Figure 6-2 Zywall Wireless Security Levels
95
Configuring Wireless LAN
96
Configuring MAC Filter
98
Figure 6-4 MAC Address Filter
99
Table 6-2 MAC Address Filter
99
Overview
100
Configuring 802.1X
100
Figure 6-5 802.1X Authentication
100
Table 6-3 802.1X Authentication
100
DMZ and WAN
103
Chapter 7 DMZ Screens
105
DMZ Overview
105
DMZ Addresses
105
Configuring DMZ
105
Figure 7-1 DMZ (Zywall 100)
106
Table 7-1 DMZ
107
Chapter 8 WAN Screens
109
WAN Overview
109
TCP/IP Priority (Metric)
109
Configuring Route
109
Configuring WAN ISP
110
Figure 8-1 WAN Setup: Route
110
Table 8-1 WAN Setup: Route
110
Figure 8-2 Ethernet Encapsulation
111
Table 8-2 Ethernet Encapsulation
111
Figure 8-3 Pppoe Encapsulation
113
Table 8-3 Pppoe Encapsulation
113
Figure 8-4 PPTP Encapsulation
115
Table 8-4 PPTP Encapsulation
115
Configuring WAN IP
116
Figure 8-5 IP Setup
117
Table 8-5 IP Setup
117
Configuring WAN MAC
119
Traffic Redirect
120
Figure 8-6 MAC Setup
120
Figure 8-7 Traffic Redirect WAN Setup
120
Configuring Traffic Redirect
121
Figure 8-8 Traffic Redirect LAN Setup
121
Figure 8-9 Traffic Redirect
122
Table 8-6 Traffic Redirect
122
Configuring Dial Backup
123
Figure 8-10 Dial Backup Setup
124
Table 8-7Dial Backup Setup
125
Advanced Modem Setup
128
Configuring Advanced Modem Setup
129
Figure 8-11 Advanced Setup
129
Table 8-8 Advanced Setup
130
NAT and Static Route
133
Chapter 9 Network Address Translation (NAT) Screens
135
NAT Overview
135
How Nat Works
136
Table 9-2 NAT Table Example
136
What Nat Does
136
Figure 9-1 How NAT Works
137
Figure 9-2 NAT Application with IP Alias
138
Using NAT
139
Table 9-3 NAT Mapping Types
139
SUA Server
140
Table 9-4 Services and Port Numbers
140
Configuring SUA Server
142
Figure 9-3 Multiple Servers Behind NAT Example
142
Figure 9-4 SUA Server
143
Table 9-5 SUA Server
143
Configuring Address Mapping
144
Figure 9-5 Address Mapping
144
Table 9-6 Address Mapping
145
Figure 9-6Address Mapping Edit
146
Table 9-7 Address Mapping Edit
146
Trigger Port Forwarding
147
Configuring Trigger Port Forwarding
148
Figure 9-7 Trigger Port Forwarding Process: Example
148
Figure 9-8 Trigger Port
149
Table 9-8 Trigger Port
149
Chapter 10 Static Route Screens
151
Static Route Overview
151
Configuring IP Static Route
151
Figure 10-1 Example of Static Routing Topology
151
Figure 10-2 IP Static Route
152
Table 10-1 IP Static Route
152
Figure 10-3 Edit IP Static Route
153
Table 10-2 Edit IP Static Route
153
Firewall and Content Filtering
155
Chapter 11 Firewalls
157
Firewall Overview
157
Types of Firewalls
157
Introduction to Zyxel's Firewall
158
Denial of Service
159
Figure 11-1 Zywall Firewall Application
159
Figure 18-20 FTP
160
Figure 18-23 DNS
160
Types of Dos Attacks
160
Table 11-1 Common IP Ports
160
Figure 11-2 Three-Way Handshake
161
Figure 11-3 SYN Flood
161
Figure 11-4 Smurf Attack
162
Table 11-2 ICMP Commands that Trigger Alerts
162
Stateful Inspection
163
Table 11-3 Legal Netbios Commands
163
Table 11-4 Legal SMTP Commands
163
Figure 11-5 Stateful Inspection
164
Stateful Inspection and the Zywall
165
Tcp Security
166
Guidelines for Enhancing Security with Your Firewall
167
Packet Filtering Vs Firewall
168
Chapter 12 Firewall Screens
171
Access Methods
171
Firewall Policies Overview
171
Rule Logic Overview
172
Security Ramifications
173
Key Fields for Configuring Rules
173
Connection Direction Examples
174
Figure 12-1 LAN to WAN Traffic
174
Bandwidth Management - Lite
175
Bandwidth Management Usage Examples
175
Figure 12-2 WAN to LAN Traffic
175
Figure 12-3 Application-Based Bandwidth Management Example
176
Figure 12-4 Subnet-Based Bandwidth Management Example
176
Table 12-1 Application and Subnet-Based Bandwidth Management Example
176
Alerts
177
Configuring Firewall
177
Figure 12-5 Application and Subnet-Based Bandwidth Management Example
177
Figure 12-6 Firewall Summary
178
Table 12-2 Firewall Summary
178
Configuring Firewall Rules
180
Figure 12-7 Firewall Edit Rule
181
Table 12-3 Firewall Edit Rule
181
Figure 12-8 Source and Destination Addresses Add/Edit
184
Table 12-4 Source and Destination Addresses Add/Edit
184
Figure 12-9 Custom Port Create/Edit
185
Table 12-5 Custom Port Create/Edit
185
Figure 12-10 BM Global Setting
186
Table 12-6 BM Global Setting
186
Example Firewall Rule
187
Figure 12-11 Firewall Edit Rule Screen
188
Figure 12-12 Firewall Rule Edit IP Example
188
Figure 12-13 Edit Custom Port Example
189
Figure 12-14 My Service Rule Configuration
190
Predefined Services
191
Figure 12-15 My Service Example Rule Summary
191
Table 12-7 Predefined Services
192
Configuring Attack Alert
194
Figure 12-16 Attack Alert
196
Table 12-8 Attack Alert
196
Chapter 13 Content Filtering Screens
199
Content Filtering Overview
199
General Content Filter Configuration
199
Figure 13-1 Content Filtering General
200
Table 13-1 Content Filtering General
200
Content Filtering with an External Server
202
A Procedure to Enable External Database Content Filtering
203
Figure 13-2 Content Filtering Lookup Procedure
203
Checking Content Filtering Activation
204
Configuring Categories
204
Figure 13-3 Content Filtering Categories
205
Table 13-2 Content Filtering Categories
206
Configuring Customization
213
Figure 13-4 Content Filtering Customization
214
Table 13-3 Content Filtering Customization
214
Vpn/Ipsec
217
Chapter 14 Introduction to Ipsec
219
VPN Overview
219
Ipsec Architecture
220
Figure 14-1 Encryption and Decryption
220
Encapsulation
221
Figure 14-2 Ipsec Architecture
221
Ipsec and NAT
222
Figure 14-3 Transport and Tunnel Mode Ipsec Encapsulation
222
Table 14-1 VPN and NAT
223
Chapter 15 VPN Screens
225
Vpn/Ipsec Overview
225
Ipsec Algorithms
225
My IP Address
226
Secure Gateway Address
226
Table 15-1 AH and ESP
226
VPN Rules Screen
227
Figure 15-1 Ipsec VPN Rules Fields
227
Figure 15-2 VPN Rules
228
Table 15-2 VPN Rules
228
Keep Alive
230
NAT Traversal
230
Figure 15-3 NAT Router between Ipsec Routers
230
ID Type and Content
232
Figure 15-4 VPN Host Using Intranet DNS Server Example
232
Table 15-3 Local ID Type and Content Fields
233
Table 15-4 Peer ID Type and Content Fields
233
Table 15-5 Matching ID Type and Content Configuration Example
233
Pre-Shared Key
234
Certificates
234
Editing VPN Policies
234
Table 15-6 Mismatching ID Type and Content Configuration Example
234
Figure 15-5 VPN IKE
235
Table 15-7 VPN IKE
236
IKE Phases
243
Figure 15-6 Two Phases to Set up the Ipsec SA
243
Negotiation Mode
244
Configuring Advanced IKE Settings
245
Figure 15-7 VPN IKE: Advanced
246
Table 15-8 VPN IKE: Advanced
246
Manual Key Setup
249
Configuring Manual Key
249
Figure 15-8 VPN Manual Key
250
Table 15-9 VPN Manual Key
250
Viewing SA Monitor
253
Figure 15-9 SA Monitor (Zywall 100)
254
Table 15-10 SA Monitor
254
Configuring Global Setting
255
Figure 15-10 Global Setting
255
Table 15-11 Global Setting
255
Telecommuter Vpn/Ipsec Examples
256
Figure 15-11 Telecommuters Sharing One VPN Rule Example
256
Table 15-12 Telecommuters Sharing One VPN Rule Example
256
Figure 15-12 Telecommuters Using Unique VPN Rules Example
257
Table 15-13 Telecommuters Using Unique VPN Rules Example
258
VPN and Remote Management
259
Certificates
261
Advertisement
ZyXEL Communications ZyXEL ZyWALL 30W User Manual (692 pages)
ZyWall Series Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 15.32 MB
Table of Contents
Information for Canadian Users
4
Zyxel Limited Warranty
5
Customer Support
6
Warranty Information
6
Table of Contents
7
List of Figures
15
List of Tables
23
Preface
27
Related Documentation
27
Syntax Conventions
28
Getting Started
29
Chapter 1 Getting to Know Your Zywall
31
Zywall Internet Security Gateway Overview
31
Zywall Features
31
Reset Button
32
Wep Encryption
34
Pptp Encapsulation
35
Dynamic Dns Support
35
Traffic Redirect
36
Port Forwarding
36
Figure 6-3 Wireless
37
Table 1-1 Model Specific Features
37
Table 6-1 Wireless
37
Applications for the Zywall
39
Figure 1-1 Secure Internet Access Via Cable, DSL or Wireless Modem
39
Figure 1-2 VPN Application
40
Chapter 2 Introducing the Web Configurator
41
Web Configurator Overview
41
Accessing the Zywall Web Configurator
41
Figure 2-1 Change Password Screen
41
Resetting the Zywall
42
Figure 2-2 Replace Certificate Screen
42
Figure 2-3 Example Xmodem Upload
43
Navigating the Zywall Web Configurator
44
Figure 2-4 Web Configurator MAIN MENU Screen
44
Table 2-1Web Configurator Screens Summary
44
Chapter 3 Wizard Setup
49
Wizard Setup Overview
49
Wizard Setup: General Setup and System Name
49
Wizard Setup: Screen 2
50
Figure 3-2 Wizard 2: Ethernet Encapsulation
51
Table 3-1 Ethernet Encapsulation
51
Pppoe Encapsulation
52
Figure 3-3 Wizard2: Pppoe Encapsulation
53
Table 3-2 Pppoe Encapsulation
53
Figure 3-4 Wizard 2: PPTP Encapsulation
55
Table 3-3 PPTP Encapsulation
55
Wizard Setup: Screen 3
56
Table 3-4 Private IP Address Ranges
56
Dns Server Address Assignment
57
Ip Address and Subnet Mask
57
Table 3-5 Example of Network Properties for LAN Servers with Fixed IP Addresses
58
Figure 3-5 Wizard 3
58
Table 3-6 WAN Setup
59
Basic Setup Complete
60
System, LAN and Wireless LAN
61
Chapter 4 System Screens
63
System Overview
63
DNS Overview
63
Configuring General Setup
63
Figure 4-1 System General Setup
64
Table 4-1 System General Setup
64
Dynamic DNS
65
Configuring Dynamic DNS
65
Figure 4-2 DDNS
66
Table 4-2 DDNS
66
Configuring Password
67
Figure 4-3 Password
67
Configuring Time Setting
68
Figure 4-4 Time Setting
68
Table 4-3 Password
68
Table 4-4 Time Setting
69
Chapter 5 LAN Screens
71
LAN Overview
71
DHCP Setup
71
Lan Tcp/Ip
71
Rip Setup
72
Configuring IP
73
Figure 5-1 IP
73
Table 5-1 IP
73
Configuring Static DHCP
76
Figure 5-2 Static DHCP
76
Table 5-2 Static DHCP
76
Configuring IP Alias
77
Figure 5-3 Physical Network Figure 5-4 Partitioned Logical Networks
77
Figure 5-5 IP Alias
78
Table 5-3 IP Alias
78
Chapter 6 Wireless LAN Screens
81
Wireless LAN Overview
81
Wireless LAN Basics
81
Figure 6-1 RTS Threshold
82
Wireless Security
83
Figure 6-2 Zywall Wireless Security Levels
83
Configuring Wireless LAN
84
Configuring MAC Filter
86
Figure 6-4 MAC Address Filter
87
Table 6-2 MAC Address Filter
87
Overview
88
Configuring 802.1X
88
Figure 6-5 802.1X Authentication
88
Table 6-3 802.1X Authentication
88
DMZ and WAN
91
Chapter 7 DMZ Screens
93
DMZ Overview
93
DMZ Addresses
93
Configuring DMZ
93
Figure 7-1 DMZ (Zywall 100)
94
Table 7-1 DMZ
95
Chapter 8 WAN Screens
97
WAN Overview
97
TCP/IP Priority (Metric)
97
Configuring Route
97
Configuring WAN ISP
98
Figure 8-1 WAN Setup: Route
98
Table 8-1 WAN Setup: Route
98
Figure 8-2 Ethernet Encapsulation
99
Table 8-2 Ethernet Encapsulation
99
Figure 8-3 Pppoe Encapsulation
101
Table 8-3 Pppoe Encapsulation
101
Figure 8-4 PPTP Encapsulation
103
Table 8-4 PPTP Encapsulation
103
Configuring WAN IP
104
Figure 8-5 IP Setup
105
Table 8-5 IP Setup
105
Configuring WAN MAC
107
Traffic Redirect
108
Figure 8-6 MAC Setup
108
Figure 8-7 Traffic Redirect WAN Setup
108
Configuring Traffic Redirect
109
Figure 8-8 Traffic Redirect LAN Setup
109
Figure 8-9 Traffic Redirect
110
Table 8-6 Traffic Redirect
110
Configuring Dial Backup
111
Figure 8-10 Dial Backup Setup
112
Table 8-7Dial Backup Setup
113
Advanced Modem Setup
116
Configuring Advanced Modem Setup
117
Figure 8-11 Advanced Setup
117
Table 8-8 Advanced Setup
118
NAT and Static Route
121
Chapter 9 Network Address Translation (NAT) Screens
123
NAT Overview
123
How Nat Works
124
Table 9-2 NAT Table Example
124
What Nat Does
124
Figure 9-1 How NAT Works
125
Figure 9-2 NAT Application with IP Alias
126
Using NAT
127
Table 9-3 NAT Mapping Types
127
SUA Server
128
Table 9-4 Services and Port Numbers
128
Configuring SUA Server
130
Figure 9-3 Multiple Servers Behind NAT Example
130
Figure 9-4 SUA Server
131
Table 9-5 SUA Server
131
Configuring Address Mapping
132
Table 9-6 Address Mapping
133
Figure 9-6Address Mapping Edit
134
Table 9-7 Address Mapping Edit
134
Trigger Port Forwarding
135
Configuring Trigger Port Forwarding
136
Figure 9-7 Trigger Port Forwarding Process: Example
136
Figure 9-8 Trigger Port
137
Table 9-8 Trigger Port
137
Chapter 10 Static Route Screens
139
Static Route Overview
139
Configuring IP Static Route
139
Figure 10-1 Example of Static Routing Topology
139
Figure 10-2 IP Static Route
140
Table 10-1 IP Static Route
140
Figure 10-3 Edit IP Static Route
141
Table 10-2 Edit IP Static Route
141
Firewall and Content Filtering
143
Chapter 11 Firewalls
145
Firewall Overview
145
Types of Firewalls
145
Introduction to Zyxel's Firewall
146
Denial of Service
147
Figure 11-1 Zywall Firewall Application
147
Figure 18-20 FTP
148
Figure 18-23 DNS
148
Table 11-1 Common IP Ports
148
Types of Dos Attacks
148
Figure 11-2 Three-Way Handshake
149
Figure 11-3 SYN Flood
149
Figure 11-4 Smurf Attack
150
Table 11-2 ICMP Commands that Trigger Alerts
150
Stateful Inspection
151
Table 11-3 Legal Netbios Commands
151
Table 11-4 Legal SMTP Commands
151
Figure 11-5 Stateful Inspection
152
Stateful Inspection and the Zywall
153
Tcp Security
154
Guidelines for Enhancing Security with Your Firewall
155
Packet Filtering Vs Firewall
156
Chapter 12 Firewall Screens
159
Access Methods
159
Firewall Policies Overview
159
Rule Logic Overview
160
Security Ramifications
161
Key Fields for Configuring Rules
161
Connection Direction Examples
162
Figure 12-1 LAN to WAN Traffic
162
Bandwidth Management - Lite
163
Bandwidth Management Usage Examples
163
Figure 12-2 WAN to LAN Traffic
163
Figure 12-3 Application-Based Bandwidth Management Example
164
Figure 12-4 Subnet-Based Bandwidth Management Example
164
Table 12-1 Application and Subnet-Based Bandwidth Management Example
164
Alerts
165
Configuring Firewall
165
Figure 12-5 Application and Subnet-Based Bandwidth Management Example
165
Figure 12-6 Firewall Summary
166
Table 12-2 Firewall Summary
166
Configuring Firewall Rules
168
Figure 12-7 Firewall Edit Rule
169
Table 12-3 Firewall Edit Rule
169
Figure 12-8 Source and Destination Addresses Add/Edit
172
Table 12-4 Source and Destination Addresses Add/Edit
172
Figure 12-9 Custom Port Create/Edit
173
Table 12-5 Custom Port Create/Edit
173
Figure 12-10 BM Global Setting
174
Table 12-6 BM Global Setting
174
Example Firewall Rule
175
Figure 12-11 Firewall Edit Rule Screen
176
Figure 12-12 Firewall Rule Edit IP Example
176
Figure 12-13 Edit Custom Port Example
177
Figure 12-14 My Service Rule Configuration
178
Predefined Services
179
Figure 12-15 My Service Example Rule Summary
179
Table 12-7 Predefined Services
180
Configuring Attack Alert
182
Figure 12-16 Attack Alert
184
Table 12-8 Attack Alert
184
Chapter 13 Content Filtering Screens
187
Content Filtering Overview
187
General Content Filter Configuration
187
Figure 13-1 Content Filtering General
188
Table 13-1 Content Filtering General
188
Content Filtering with an External Server
190
A Procedure to Enable External Database Content Filtering
191
Figure 13-2 Content Filtering Lookup Procedure
191
Configuring Categories
192
Figure 13-3 Content Filtering Categories
192
Table 13-2 Content Filtering Categories
193
Configuring Customization
199
Figure 13-4 Content Filtering Customization
200
Table 13-3 Content Filtering Customization
200
Vpn/Ipsec
203
Chapter 14 Introduction to Ipsec
205
VPN Overview
205
Ipsec Architecture
206
Figure 14-1 Encryption and Decryption
206
Encapsulation
207
Figure 14-2 Ipsec Architecture
207
Ipsec and NAT
208
Figure 14-3 Transport and Tunnel Mode Ipsec Encapsulation
208
Table 14-1 VPN and NAT
209
Chapter 15 VPN Screens
211
Vpn/Ipsec Overview
211
Ipsec Algorithms
211
My IP Address
212
Secure Gateway Address
212
Table 15-1 AH and ESP
212
VPN Rules Screen
213
Figure 15-1 Ipsec VPN Rules Fields
213
Figure 15-2 VPN Rules
214
Table 15-2 VPN Rules
214
Keep Alive
216
NAT Traversal
216
Figure 15-3 NAT Router between Ipsec Routers
216
ID Type and Content
218
Figure 15-4 VPN Host Using Intranet DNS Server Example
218
Table 15-3 Local ID Type and Content Fields
219
Table 15-4 Peer ID Type and Content Fields
219
Table 15-5 Matching ID Type and Content Configuration Example
219
Pre-Shared Key
220
Certificates
220
Editing VPN Policies
220
Table 15-6 Mismatching ID Type and Content Configuration Example
220
Figure 15-5 VPN IKE
221
Table 15-7 VPN IKE
222
IKE Phases
229
Figure 15-6 Two Phases to Set up the Ipsec SA
229
Negotiation Mode
230
Configuring Advanced IKE Settings
231
Figure 15-7 VPN IKE: Advanced
231
Table 15-8 VPN IKE: Advanced
232
Manual Key Setup
234
Configuring Manual Key
234
Figure 15-8 VPN Manual Key
235
Table 15-9 VPN Manual Key
235
Viewing SA Monitor
238
Figure 15-9 SA Monitor (Zywall 100)
239
Table 15-10 SA Monitor
239
Configuring Global Setting
240
Figure 15-10 Global Setting
240
Table 15-11 Global Setting
240
Telecommuter Vpn/Ipsec Examples
241
Figure 15-11 Telecommuters Sharing One VPN Rule Example
241
Table 15-12 Telecommuters Sharing One VPN Rule Example
241
Figure 15-12 Telecommuters Using Unique VPN Rules Example
242
Table 15-13 Telecommuters Using Unique VPN Rules Example
243
VPN and Remote Management
244
Certificates
245
ZyXEL Communications ZyXEL ZyWALL 30W User Manual (536 pages)
Zyxel ZyWall Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 11.39 MB
Table of Contents
Copyright
2
Information for Canadian Users
4
Zyxel Limited Warranty
5
Customer Support
6
Table of Contents
7
List of Figures
18
Preface
29
Related Documentation
29
Syntax Conventions
30
Getting Started
31
Chapter 1 Getting to Know Your Zywall
33
Zywall Internet Security Gateway Overview
33
Zywall Features
34
Pptp Encapsulation
36
Dynamic Dns Support
36
Traffic Redirect
37
Port Forwarding
37
Table 1-1 Model Specific Features
38
Figure 6-3 Wireless
39
Figure 7-1 DMZ
39
Table 6-1 Wireless
39
Applications for the Zywall
40
Figure 1-1 Secure Internet Access Via Cable, DSL or Wireless Modem
41
Figure 1-2 VPN Application
42
Chapter 2 Introducing the Web Configurator
43
Web Configurator Overview
43
Accessing the Zywall Web Configurator
43
Figure 2-1 Change Password Screen
43
Resetting the Zywall
44
Navigating the Zywall Web Configurator
45
Figure 2-2 Example Xmodem Upload
45
Figure 2-3 the MAIN MENU Screen of the Web Configurator
46
Chapter 3 Wizard Setup
47
Wizard Setup Overview
47
Wizard Setup: General Setup and System Name
47
Wizard Setup: Screen 2
48
Wizard Setup: Screen 3
48
Figure 3-2 Wizard 2: Ethernet Encapsulation
49
Table 3-1 Ethernet Encapsulation
49
Figure 3-3 Wizard 2: PPTP Encapsulation
51
Table 3-2 PPTP Encapsulation
51
Pppoe Encapsulation
52
Figure 3-4 Wizard2: Pppoe Encapsulation
53
Table 3-3 Pppoe Encapsulation
53
Table 3-4 Private IP Address Ranges
54
Dns Server Address Assignment
55
Ip Address and Subnet Mask
55
Table 3-5 Example of Network Properties for LAN Servers with Fixed IP Addresses
56
Table 3-6 WAN Setup
57
Figure 3-5 Wizard 3
57
Basic Setup Complete
58
System, LAN and Wireless LAN
59
Chapter 4 System Screens
61
System Overview
61
Configuring General Setup
61
Figure 4-1 System General Setup
61
Table 4-1 System General Setup
61
Dynamic DNS
62
Configuring Dynamic DNS
62
Figure 4-2 DDNS
63
Table 4-2 DDNS
63
Configuring Password
64
Figure 4-3 Password
64
Configuring Time Zone
65
Figure 4-4 Time Zone
65
Table 4-3 Password
65
Table 4-4 Time Zone
66
Chapter 5 LAN Screens
69
LAN Overview
69
DHCP Setup
69
Lan Tcp/Ip
69
Rip Setup
70
Configuring IP
71
Figure 5-1 IP
71
Table 5-1 IP
72
Configuring Static DHCP
73
Configuring IP Alias
74
Figure 5-2 Static DHCP
74
Table 5-2 Static DHCP
74
Figure 5-3 IP Alias
75
Table 5-3 IP Alias
75
Chapter 6 Wireless LAN Screens
77
Wireless LAN Overview
77
Wireless LAN Basics
77
Figure 6-1 RTS Threshold
78
Wireless Security
79
Figure 6-2 Zywall Wireless Security Levels
79
Configuring Wireless LAN
80
Configuring MAC Filter
82
Figure 6-4 MAC Address Filter
83
Table 6-2 MAC Address Filter
83
Overview
84
Radius
84
Figure 6-5 EAP Authentication
85
Local User Database
86
Configuring 802.1X
86
Figure 6-6 802.1X Authentication
86
Configuring Local User Database
87
Table 6-3 802.1X Authentication
87
Figure 6-7 Local User Database
88
Configuring RADIUS
89
Figure 6-8 RADIUS
89
Table 6-4 Local User Database
89
Table 6-5 RADIUS
90
DMZ and WAN
91
Chapter 7 DMZ Screens
93
DMZ Overview
93
Configuring DMZ
93
Table 7-1 DMZ
95
Chapter 8 WAN Screens
97
WAN Overview
97
TCP/IP Priority (Metric)
97
Configuring Route
97
Configuring WAN ISP
98
Figure 8-1 WAN Setup: Route
98
Table 8-1 WAN Setup: Route
98
Figure 8-2 Ethernet Encapsulation
99
Table 8-2 Ethernet Encapsulation
99
Figure 8-3 Pppoe Encapsulation
101
Table 8-3 Pppoe Encapsulation
101
Figure 8-4 PPTP Encapsulation
103
Table 8-4 PPTP Encapsulation
103
Service Type
104
Figure 8-5 RR Service Type
105
Table 8-5 RR Service Type
105
Configuring WAN IP
106
Figure 8-6 IP Setup
106
Table 8-6 IP Setup
107
Configuring WAN MAC
109
Figure 8-7 MAC Setup
109
Traffic Redirect
110
Figure 8-8 Traffic Redirect WAN Setup
110
Figure 8-9 Traffic Redirect LAN Setup
110
Configuring Traffic Redirect
111
Figure 8-10 Traffic Redirect
111
Table 8-7 Traffic Redirect
111
Configuring Dial Backup
112
Figure 8-11 Dial Backup Setup
113
Table 8-8Dial Backup Setup
114
Advanced Modem Setup
117
Configuring Advanced Modem Setup
117
Figure 8-12 Advanced Setup
118
Table 8-9 Advanced Setup
118
NAT and Static Route
121
Chapter 9 Network Address Translation (NAT) Screens
123
NAT Overview
123
What Nat Does
124
How Nat Works
124
Figure 9-1 How NAT Works
125
Figure 9-2 NAT Application with IP Alias
126
Table 9-2 NAT Mapping Types
127
Using NAT
128
SUA Server
128
Table 9-3 Services and Port Numbers
129
Configuring SUA Server
130
Figure 9-3 Multiple Servers Behind NAT Example
130
Figure 9-4 SUA/NAT Setup
131
Table 9-4 SUA/NAT Setup
131
Configuring Address Mapping
132
Figure 9-5 Address Mapping
133
Table 9-5 Address Mapping
133
Figure 9-6Address Mapping Edit
134
Configuring Trigger Port
135
Table 9-6 Address Mapping Edit
135
Figure 9-7 Trigger Port
137
Table 9-7 Trigger Port
137
Chapter 10 Static Route Screens
139
Static Route Overview
139
Configuring IP Static Route
139
Figure 10-1 Example of Static Routing Topology
139
Table 10-1 IP Static Route Summary
139
Figure 10-2 Edit IP Static Route
140
Table 10-2 Edit IP Static Route
141
Firewall and Content Filters
143
Chapter 11 Firewalls
145
Firewall Overview
145
Types of Firewalls
145
Introduction to Zyxel's Firewall
146
Denial of Service
147
Figure 11-1 Zywall Firewall Application
147
Table 11-1 Common IP Ports
148
Figure 11-2 Three-Way Handshake
149
Figure 11-3 SYN Flood
149
Figure 11-4 Smurf Attack
150
Table 11-2 ICMP Commands that Trigger Alerts
150
Stateful Inspection
151
Table 11-3 Legal Netbios Commands
151
Table 11-4 Legal SMTP Commands
151
Figure 11-5 Stateful Inspection
152
Stateful Inspection and the Zywall
153
Tcp Security
154
Guidelines for Enhancing Security with Your Firewall
155
Packet Filtering Vs Firewall
156
Chapter 12 Firewall Screens
159
Access Methods
159
Firewall Policies Overview
159
Rule Logic Overview
160
Security Ramifications
161
Key Fields for Configuring Rules
161
Connection Direction Examples
162
Figure 12-1 LAN to WAN Traffic
162
Configuring Firewall
163
Figure 12-2 WAN to LAN Traffic
163
Figure 12-3 Enabling the Firewall (Zywall 100)
164
Table 12-1 Firewall Rules Summary: First Screen
164
Configuring Firewall Rules
166
Table 12-2 Creating/Editing a Firewall Rule
167
Figure 12-4 Creating/Editing a Firewall Rule (Zywall100)
167
Configuring Source and Destination Addresses
168
Figure 12-5 Adding/Editing Source and Destination Addresses
169
Table 12-3 Adding/Editing Source and Destination Addresses
169
Example Firewall Rule
170
Figure 12-6 Creating/Editing a Custom Port
170
Table 12-4 Creating/Editing a Custom Port
170
Figure 12-7 Firewall IP Config Screen
171
Figure 12-8 Firewall Rule Edit IP Example
172
Figure 12-9 Edit Custom Port Example
172
Figure 12-10 Myservice Rule Configuration (Zywall100)
173
Figure 12-11 My Service Example Rule Summary (Zywall100)
174
Predefined Services
175
Table 12-5 Predefined Services
175
Alerts
177
Configuring Attack Alert
178
Figure 12-12 Attack Alert
180
Table 12-6 Attack Alert
180
Chapter 13 Content Filtering Screens
183
Content Filtering Overview
183
Configuring Categories
183
Figure 13-1Content Filter: Categories
184
Table 13-1 Content Filter: Categories
184
Configuring Free
187
Figure 13-2 Content Filter: Free
188
Table 13-2 Content Filter: Free
188
Configuring Icard
189
Figure 13-3 Content Filter: Icard
189
Table 13-3 Content Filter: Icard
189
Configuring List Update
190
Figure 13-4 Content Filter: List Update
190
Configuring Exempt Computers
191
Table 13-4 Content Filter: List Update
191
Figure 13-5 Content Filter: Exempt Zone
192
Table 13-5 Content Filter: Exempt Zone
192
Configuring Customize
193
Figure 13-6 Content Filter: Customize
194
Table 13-6 Content Filter: Customize
194
Configuring Keyword Blocking
196
Figure 13-7 Content Filter: Keyword Blocking
196
Table 13-7 Content Filter: Keyword Blocking
196
Vpn/Ipsec
199
Chapter 14 Introduction to Ipsec
201
VPN Overview
201
Figure 14-1 Encryption and Decryption
202
Ipsec Architecture
203
Figure 14-2 VPN Application
203
Figure 14-3 Ipsec Architecture
204
Encapsulation
205
Ipsec and NAT
205
Figure 14-4 Transport and Tunnel Mode Ipsec Encapsulation
205
Table 14-1 VPN and NAT
206
Advertisement
ZyXEL Communications ZyXEL ZyWALL 30W Quick Start Manual (12 pages)
Internet Security Gateway
Brand:
ZyXEL Communications
| Category:
Gateway
| Size: 0.73 MB
Table of Contents
Quick Start Guide
1
Introducing the Zywall
2
Hardware Installation
2
Rear Panel
2
The Front Panel Leds
4
Setting up Your Computer's IP Address
5
Configuring Your Zywall
7
Accessing Your Zywall Via Web Configurator
8
Test Your Internet Connection
11
Troubleshooting
11
Advertisement
Related Products
ZyXEL Communications Prestige 314 PLUS
ZyXEL Communications ZyXEL Prestige 304
ZyXEL Communications ZYWALL 35 - V4.04
ZyXEL Communications PRESTIGE 324
ZyXEL Communications Unified Security Gateway ZyWALL 300
ZyXEL Communications Prestige 316
ZyXEL Communications ZyXEL Prestige 310
ZyXEL Communications 35 Series
ZyXEL Communications Prestige 312
ZyXEL Communications ZyXEL ZYWALL10
ZyXEL Communications Categories
Gateway
Network Router
Switch
Wireless Router
Adapter
More ZyXEL Communications Manuals
Login
Sign In
OR
Sign in with Facebook
Sign in with Google
Upload manual
Upload from disk
Upload from URL