ZyXEL Communications ZyWALL 2Plus Betriebsanweisung

ZyWALL 2PlusInternet Security ApplianceUser’s GuideVersion 4.005/2006Edition 1

ZyWALL 2 Plus User’s Guide10 Customer Support

ZyWALL 2 Plus User’s Guide100 Chapter 5 LAN Screens5.9 LAN IP AliasIP alias allows you to partition a physical network into different logical network

ZyWALL 2 Plus User’s GuideChapter 5 LAN Screens 101The following table describes the labels in this screen.Table 22 LAN IP AliasLABEL DESCRIPTIONEna

ZyWALL 2 Plus User’s Guide102 Chapter 5 LAN Screens

ZyWALL 2 Plus User’s GuideChapter 6 Bridge Screens 103CHAPTER 6Bridge ScreensThis chapter describes how to configure bridge settings. This chapter is

ZyWALL 2 Plus User’s Guide104 Chapter 6 Bridge Screens6.2 Spanning Tree Protocol (STP)STP detects and breaks network loops and provides backup links

ZyWALL 2 Plus User’s GuideChapter 6 Bridge Screens 1056.2.3 How STP WorksAfter a bridge determines the lowest cost-spanning tree with STP, it enables

ZyWALL 2 Plus User’s Guide106 Chapter 6 Bridge ScreensFigure 40 BridgeThe following table describes the labels in this screen.Table 25 Bridge LABE

ZyWALL 2 Plus User’s GuideChapter 6 Bridge Screens 107Rapid Spanning Tree Protocol SetupEnable Rapid Spanning Tree ProtocolSelect the check box to act

ZyWALL 2 Plus User’s Guide108 Chapter 6 Bridge Screens

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 109CHAPTER 7WAN ScreensThis chapter describes how to configure WAN settings. 7.1 WAN Overview• Use th

ZyWALL 2 Plus User’s GuideTable of Contents 11Table of ContentsCopyright ...

ZyWALL 2 Plus User’s Guide110 Chapter 7 WAN ScreensFigure 41 WAN RouteThe following table describes the labels in this screen.Table 26 WAN RouteLA

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 1117.4 WAN IP Address Assignment Every computer on the Internet must have a unique IP address. If you

ZyWALL 2 Plus User’s Guide112 Chapter 7 WAN Screens7.6 WAN MAC AddressEvery Ethernet device has a unique MAC (Media Access Control) address. The MAC

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 113Figure 42 WAN: Ethernet EncapsulationThe following table describes the labels in this screen.Tabl

ZyWALL 2 Plus User’s Guide114 Chapter 7 WAN ScreensRetype to Confirm Type your password again to make sure that you have entered is correctly.Login Se

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 1157.7.2 PPPoE EncapsulationThe ZyWALL supports PPPoE (Point-to-Point Protocol over Ethernet). PPPoE

ZyWALL 2 Plus User’s Guide116 Chapter 7 WAN ScreensOperationally, PPPoE saves significant effort for both you and the ISP or carrier, as it requires n

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 117The following table describes the labels in this screen.Table 30 WAN: PPPoE EncapsulationLABEL DE

ZyWALL 2 Plus User’s Guide118 Chapter 7 WAN ScreensRIP Direction RIP (Routing Information Protocol) allows a router to exchange routing information wi

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 1197.7.3 PPTP EncapsulationPoint-to-Point Tunneling Protocol (PPTP) is a network protocol that enable

ZyWALL 2 Plus User’s Guide12 Table of Contents2.4.6 VPN Status ...

ZyWALL 2 Plus User’s Guide120 Chapter 7 WAN ScreensThe following table describes the labels in this screen.Table 31 WAN: PPTP EncapsulationLABEL DES

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 121Enable NAT (Network Address Translation)Network Address Translation (NAT) allows the translation of

ZyWALL 2 Plus User’s Guide122 Chapter 7 WAN Screens7.8 Traffic RedirectTraffic redirect forwards WAN traffic to a backup gateway when the ZyWALL cann

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 123Figure 47 Traffic RedirectThe following table describes the labels in this screen.7.10 Configuri

ZyWALL 2 Plus User’s Guide124 Chapter 7 WAN ScreensClick NETWORK > WAN > Dial Backup to display the Dial Backup screen. Use this screen to confi

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 125The following table describes the labels in this screen.Table 33 Dial BackupLABEL DESCRIPTIONDial

ZyWALL 2 Plus User’s Guide126 Chapter 7 WAN ScreensEnable RIP Select this check box to turn on RIP (Routing Information Protocol), which allows a rout

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 1277.11 Advanced Modem Setup7.11.1 AT Command StringsFor regular telephone lines, the default Dial s

ZyWALL 2 Plus User’s Guide128 Chapter 7 WAN ScreensFigure 49 Advanced SetupThe following table describes the labels in this screen. Table 34 Advan

ZyWALL 2 Plus User’s GuideChapter 7 WAN Screens 129Dial Timeout (sec) Type a number of seconds for the ZyWALL to try to set up an outgoing call before

ZyWALL 2 Plus User’s GuideTable of Contents 136.1.1 Bridge Loop ...

ZyWALL 2 Plus User’s Guide130 Chapter 7 WAN Screens

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 131CHAPTER 8Firewall ScreensThis chapter shows you how to configure your ZyWALL’s firewall.8.1 F

ZyWALL 2 Plus User’s Guide132 Chapter 8 Firewall ScreensYour customized rules take precedence and override the ZyWALL’s default settings. The ZyWALL c

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 1338.3 Security ConsiderationsNote: Incorrectly configuring the firewall may block valid access

ZyWALL 2 Plus User’s Guide134 Chapter 8 Firewall ScreensYour firewall would have the following configuration. • The first row blocks LAN access to th

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 135Your firewall would have the following configuration. • The first row allows the LAN computer

ZyWALL 2 Plus User’s Guide136 Chapter 8 Firewall ScreensThe following table describes the labels in this screen. 8.6 Firewall Default Rule (Bridge Mo

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 137Figure 54 Default Rule (Bridge Mode)The following table describes the labels in this screen.

ZyWALL 2 Plus User’s Guide138 Chapter 8 Firewall Screens8.7 Firewall Rule Summary Click SECURITY > FIREWALL > Rule Summary to open the screen.

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 1398.7.1 Firewall Edit Rule Follow these directions to create a new rule.1 In the Rule Summa

ZyWALL 2 Plus User’s Guide14 Table of Contents8.11 Threshold Screen ...

ZyWALL 2 Plus User’s Guide140 Chapter 8 Firewall ScreensFigure 56 Firewall Edit Rule

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 141The following table describes the labels in this screen. Table 40 Firewall Edit RuleLABEL

ZyWALL 2 Plus User’s Guide142 Chapter 8 Firewall Screens8.8 Anti-Probing Click SECURITY > FIREWALL > Anti-Probing to open the following scre

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 143The following table describes the labels in this screen. 8.9 Denial of Service AttacksDenial

ZyWALL 2 Plus User’s Guide144 Chapter 8 Firewall Screens8.10 Firewall Thresholds For DoS attacks, the ZyWALL uses thresholds to determine when to s

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 145If you often use P2P applications such as file sharing with eMule or eDonkey, it’s recommended

ZyWALL 2 Plus User’s Guide146 Chapter 8 Firewall Screens8.12 Service Click SECURITY > FIREWALL, then the Service to open the screen as shown next.

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 147Figure 61 Firewall ServiceThe following table describes the labels in this screen. Table 43

ZyWALL 2 Plus User’s Guide148 Chapter 8 Firewall Screens8.12.1 Firewall Edit Custom Service Click the Add button under Custom Service to display the

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 1498.13 Solving the Asymmetrical Route Problem ExampleIf you have the ZyWALL allow asymmetrical

ZyWALL 2 Plus User’s GuideTable of Contents 1511.1.4.2 Encapsulation ...18

ZyWALL 2 Plus User’s Guide150 Chapter 8 Firewall Screens8.14 My Service Firewall Rule ExampleThe following Internet firewall rule example allows a hy

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 151Figure 66 My Service Firewall Rule Example: Rule Summary6 Enter the name of the firewall rul

ZyWALL 2 Plus User’s Guide152 Chapter 8 Firewall ScreensNote: Custom services show up with an * before their names in the Services list box and the Ru

ZyWALL 2 Plus User’s GuideChapter 8 Firewall Screens 153Rule 1 allows a My Service connection from the WAN to IP addresses 10.0.0.10 through 10.0.0.15

ZyWALL 2 Plus User’s Guide154 Chapter 8 Firewall Screens

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 155CHAPTER 9Content Filtering ScreensThis chapter provides an overview of content filter

ZyWALL 2 Plus User’s Guide156 Chapter 9 Content Filtering ScreensFigure 70 Content Filter: GeneralThe following table describes the labels in this s

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 1579.3 Category Based Content FilteringWhen you register for and enable external databa

ZyWALL 2 Plus User’s Guide158 Chapter 9 Content Filtering ScreensFigure 71 Content Filtering Lookup Procedure1 A computer behind the ZyWALL tries to

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 159Figure 72 Content Filter: CategoriesThe following table describes the labels in thi

ZyWALL 2 Plus User’s Guide16 Table of Contents13.3 RADIUS ...

ZyWALL 2 Plus User’s Guide160 Chapter 9 Content Filtering ScreensUnrated Web Pages Select Block to prevent users from accessing web pages that the ext

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 161Alcohol/Tobacco Selecting this category excludes pages that promote or offer the sale

ZyWALL 2 Plus User’s Guide162 Chapter 9 Content Filtering ScreensEducation Selecting this category excludes pages that offer educational information,

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 163News/Media Selecting this category excludes pages that primarily report information o

ZyWALL 2 Plus User’s Guide164 Chapter 9 Content Filtering ScreensHumor/Jokes Selecting this category excludes pages that primarily focus on comedy, jo

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 1659.5 Content Filter Customization Click SECURITY > CONTENT FILTER > Customiza

ZyWALL 2 Plus User’s Guide166 Chapter 9 Content Filtering ScreensThe following table describes the labels in this screen. Table 47 Content Filter: C

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 1679.6 Customizing Keyword Blocking URL CheckingYou can use commands to set how much of

ZyWALL 2 Plus User’s Guide168 Chapter 9 Content Filtering ScreensUse the ip urlfilter customize actionFlags 8 [disable | enable] command to extend (or

ZyWALL 2 Plus User’s GuideChapter 9 Content Filtering Screens 169The following table describes the labels in this screen.Table 48 Content Filter: Ca

ZyWALL 2 Plus User’s GuideTable of Contents 1716.7.1 Priority-based Scheduler ...27

ZyWALL 2 Plus User’s Guide170 Chapter 9 Content Filtering Screens

ZyWALL 2 Plus User’s GuideChapter 10 Content Filtering Reports 171CHAPTER 10Content Filtering ReportsThis chapter describes how to view content filter

ZyWALL 2 Plus User’s Guide172 Chapter 10 Content Filtering ReportsFigure 75 myZyXEL.com: Login3 A welcome screen displays. Click your ZyWALL’s model

ZyWALL 2 Plus User’s GuideChapter 10 Content Filtering Reports 173Figure 77 myZyXEL.com: Service Management5 Enter your ZyXEL device's MAC addr

ZyWALL 2 Plus User’s Guide174 Chapter 10 Content Filtering ReportsFigure 79 Content Filtering Reports Main Screen8 Select items under Global Reports

ZyWALL 2 Plus User’s GuideChapter 10 Content Filtering Reports 175Figure 81 Global Report Screen Example11You can click a category in the Categories

ZyWALL 2 Plus User’s Guide176 Chapter 10 Content Filtering ReportsFigure 82 Requested URLs Example10.3 Web Site SubmissionYou may find that a web s

ZyWALL 2 Plus User’s GuideChapter 10 Content Filtering Reports 177Figure 83 Web Page Review Process Screen3 Type the web site’s URL in the field and

ZyWALL 2 Plus User’s Guide178 Chapter 10 Content Filtering Reports

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 179CHAPTER 11IPSec VPNThis chapter explains how to set up and maintain IPSec VPNs in the ZyWALL.11.1 I

ZyWALL 2 Plus User’s Guide18 Table of Contents18.3 WWW ...

ZyWALL 2 Plus User’s Guide180 Chapter 11 IPSec VPNFigure 85 VPN: IKE SA and IPSec SA In some situations, you might want to set up a VPN tunnel quick

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 181Main mode is illustrated by the example below, where the ZyWALL (X) is initiating an IKE SA.The ZyWA

ZyWALL 2 Plus User’s Guide182 Chapter 11 IPSec VPNMain mode provides better security because your identity is encrypted in steps 5 and 6. The trade-of

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 183• authentication method (and extended authentication) - these characteristics control how the ZyWALL

ZyWALL 2 Plus User’s Guide184 Chapter 11 IPSec VPNThe ZyWALL and the remote IPSec router authenticate each other using an ID type and content. The ID

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 185Extended authentication is helpful when multiple IPSec routers use one VPN rule to connect to a sing

ZyWALL 2 Plus User’s Guide186 Chapter 11 IPSec VPN11.1.2.2 Local and Remote NetworkIf IPSec SAs have overlapping local networks and overlapping remot

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 187uniquely identify a particular security association. When an IPSec SA using manual keys is establish

ZyWALL 2 Plus User’s Guide188 Chapter 11 IPSec VPNThere is a relationship between the active protocol and the types of encryption and authentication a

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 18911.1.4.2 EncapsulationIPSec VPNs use either transport mode or tunnel mode to encapsulate packets. T

ZyWALL 2 Plus User’s GuideTable of Contents 19Chapter 20ALG Screen...

ZyWALL 2 Plus User’s Guide190 Chapter 11 IPSec VPN11.1.4.3 VPN, NAT, and NAT TraversalNAT is incompatible with the AH protocol in both transport and

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 19111.1.4.4 SA Life TimeOne characteristic of SAs is the SA life time. The SA lifetime specifies how l

ZyWALL 2 Plus User’s Guide192 Chapter 11 IPSec VPNFigure 89 IPSec High Availability11.2 VPN Rules (IKE) A VPN (Virtual Private Network) tunnel giv

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 193Figure 91 IPSec Fields Summary Click VPN to display the VPN Rules (IKE) screen. Use this screen t

ZyWALL 2 Plus User’s Guide194 Chapter 11 IPSec VPN11.3 VPN Rules (IKE) Gateway Policy Edit In the VPN Rule (IKE) screen, click the add gateway polic

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 195Figure 93 VPN Rules (IKE): Gateway Policy: Edit

ZyWALL 2 Plus User’s Guide196 Chapter 11 IPSec VPNThe following table describes the labels in this screen. Table 55 VPN Rules (IKE): Gateway Policy:

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 197Fail back to Primary Remote Gateway when possibleSelect this to have the ZyWALL fall back to using t

ZyWALL 2 Plus User’s Guide198 Chapter 11 IPSec VPNPeer ID Type Select from the following when you set Authentication Key to Pre-shared Key.•Select IP

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 199Server Mode Select Server Mode to have this ZyWALL authenticate extended authentication clients that

ZyWALL 2 Plus User’s Guide20 Table of Contents22.10 F/W Upload Screen ...

ZyWALL 2 Plus User’s Guide200 Chapter 11 IPSec VPN11.4 VPN Rules (IKE): Network Policy Edit Click VPN and the add network policy ( ) icon in the V

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 201Figure 94 VPN Rules (IKE): Network Policy Edit

ZyWALL 2 Plus User’s Guide202 Chapter 11 IPSec VPNThe following table describes the labels in this screen. Table 56 VPN Rules (IKE): Network Policy

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 203Starting IP Address When the Address Type field is configured to Single Address, enter a (static) IP

ZyWALL 2 Plus User’s Guide204 Chapter 11 IPSec VPN11.5 VPN Rules (IKE): Network Policy Move Click the move ( ) icon in the VPN Rules (IKE) screen t

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 205Figure 95 VPN Rules (IKE): Network Policy Move The following table describes the labels in this sc

ZyWALL 2 Plus User’s Guide206 Chapter 11 IPSec VPNUse this screen to manage the ZyWALL’s list of VPN rules (tunnels) that use manual keys. You may wan

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 20711.7 VPN Rules (Manual): Edit Click the edit icon on the VPN Rules (Manual) screen to open the fo

ZyWALL 2 Plus User’s Guide208 Chapter 11 IPSec VPNFigure 97 VPN Rules (Manual): Edit The following table describes the labels in this screen. Table

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 209Local Network Local IP addresses must be static and correspond to the remote IPSec router's con

ZyWALL 2 Plus User’s GuideTable of Contents 2126.3 LAN Port Filter Setup ...

ZyWALL 2 Plus User’s Guide210 Chapter 11 IPSec VPN11.8 VPN SA Monitor In the web configurator, click VPN > SA Monitor. Use this screen to display

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 211Figure 98 VPN: SA MonitorThe following table describes the labels in this screen. 11.9 VPN Global

ZyWALL 2 Plus User’s Guide212 Chapter 11 IPSec VPNFigure 99 VPN: Global SettingThe following table describes the labels in this screen. Table 61 V

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 21311.10 Telecommuter VPN/IPSec ExamplesThe following examples show how multiple telecommuters can mak

ZyWALL 2 Plus User’s Guide214 Chapter 11 IPSec VPN11.10.2 Telecommuters Using Unique VPN Rules ExampleIn this example the telecommuters (A, B and C i

ZyWALL 2 Plus User’s GuideChapter 11 IPSec VPN 21511.11 VPN and Remote ManagementYou can allow someone to use a service (like Telnet or HTTP for exam

ZyWALL 2 Plus User’s Guide216 Chapter 11 IPSec VPNIn the following example, the VPN rule’s local network (A) includes the ZyWALL’s LAN IP address of 1

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 217CHAPTER 12CertificatesThis chapter gives background information about public-key certificates and

ZyWALL 2 Plus User’s Guide218 Chapter 12 CertificatesCertification authorities maintain directory servers with databases of valid and revoked certific

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 21912.4 My Certificates Click SECURITY > CERTIFICATES > My Certificates to open the My Certif

ZyWALL 2 Plus User’s Guide22 Table of Contents30.4.1 Internet Access Only ...

ZyWALL 2 Plus User’s Guide220 Chapter 12 CertificatesType This field displays what kind of certificate this is. REQ represents a certification request

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 22112.5 My Certificate Import Click SECURITY > CERTIFICATES > My Certificates > Import to

ZyWALL 2 Plus User’s Guide222 Chapter 12 CertificatesThe following table describes the labels in this screen. 12.6 My Certificate Create Click SECUR

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 223The following table describes the labels in this screen. Table 66 My Certificate CreateLABEL DE

ZyWALL 2 Plus User’s Guide224 Chapter 12 CertificatesAfter you click Apply in the My Certificate Create screen, you see a screen that tells you the Zy

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 225Figure 107 My Certificate Details

ZyWALL 2 Plus User’s Guide226 Chapter 12 CertificatesThe following table describes the labels in this screen. Table 67 My Certificate DetailsLABEL

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 22712.8 Trusted CAs Click SECURITY > CERTIFICATES > Trusted CAs to open the Trusted CAs scr

ZyWALL 2 Plus User’s Guide228 Chapter 12 CertificatesFigure 108 Trusted CAsThe following table describes the labels in this screen. Table 68 Trust

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 22912.9 Trusted CA Import Click SECURITY > CERTIFICATES > Trusted CAs to open the Trusted C

ZyWALL 2 Plus User’s GuideTable of Contents 2334.3.1 System Information ...

ZyWALL 2 Plus User’s Guide230 Chapter 12 Certificates12.10 Trusted CA Details Click SECURITY > CERTIFICATES > Trusted CAs to open the Trusted

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 231The following table describes the labels in this screen. Table 70 Trusted CA DetailsLABEL DESC

ZyWALL 2 Plus User’s Guide232 Chapter 12 Certificates12.11 Trusted Remote Hosts Click SECURITY > CERTIFICATES > Trusted Remote Hosts to open

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 233Figure 111 Trusted Remote HostsThe following table describes the labels in this screen. Table

ZyWALL 2 Plus User’s Guide234 Chapter 12 Certificates12.12 Verifying a Trusted Remote Host’s CertificateCertificates issued by certification authorit

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 235Figure 113 Certificate Details Verify (over the phone for example) that the remote host has the

ZyWALL 2 Plus User’s Guide236 Chapter 12 CertificatesFigure 114 Trusted Remote Host ImportThe following table describes the labels in this screen. 1

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 237Figure 115 Trusted Remote Host DetailsThe following table describes the labels in this screen.

ZyWALL 2 Plus User’s Guide238 Chapter 12 CertificatesCertificate Information These read-only fields display detailed information about the certificate

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 23912.15 Directory Servers Click SECURITY > CERTIFICATES > Directory Servers to open the Dir

ZyWALL 2 Plus User’s Guide24 Table of Contents36.1.1 Command Syntax ...

ZyWALL 2 Plus User’s Guide240 Chapter 12 CertificatesThe following table describes the labels in this screen. 12.16 Directory Server Add or Edit C

ZyWALL 2 Plus User’s GuideChapter 12 Certificates 241The following table describes the labels in this screen. Table 75 Directory Server AddLABEL DES

ZyWALL 2 Plus User’s Guide242 Chapter 12 Certificates

ZyWALL 2 Plus User’s GuideChapter 13 Authentication Server 243CHAPTER 13Authentication ServerThis chapter discusses how to configure the ZyWALL’s auth

ZyWALL 2 Plus User’s Guide244 Chapter 13 Authentication Server13.3.1 Types of RADIUS MessagesThe following types of RADIUS messages are exchanged bet

ZyWALL 2 Plus User’s GuideChapter 13 Authentication Server 245Figure 118 Local User Database

ZyWALL 2 Plus User’s Guide246 Chapter 13 Authentication ServerThe following table describes the labels in this screen. 13.5 RADIUS Use RADIUS to

ZyWALL 2 Plus User’s GuideChapter 13 Authentication Server 247The following table describes the labels in this screen. Table 77 RADIUSLABEL DESCRIP

ZyWALL 2 Plus User’s Guide248 Chapter 13 Authentication Server

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 249CHAPTER 14Network Address Translation(NAT)This chapter discusses how to conf

ZyWALL 2 Plus User’s GuideTable of Contents 25Appendix GImporting Certificates ...

ZyWALL 2 Plus User’s Guide250 Chapter 14 Network Address Translation (NAT)14.1.2 What NAT DoesIn the simplest form, NAT changes the source IP address

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 25114.1.4 NAT ApplicationThe following figure illustrates a possible NAT appli

ZyWALL 2 Plus User’s Guide252 Chapter 14 Network Address Translation (NAT)14.1.5 Port Restricted Cone NATAt the time of writing ZyWALL ZyNOS version

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 253• Server: This type allows you to specify inside servers of different servic

ZyWALL 2 Plus User’s Guide254 Chapter 14 Network Address Translation (NAT)14.3 NAT Overview Click ADVANCED > NAT to open the NAT Overview screen

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 25514.4 NAT Address Mapping Ordering your rules is important because the ZyW

ZyWALL 2 Plus User’s Guide256 Chapter 14 Network Address Translation (NAT)The following table describes the labels in this screen. 14.4.1 NAT Address

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 257Figure 125 NAT Address Mapping EditThe following table describes the label

ZyWALL 2 Plus User’s Guide258 Chapter 14 Network Address Translation (NAT)14.5 Port Forwarding A port forwarding set is a list of inside (behind NAT

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 259Figure 126 Multiple Servers Behind NAT Example14.5.4 Port TranslationThe

ZyWALL 2 Plus User’s Guide26 Table of Contents

ZyWALL 2 Plus User’s Guide260 Chapter 14 Network Address Translation (NAT)14.6 Port Forwarding Screen Note: If you do not assign a Default Server IP

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 261The following table describes the labels in this screen. 14.7 Port Forwardi

ZyWALL 2 Plus User’s Guide262 Chapter 14 Network Address Translation (NAT)Figure 129 Port Forwarding14.8 Port Triggering Some services use a dedi

ZyWALL 2 Plus User’s GuideChapter 14 Network Address Translation (NAT) 263For example:Figure 130 Trigger Port Forwarding Process: Example1 Jane’s co

ZyWALL 2 Plus User’s Guide264 Chapter 14 Network Address Translation (NAT)Figure 131 Port Triggering The following table describes the labels in thi

ZyWALL 2 Plus User’s GuideChapter 15 Static Route 265CHAPTER 15Static RouteThis chapter shows you how to configure static routes for your ZyWALL.15.1

ZyWALL 2 Plus User’s Guide266 Chapter 15 Static RouteFigure 133 IP Static RouteThe following table describes the labels in this screen. 15.2.1 IP S

ZyWALL 2 Plus User’s GuideChapter 15 Static Route 267Figure 134 IP Static Route EditThe following table describes the labels in this screen. Table 8

ZyWALL 2 Plus User’s Guide268 Chapter 15 Static Route

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 269CHAPTER 16Bandwidth ManagementThis chapter describes the functions and configuration of b

ZyWALL 2 Plus User’s GuideList of Figures 27List of FiguresFigure 1 Secure Internet Access via Cable, DSL or Wireless Modem ...

ZyWALL 2 Plus User’s Guide270 Chapter 16 Bandwidth Management16.3 Proportional Bandwidth AllocationBandwidth management allows you to define how much

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 27116.6 Application and Subnet-based Bandwidth ManagementYou could also create bandwidth cl

ZyWALL 2 Plus User’s Guide272 Chapter 16 Bandwidth ManagementWhen you enable maximize bandwidth usage, the ZyWALL first makes sure that each bandwidth

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 27316.7.5.1 Priority-based Allotment of Unused and Unbudgeted BandwidthThe following table

ZyWALL 2 Plus User’s Guide274 Chapter 16 Bandwidth Management16.8 Bandwidth BorrowingBandwidth borrowing allows a sub-class to borrow unused bandwidt

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 275• The Bill class cannot borrow unused bandwidth from the Root class because the Sales cla

ZyWALL 2 Plus User’s Guide276 Chapter 16 Bandwidth ManagementFigure 136 Bandwidth Management: SummaryThe following table describes the labels in thi

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 27716.11 Configuring Class Setup The Class Setup screen displays the configured bandwidth

ZyWALL 2 Plus User’s Guide278 Chapter 16 Bandwidth Management16.11.1 Bandwidth Manager Class Configuration Configure a bandwidth management class in

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 279Figure 138 Bandwidth Management: Edit ClassThe following table describes the labels in

ZyWALL 2 Plus User’s Guide28 List of FiguresFigure 39 Bridge Loop: Bridge Connected to Wired LAN ...

ZyWALL 2 Plus User’s Guide280 Chapter 16 Bandwidth ManagementEnable Bandwidth Filter Select Enable Bandwidth Filter to have the ZyWALL use this bandwi

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 28116.11.2 Bandwidth Management Statistics Use the Bandwidth Management Statistics scr

ZyWALL 2 Plus User’s Guide282 Chapter 16 Bandwidth ManagementThe following table describes the labels in this screen.16.12 Configuring Monitor Clic

ZyWALL 2 Plus User’s GuideChapter 16 Bandwidth Management 283The following table describes the labels in this screen.Table 98 Bandwidth Management:

ZyWALL 2 Plus User’s Guide284 Chapter 16 Bandwidth Management

ZyWALL 2 Plus User’s GuideChapter 17 DNS 285CHAPTER 17DNSThis chapter shows you how to configure the DNS screens.17.1 DNS Overview DNS (Domain Name

ZyWALL 2 Plus User’s Guide286 Chapter 17 DNS17.4 Address RecordAn address record contains the mapping of a fully qualified domain name (FQDN) to an I

ZyWALL 2 Plus User’s GuideChapter 17 DNS 287Figure 141 Private DNS Server ExampleNote: If you do not specify an Intranet DNS server on the remote ne

ZyWALL 2 Plus User’s Guide288 Chapter 17 DNSThe following table describes the labels in this screen. 17.6.1 Adding an Address Record Click Add in

ZyWALL 2 Plus User’s GuideChapter 17 DNS 289Figure 143 System DNS: Add Address RecordThe following table describes the labels in this screen. 17.6.

ZyWALL 2 Plus User’s GuideList of Figures 29Figure 82 Requested URLs Example ...

ZyWALL 2 Plus User’s Guide290 Chapter 17 DNSFigure 144 System DNS: Insert Name Server RecordThe following table describes the labels in this screen.

ZyWALL 2 Plus User’s GuideChapter 17 DNS 29117.7 DNS Cache DNS cache is the temporary storage area where a router stores responses from DNS servers.

ZyWALL 2 Plus User’s Guide292 Chapter 17 DNSThe following table describes the labels in this screen.17.9 Configuring DNS DHCP Click ADVANCED > DN

ZyWALL 2 Plus User’s GuideChapter 17 DNS 293Figure 146 DNS DHCPThe following table describes the labels in this screen.Table 103 DNS DHCPLABEL DES

ZyWALL 2 Plus User’s Guide294 Chapter 17 DNS17.10 Dynamic DNS Dynamic DNS allows you to update your current dynamic IP address with one or many dyna

ZyWALL 2 Plus User’s GuideChapter 17 DNS 295Figure 147 DDNSThe following table describes the labels in this screen.Table 104 DDNSLABEL DESCRIPTION

ZyWALL 2 Plus User’s Guide296 Chapter 17 DNSIP Address Update PolicySelect Use WAN IP Address to have the ZyWALL update the domain name with the WAN p

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 297CHAPTER 18Remote ManagementThis chapter provides information on the Remote Management screen

ZyWALL 2 Plus User’s Guide298 Chapter 18 Remote Management2 You have disabled that service in one of the remote management screens.3 The IP address in

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 299Figure 148 HTTPS ImplementationNote: If you disable HTTP Server Access (Disable) in the RE

ZyWALL 2 Plus User’s GuideCopyright 3CopyrightCopyright © 2006 by ZyXEL Communications Corporation.The contents of this publication may not be reprodu

ZyWALL 2 Plus User’s Guide30 List of FiguresFigure 125 NAT Address Mapping Edit ...

ZyWALL 2 Plus User’s Guide300 Chapter 18 Remote ManagementThe following table describes the labels in this screen. 18.4 HTTPS ExampleIf you haven’t

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 30118.4.1 Internet Explorer Warning MessagesWhen you attempt to access the ZyWALL HTTPS server

ZyWALL 2 Plus User’s Guide302 Chapter 18 Remote ManagementFigure 151 Security Certificate 1 (Netscape)Figure 152 Security Certificate 2 (Netscape)

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 303• The actual IP address of the HTTPS server (the IP address of the ZyWALL’s port that you ar

ZyWALL 2 Plus User’s Guide304 Chapter 18 Remote ManagementFigure 154 Login Screen (Netscape)Click Login and you then see the next screen.The factory

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 305Figure 156 Device-specific CertificateClick Ignore in the Replace Certificate screen to us

ZyWALL 2 Plus User’s Guide306 Chapter 18 Remote Management18.5 SSH Unlike Telnet or FTP, which transmit data in clear text, SSH (Secure Shell) is a

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 307The SSH client sends a connection request to the SSH server. The server identifies itself wi

ZyWALL 2 Plus User’s Guide308 Chapter 18 Remote ManagementFigure 159 SSHThe following table describes the labels in this screen. 18.9 Secure Telnet

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 3092 Configure the SSH client to accept connection using SSH version 1. 3 A window displays pro

ZyWALL 2 Plus User’s GuideList of Figures 31Figure 168 SNMP ...

ZyWALL 2 Plus User’s Guide310 Chapter 18 Remote ManagementFigure 162 SSH Example 2: Log in3 The SMT main menu displays next. 18.10 Secure FTP Using

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 31118.11 Telnet You can configure your ZyWALL for remote Telnet access as shown next. The com

ZyWALL 2 Plus User’s Guide312 Chapter 18 Remote Management18.13 FTP You can upload and download the ZyWALL’s firmware and configuration files using

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 31318.14 SNMP Simple Network Management Protocol is a protocol used for exchanging managemen

ZyWALL 2 Plus User’s Guide314 Chapter 18 Remote ManagementAn agent is a management software module that resides in a managed device (the ZyWALL). An a

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 31518.14.3 REMOTE MANAGEMENT: SNMP To change your ZyWALL’s SNMP settings, click ADVANCED >

ZyWALL 2 Plus User’s Guide316 Chapter 18 Remote Management18.15 DNS Use DNS (Domain Name System) to map a domain name to its corresponding IP addres

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 31718.16 Introducing Vantage CNM Vantage CNM (Centralized Network Management) is a browser-bas

ZyWALL 2 Plus User’s Guide318 Chapter 18 Remote ManagementThe following table describes the labels in this screen. Table 113 CNMLABEL DESCRIPTIONReg

ZyWALL 2 Plus User’s GuideChapter 18 Remote Management 319

ZyWALL 2 Plus User’s Guide32 List of FiguresFigure 211 Menu 1.1.1: DDNS Edit Host ...

ZyWALL 2 Plus User’s Guide320 Chapter 18 Remote Management

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 321CHAPTER 19UPnPThis chapter introduces the Universal Plug and Play feature. This chapter is only applicabl

ZyWALL 2 Plus User’s Guide322 Chapter 19 UPnPAll UPnP-enabled devices may communicate freely with each other without additional configuration. Disable

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 32319.3 Displaying UPnP Port Mapping Click UPnP > Ports to display the UPnP Ports screen. Use this scr

ZyWALL 2 Plus User’s Guide324 Chapter 19 UPnP19.4 Installing UPnP in Windows ExampleThis section shows how to install UPnP in Windows Me and Windows

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 32519.4.1 Installing UPnP in Windows MeFollow the steps below to install UPnP in Windows Me. 1 Click Start

ZyWALL 2 Plus User’s Guide326 Chapter 19 UPnP19.4.2 Installing UPnP in Windows XPFollow the steps below to install UPnP in Windows XP.19.5 Using UPn

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 32719.5.1 Auto-discover Your UPnP-enabled Network Device1 Click Start > Control Panel. Double-click Netw

ZyWALL 2 Plus User’s Guide328 Chapter 19 UPnPNote: When the UPnP-enabled device is disconnected from your computer, all port mappings will be deleted

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 329Follow the steps below to access the web configurator.1 Click Start > Control Panel. 2 Double-click Ne

ZyWALL 2 Plus User’s GuideList of Figures 33Figure 253 NAT Example 3 ...

ZyWALL 2 Plus User’s Guide330 Chapter 19 UPnP6 Right-click the icon for your ZyXEL device and select Properties. A properties window displays with bas

ZyWALL 2 Plus User’s GuideChapter 19 UPnP 331

ZyWALL 2 Plus User’s Guide332 Chapter 19 UPnP

ZyWALL 2 Plus User’s GuideChapter 20 ALG Screen 333CHAPTER 20ALG ScreenThis chapter covers how to use the ZyWALL’s ALG feature to allow certain applic

ZyWALL 2 Plus User’s Guide334 Chapter 20 ALG Screen20.2 FTPFile Transfer Protocol (FTP) is an Internet file transfer service that operates on the Int

ZyWALL 2 Plus User’s GuideChapter 20 ALG Screen 33520.5 SIPThe Session Initiation Protocol (SIP) is an application-layer control (signaling) protocol

ZyWALL 2 Plus User’s Guide336 Chapter 20 ALG Screen20.5.3 SIP Signaling Session TimeoutMost SIP clients have an “expire” mechanism indicating the lif

ZyWALL 2 Plus User’s GuideChapter 20 ALG Screen 337The following table describes the labels in this screen. Table 116 ALGLABEL DESCRIPTIONEnable FT

ZyWALL 2 Plus User’s Guide338 Chapter 20 ALG Screen

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 339CHAPTER 21Logs ScreensThis chapter contains information about configuring general log settings an

ZyWALL 2 Plus User’s Guide34 List of FiguresFigure 296 System Maintenance: Restore Configuration ...

ZyWALL 2 Plus User’s Guide340 Chapter 21 Logs Screens21.2 Log Description ExampleThe following is an example of how a log displays in the command lin

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 34121.2.1 Certificate Not Trusted Log NotemyZyXEL.com and the update server use certificate signed

ZyWALL 2 Plus User’s Guide342 Chapter 21 Logs ScreensFigure 178 myZyXEL.com: Certificate Download21.3 Configuring Log Settings To change your ZyWAL

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 343Figure 179 Log Settings

ZyWALL 2 Plus User’s Guide344 Chapter 21 Logs ScreensThe following table describes the labels in this screen.Table 119 Log SettingsLABEL DESCRIPTION

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 34521.4 Configuring Reports The Reports page displays which computers on the LAN send and receive t

ZyWALL 2 Plus User’s Guide346 Chapter 21 Logs ScreensFigure 180 ReportsNote: Enabling the ZyWALL’s reporting function decreases the overall throughp

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 34721.4.1 Viewing Web Site HitsIn the Reports screen, select Web Site Hits from the Report Type dro

ZyWALL 2 Plus User’s Guide348 Chapter 21 Logs ScreensFigure 182 Protocol/Port Report ExampleThe following table describes the labels in this screen.

ZyWALL 2 Plus User’s GuideChapter 21 Logs Screens 349Figure 183 Host IP Address Report ExampleThe following table describes the labels in this scree

ZyWALL 2 Plus User’s GuideList of Figures 35Figure 339 Windows XP: Internet Protocol (TCP/IP) Properties ... 525

ZyWALL 2 Plus User’s Guide350 Chapter 21 Logs Screens

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 351CHAPTER 22MaintenanceThis chapter displays information on the maintenance screens.22.1 Maintenanc

ZyWALL 2 Plus User’s Guide352 Chapter 22 MaintenanceFigure 184 General SetupThe following table describes the labels in this screen. 22.3 Configur

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 353Figure 185 Password SetupThe following table describes the labels in this screen. 22.4 Time

ZyWALL 2 Plus User’s Guide354 Chapter 22 MaintenanceFigure 186 Time and DateThe following table describes the labels in this screen. Table 127 Ti

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 355Get from Time ServerSelect this radio button to have the ZyWALL get the time and date from the tim

ZyWALL 2 Plus User’s Guide356 Chapter 22 Maintenance22.5 Pre-defined NTP Time Servers ListWhen you turn on the ZyWALL for the first time, the date an

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 357When the System Time and Date Synchronization in Process screen appears, wait up to one minute.Fig

ZyWALL 2 Plus User’s Guide358 Chapter 22 Maintenance22.6 Introduction To Transparent Bridging A transparent bridge is invisible to the operation of a

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 3593 As a transparent bridge does not modify the frames it forwards, it is effectively “stealth” as i

ZyWALL 2 Plus User’s Guide36 List of FiguresFigure 382 SSL Client Authentication ...

ZyWALL 2 Plus User’s Guide360 Chapter 22 Maintenance22.9 Configuring Device Mode (Bridge) To configure and have your ZyWALL work as a router or a bri

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 36122.10 F/W Upload Screen Find firmware at www.zyxel.com in a file that (usually) uses the system m

ZyWALL 2 Plus User’s Guide362 Chapter 22 MaintenanceFigure 192 Firmware UploadThe following table describes the labels in this screen. Note: Do no

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 363Figure 194 Network Temporarily DisconnectedAfter two minutes, log in again and check your new fi

ZyWALL 2 Plus User’s Guide364 Chapter 22 MaintenanceFigure 196 Backup and Restore22.11.1 Backup Configuration Backup Configuration allows you to ba

ZyWALL 2 Plus User’s GuideChapter 22 Maintenance 365Note: Do not turn off the ZyWALL while configuration file upload is in progress.After you see a “r

ZyWALL 2 Plus User’s Guide366 Chapter 22 Maintenance22.11.3 Back to Factory Defaults Pressing the Reset button in this section clears all user-enter

ZyWALL 2 Plus User’s GuideChapter 23 Introducing the SMT 367CHAPTER 23Introducing the SMTThis chapter explains how to access the System Management Ter

ZyWALL 2 Plus User’s Guide368 Chapter 23 Introducing the SMTFigure 202 Initial Screen23.2.2 Entering the PasswordThe login screen appears after you

ZyWALL 2 Plus User’s GuideChapter 23 Introducing the SMT 36923.3.1 Main MenuAfter you enter the password, the SMT displays the Main Menu, as shown ne

ZyWALL 2 Plus User’s GuideList of Tables 37List of TablesTable 1 Front Panel Lights ...

ZyWALL 2 Plus User’s Guide370 Chapter 23 Introducing the SMTFigure 204 Main Menu (Router Mode)Figure 205 Main Menu (Bridge Mode) Copy

ZyWALL 2 Plus User’s GuideChapter 23 Introducing the SMT 371The following table describes the fields in this menu.23.3.2 SMT Menus OverviewThe follow

ZyWALL 2 Plus User’s Guide372 Chapter 23 Introducing the SMT11 Remote Node Setup 11.1 Remote Node Profile 11.1.2 Remote Node Network Layer Options11.1

ZyWALL 2 Plus User’s GuideChapter 23 Introducing the SMT 37323.4 Changing the System PasswordChange the system password by following the steps shown

ZyWALL 2 Plus User’s Guide374 Chapter 23 Introducing the SMT3 Type your new system password and press [ENTER].4 Re-type your new system password for c

ZyWALL 2 Plus User’s GuideChapter 24 SMT Menu 1 - General Setup 375CHAPTER 24SMT Menu 1 - General SetupMenu 1 - General Setup contains administrative

ZyWALL 2 Plus User’s Guide376 Chapter 24 SMT Menu 1 - General SetupFigure 208 Menu 1: General Setup (Bridge Mode)The following table describes the f

ZyWALL 2 Plus User’s GuideChapter 24 SMT Menu 1 - General Setup 37724.2.1 Configuring Dynamic DNSTo configure Dynamic DNS, set the ZyWALL to router m

ZyWALL 2 Plus User’s Guide378 Chapter 24 SMT Menu 1 - General SetupFigure 210 Menu 1.1.1: DDNS Host SummaryThe following table describes the fields

ZyWALL 2 Plus User’s GuideChapter 24 SMT Menu 1 - General Setup 379Figure 211 Menu 1.1.1: DDNS Edit HostThe following table describes the fields in

ZyWALL 2 Plus User’s Guide38 List of TablesTable 39 Rule Summary ...

ZyWALL 2 Plus User’s Guide380 Chapter 24 SMT Menu 1 - General SetupThe IP address updates when you reconfigure menu 1 or perform DHCP client renewal.L

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 381CHAPTER 25WAN and Dial Backup SetupThis chapter describes how to configure the WAN u

ZyWALL 2 Plus User’s Guide382 Chapter 25 WAN and Dial Backup SetupThe following table describes the fields in this screen.25.3 Dial BackupThe Dial Ba

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 383Figure 213 Menu 2: Dial Backup Setup The following table describes the fields in

ZyWALL 2 Plus User’s Guide384 Chapter 25 WAN and Dial Backup SetupFigure 214 Menu 2.1: Advanced WAN SetupThe following table describes fields in thi

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 38525.6 Remote Node Profile (Backup ISP)Enter 2 in Menu 11 - Remote Node Setup to open

ZyWALL 2 Plus User’s Guide386 Chapter 25 WAN and Dial Backup SetupFigure 215 Menu 11.2: Remote Node Profile (Backup ISP)The following table describ

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 38725.7 Editing PPP OptionsThe ZyWALL’s dial back-up feature uses PPP. To edit the rem

ZyWALL 2 Plus User’s Guide388 Chapter 25 WAN and Dial Backup SetupFigure 216 Menu 11.2.1: Remote Node PPP OptionsThis table describes the Remote Nod

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 389Figure 217 Menu 11.2.2: Remote Node Network Layer OptionsThe following table descr

ZyWALL 2 Plus User’s GuideList of Tables 39Table 82 NAT Address Mapping ...

ZyWALL 2 Plus User’s Guide390 Chapter 25 WAN and Dial Backup Setup25.9 Editing Login ScriptFor some remote gateways, text login is required before PP

ZyWALL 2 Plus User’s GuideChapter 25 WAN and Dial Backup Setup 391after you enter the password, then you should create a third set to match the final

ZyWALL 2 Plus User’s Guide392 Chapter 25 WAN and Dial Backup SetupUse menu 11.2.4 to specify the filter set(s) to apply to the incoming and outgoing t

ZyWALL 2 Plus User’s GuideChapter 26 LAN Setup 393CHAPTER 26LAN SetupThis chapter describes how to configure the LAN using Menu 3 - LAN Setup.26.1 In

ZyWALL 2 Plus User’s Guide394 Chapter 26 LAN SetupFigure 221 Menu 3.1: LAN Port Filter Setup 26.4 TCP/IP and DHCP Ethernet Setup MenuFrom the main

ZyWALL 2 Plus User’s GuideChapter 26 LAN Setup 395Figure 223 Menu 3.2: TCP/IP and DHCP Ethernet SetupFollow the instructions in the next table on ho

ZyWALL 2 Plus User’s Guide396 Chapter 26 LAN SetupUse the instructions in the following table to configure TCP/IP parameters for the LAN port.First DN

ZyWALL 2 Plus User’s GuideChapter 26 LAN Setup 39726.4.1 IP Alias SetupIP alias allows you to partition a physical network into different logical net

ZyWALL 2 Plus User’s Guide398 Chapter 26 LAN SetupOutgoing Protocol FiltersEnter the filter set(s) you wish to apply to the outgoing traffic between t

ZyWALL 2 Plus User’s GuideChapter 27 Internet Access 399CHAPTER 27Internet AccessThis chapter shows you how to configure your ZyWALL for Internet acce

ZyWALL 2 Plus User’s Guide4 CertificationsCertificationsFederal Communications Commission (FCC) Interference StatementThis device complies with Part 1

ZyWALL 2 Plus User’s Guide40 List of TablesTable 125 General Setup ...

ZyWALL 2 Plus User’s Guide400 Chapter 27 Internet AccessThe following table describes the fields in this menu.Table 153 Menu 4: Internet Access Setu

ZyWALL 2 Plus User’s GuideChapter 27 Internet Access 40127.3 Configuring the PPTP ClientNote: The ZyWALL supports only one PPTP server connection at

ZyWALL 2 Plus User’s Guide402 Chapter 27 Internet AccessFigure 227 Internet Access Setup (PPPoE)The following table contains instructions about the

ZyWALL 2 Plus User’s GuideChapter 28 Remote Node Setup 403CHAPTER 28Remote Node SetupThis chapter shows you how to configure a remote node.28.1 Intro

ZyWALL 2 Plus User’s Guide404 Chapter 28 Remote Node Setup28.3.1 Ethernet EncapsulationThere are three variations of menu 11.x depending on whether y

ZyWALL 2 Plus User’s GuideChapter 28 Remote Node Setup 40528.3.2 PPPoE EncapsulationThe ZyWALL supports PPPoE (Point-to-Point Protocol over Ethernet)

ZyWALL 2 Plus User’s Guide406 Chapter 28 Remote Node SetupFigure 230 Menu 11.1: Remote Node Profile for PPPoE Encapsulation28.3.2.1 Outgoing Authen

ZyWALL 2 Plus User’s GuideChapter 28 Remote Node Setup 40728.3.2.3 MetricSee Section 7.2 on page 109 for details on the Metric field.28.3.3 PPTP Enc

ZyWALL 2 Plus User’s Guide408 Chapter 28 Remote Node SetupFigure 231 Menu 11.1: Remote Node Profile for PPTP EncapsulationThe next table shows how t

ZyWALL 2 Plus User’s GuideChapter 28 Remote Node Setup 409Figure 232 Menu 11.1.2: Remote Node Network Layer Options for Ethernet EncapsulationThis m

ZyWALL 2 Plus User’s GuideList of Tables 41Table 168 Menu 15.3: Trigger Port Setup ...

ZyWALL 2 Plus User’s Guide410 Chapter 28 Remote Node Setup28.5 Remote Node FilterMove the cursor to the field Edit Filter Sets in menu 11.1, and then

ZyWALL 2 Plus User’s GuideChapter 28 Remote Node Setup 411Figure 233 Menu 11.1.4: Remote Node Filter (Ethernet Encapsulation)Figure 234 Menu 11.1.

ZyWALL 2 Plus User’s Guide412 Chapter 28 Remote Node SetupFigure 235 Menu 11.1.5: Traffic Redirect SetupThe following table describes the fields in

ZyWALL 2 Plus User’s GuideChapter 29 IP Static Route Setup 413CHAPTER 29IP Static Route SetupThis chapter shows you how to configure static routes wit

ZyWALL 2 Plus User’s Guide414 Chapter 29 IP Static Route SetupFigure 237 Menu 12. 1: Edit IP Static Route`The following table describes the IP Stati

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 415CHAPTER 30Network Address Translation(NAT)This chapter discusses how to conf

ZyWALL 2 Plus User’s Guide416 Chapter 30 Network Address Translation (NAT)Figure 238 Menu 4: Applying NAT for Internet AccessThe following figure sh

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 417The following table describes the fields in this menu.30.2 NAT SetupUse the

ZyWALL 2 Plus User’s Guide418 Chapter 30 Network Address Translation (NAT)Figure 241 Menu 15.1: Address Mapping Sets30.2.1.1 SUA Address Mapping Se

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 41930.2.1.2 User-Defined Address Mapping SetsNow look at option 1 in menu 15.1

ZyWALL 2 Plus User’s Guide42 List of TablesTable 211 Class C Subnet Planning ...

ZyWALL 2 Plus User’s Guide420 Chapter 30 Network Address Translation (NAT)30.2.1.3 Ordering Your RulesOrdering your rules is important because the Zy

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 421Figure 244 Menu 15.1.1.1: Editing/Configuring an Individual Rule in a SetT

ZyWALL 2 Plus User’s Guide422 Chapter 30 Network Address Translation (NAT)30.3 Configuring a Server Behind NATNote: If you do not assign a Default Se

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 423Figure 246 15.2.x: NAT Server ConfigurationThe following table describes t

ZyWALL 2 Plus User’s Guide424 Chapter 30 Network Address Translation (NAT)Figure 247 Menu 15.2: NAT Server Setup You assign the private network IP a

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 425Figure 249 NAT Example 1Figure 250 Menu 4: Internet Access & NAT Exa

ZyWALL 2 Plus User’s Guide426 Chapter 30 Network Address Translation (NAT)30.4.2 Example 2: Internet Access with a Default Server Figure 251 NAT Ex

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 4271 Map the first IGA to the first inside FTP server for FTP traffic in both d

ZyWALL 2 Plus User’s Guide428 Chapter 30 Network Address Translation (NAT)7 When finished, menu 15.1.1 should look like as shown in Figure 256 on page

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 429Figure 256 Example 3: Final Menu 15.1.1Now configure the IGA3 to map to ou

ZyWALL 2 Plus User’s GuidePreface 43PrefaceCongratulations on your purchase of the ZyWALL. Note: Register your product online to receive e-mail notice

ZyWALL 2 Plus User’s Guide430 Chapter 30 Network Address Translation (NAT)Figure 257 Example 3: Menu 15.230.4.4 Example 4: NAT Unfriendly Applicati

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 431Follow the steps outlined in example 3 above to configure these two menus as

ZyWALL 2 Plus User’s Guide432 Chapter 30 Network Address Translation (NAT)Figure 260 Example 4: Menu 15.1.1: Address Mapping Rules30.5 Trigger Port

ZyWALL 2 Plus User’s GuideChapter 30 Network Address Translation (NAT) 433Note: Only one LAN computer can use a trigger port (range) at a time.Enter 3

ZyWALL 2 Plus User’s Guide434 Chapter 30 Network Address Translation (NAT)

ZyWALL 2 Plus User’s GuideChapter 31 Introducing the ZyWALL Firewall 435CHAPTER 31Introducing the ZyWALL FirewallThis chapter shows you how to get sta

ZyWALL 2 Plus User’s Guide436 Chapter 31 Introducing the ZyWALL FirewallFigure 263 Menu 21.2: Firewall SetupNote: Configure the firewall rules using

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 437CHAPTER 32Filter ConfigurationThis chapter shows you how to create and apply filters.32.1

ZyWALL 2 Plus User’s Guide438 Chapter 32 Filter Configuration32.1.1 The Filter Structure of the ZyWALLA filter set consists of one or more filter rul

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 439Figure 265 Filter Rule Process You can apply up to four filter sets to a particular por

ZyWALL 2 Plus User’s Guide44 PrefaceSyntax Conventions• “Enter” means for you to type one or more characters. “Select” or “Choose” means for you to us

ZyWALL 2 Plus User’s Guide440 Chapter 32 Filter Configuration32.2 Packet Filtering Versus FirewallBelow are some comparisons between the ZyWALL’s fil

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 44132.2.2.1 When To Use The Firewall1 To prevent DoS attacks and prevent hackers cracking y

ZyWALL 2 Plus User’s Guide442 Chapter 32 Filter ConfigurationFigure 267 Menu 21.1: Filter Set Configuration3 Select the filter set you wish to confi

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 443The protocol dependent filter rules abbreviation are listed as follows:Refer to the next

ZyWALL 2 Plus User’s Guide444 Chapter 32 Filter ConfigurationFigure 268 Menu 21.1.1.1: TCP/IP Filter RuleThe following table describes how to config

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 445The following figure illustrates the logic flow of an IP filter.Port # Enter the source p

ZyWALL 2 Plus User’s Guide446 Chapter 32 Filter ConfigurationFigure 269 Executing an IP Filter32.3.3 Configuring a Generic Filter Rule This section

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 447to allow you to filter non-IP packets. For IP, it is generally easier to use the IP rules

ZyWALL 2 Plus User’s Guide448 Chapter 32 Filter Configuration32.4 Example FilterLet’s look at an example to block outside users from accessing the Zy

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 4495 Press [ENTER] at the message [Press ENTER to confirm] to open Menu 21.1.3 - Filter Rul

ZyWALL 2 Plus User’s GuideChapter 1 Getting to Know Your ZyWALL 45CHAPTER 1Getting to Know Your ZyWALLThis chapter introduces the main features and ap

ZyWALL 2 Plus User’s Guide450 Chapter 32 Filter ConfigurationFigure 273 Example Filter Rules Summary: Menu 21.1.3This shows you that you have config

ZyWALL 2 Plus User’s GuideChapter 32 Filter Configuration 451Figure 274 Protocol and Device Filter Sets32.6 Firewall Versus FiltersFirewall configu

ZyWALL 2 Plus User’s Guide452 Chapter 32 Filter ConfigurationFigure 275 Filtering LAN Traffic32.7.2 Applying Remote Node FiltersGo to menu 11.1.4 (

ZyWALL 2 Plus User’s GuideChapter 33 SNMP Configuration 453CHAPTER 33SNMP ConfigurationThis chapter explains SNMP configuration menu 22.33.1 SNMP Con

ZyWALL 2 Plus User’s Guide454 Chapter 33 SNMP Configuration33.2 SNMP Traps The ZyWALL will send traps to the SNMP manager when any one of the followi

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 455CHAPTER 34System Information & DiagnosisThis chapter covers SMT menus 2

ZyWALL 2 Plus User’s Guide456 Chapter 34 System Information & Diagnosis3 There are three commands in Menu 24.1 - System Maintenance - Status. Ente

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 45734.3 System Information and Console Port SpeedThis section describes your

ZyWALL 2 Plus User’s Guide458 Chapter 34 System Information & DiagnosisFigure 281 Menu 24.2.1: System Maintenance: Information The following ta

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 459Figure 282 Menu 24.2.2: System Maintenance: Change Console Port Speed34.4

ZyWALL 2 Plus User’s Guide46 Chapter 1 Getting to Know Your ZyWALLTime and DateThe ZyWALL allows you to get the current time and date from an external

ZyWALL 2 Plus User’s Guide460 Chapter 34 System Information & DiagnosisFigure 284 Examples of Error and Information Messages34.4.2 Syslog Loggi

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 4611 CDR2 Packet triggered3 Filter log CDR Message Format SdcmdSyslogSend( S

ZyWALL 2 Plus User’s Guide462 Chapter 34 System Information & Diagnosis4 PPP log 5 Firewall logFilter log Message FormatSdcmdSyslogSend(SYSLOG_FIL

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 46334.4.3 Call-Triggering PacketCall-Triggering Packet displays information a

ZyWALL 2 Plus User’s Guide464 Chapter 34 System Information & Diagnosis1 From the main menu, select option 24 to open Menu 24 - System Maintenance

ZyWALL 2 Plus User’s GuideChapter 34 System Information & Diagnosis 465Host IP Address If you entered 1in the Enter Menu Selection Number field, t

ZyWALL 2 Plus User’s Guide466 Chapter 34 System Information & Diagnosis

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 467CHAPTER 35Firmware and Configuration FileMaintenanceThis chapter t

ZyWALL 2 Plus User’s Guide468 Chapter 35 Firmware and Configuration File MaintenanceThe following table is a summary. Please note that the internal fi

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 469Figure 288 Telnet into Menu 24.535.3.2 Using the FTP Command fr

ZyWALL 2 Plus User’s GuideChapter 1 Getting to Know Your ZyWALL 47X-Auth (Extended Authentication)X-Auth provides added security for VPN by requiring

ZyWALL 2 Plus User’s Guide470 Chapter 35 Firmware and Configuration File Maintenance35.3.3 Example of FTP Commands from the Command Line Figure 289

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 4714 The IP you entered in the Secured Client IP field in menu 24.11

ZyWALL 2 Plus User’s Guide472 Chapter 35 Firmware and Configuration File Maintenance35.3.8 GUI-based TFTP ClientsThe following table describes some o

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 473Figure 292 Backup Configuration ExampleType a location for stori

ZyWALL 2 Plus User’s Guide474 Chapter 35 Firmware and Configuration File MaintenanceFigure 294 Telnet into Menu 24.61 Launch the FTP client on your

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 47535.4.2 Restore Using FTP Session ExampleFigure 295 Restore Usin

ZyWALL 2 Plus User’s Guide476 Chapter 35 Firmware and Configuration File Maintenance4 After a successful restoration you will see the following screen

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 477Figure 300 Telnet Into Menu 24.7.1: Upload System Firmware 35.5.

ZyWALL 2 Plus User’s Guide478 Chapter 35 Firmware and Configuration File Maintenance35.5.3 FTP File Upload Command from the DOS Prompt Example1 Launc

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 4791 Use telnet from your computer to connect to the ZyWALL and log i

ZyWALL 2 Plus User’s Guide48 Chapter 1 Getting to Know Your ZyWALLRADIUS (RFC2138, 2139)RADIUS (Remote Authentication Dial In User Service) server ena

ZyWALL 2 Plus User’s Guide480 Chapter 35 Firmware and Configuration File MaintenanceFigure 303 Menu 24.7.1 As Seen Using the Console Port2 After the

ZyWALL 2 Plus User’s GuideChapter 35 Firmware and Configuration File Maintenance 481Figure 305 Menu 24.7.2 As Seen Using the Console Port 2 After th

ZyWALL 2 Plus User’s Guide482 Chapter 35 Firmware and Configuration File Maintenance

ZyWALL 2 Plus User’s GuideChapter 36 System Maintenance Menus 8 to 10 483CHAPTER 36System Maintenance Menus 8 to10This chapter leads you through SMT m

ZyWALL 2 Plus User’s Guide484 Chapter 36 System Maintenance Menus 8 to 10The required fields in a command are enclosed in angle brackets <>. The

ZyWALL 2 Plus User’s GuideChapter 36 System Maintenance Menus 8 to 10 48536.2 Call Control SupportThe ZyWALL provides two call control functions: bud

ZyWALL 2 Plus User’s Guide486 Chapter 36 System Maintenance Menus 8 to 10Figure 310 Budget ManagementThe total budget is the time limit on the accum

ZyWALL 2 Plus User’s GuideChapter 36 System Maintenance Menus 8 to 10 487Figure 311 Call HistoryThe following table describes the fields in this scr

ZyWALL 2 Plus User’s Guide488 Chapter 36 System Maintenance Menus 8 to 10Figure 312 Menu 24: System MaintenanceEnter 10 to go to Menu 24.10 - System

ZyWALL 2 Plus User’s GuideChapter 36 System Maintenance Menus 8 to 10 489Table 185 Menu 24.10 System Maintenance: Time and Date SettingFIELD DESCRIP

ZyWALL 2 Plus User’s GuideChapter 1 Getting to Know Your ZyWALL 49IP AliasIP Alias allows you to partition a physical network into logical networks ov

ZyWALL 2 Plus User’s Guide490 Chapter 36 System Maintenance Menus 8 to 10End Date (mm-nth-week-hr)Configure the day and time when Daylight Saving Time

ZyWALL 2 Plus User’s GuideChapter 37 Remote Management 491CHAPTER 37Remote ManagementThis chapter covers remote management found in SMT menu 24.11.37.

ZyWALL 2 Plus User’s Guide492 Chapter 37 Remote ManagementFigure 314 Menu 24.11 – Remote Management ControlThe following table describes the fields

ZyWALL 2 Plus User’s GuideChapter 37 Remote Management 49337.1.1 Remote Management LimitationsRemote management over LAN or WAN will not work when:1

ZyWALL 2 Plus User’s Guide494 Chapter 37 Remote Management

ZyWALL 2 Plus User’s GuideChapter 38 Call Scheduling 495CHAPTER 38Call SchedulingCall scheduling allows you to dictate when a remote node should be ca

ZyWALL 2 Plus User’s Guide496 Chapter 38 Call SchedulingFigure 316 Schedule Set SetupIf a connection has been already established, your ZyWALL will

ZyWALL 2 Plus User’s GuideChapter 38 Call Scheduling 497Once your schedule sets are configured, you must then apply them to the desired remote node(s)

ZyWALL 2 Plus User’s Guide498 Chapter 38 Call SchedulingFigure 318 Applying Schedule Set(s) to a Remote Node (PPTP) Menu 11.1 - Remote N

ZyWALL 2 Plus User’s GuideChapter 39 Troubleshooting 499CHAPTER 39TroubleshootingThis chapter covers potential problems and possible remedies. After e

ZyWALL 2 Plus User’s GuideCertifications 5

ZyWALL 2 Plus User’s Guide50 Chapter 1 Getting to Know Your ZyWALLFull Network ManagementThe embedded web configurator is an all-platform, web-based u

ZyWALL 2 Plus User’s Guide500 Chapter 39 Troubleshooting39.3 Problems with the WAN Interface39.4 Problems Accessing the ZyWALLTable 190 Troublesho

ZyWALL 2 Plus User’s GuideChapter 39 Troubleshooting 50139.4.1 Pop-up Windows, JavaScripts and Java Permissions In order to use the web configurator

ZyWALL 2 Plus User’s Guide502 Chapter 39 Troubleshooting39.4.1.1.1 Disable pop-up Blockers1 In Internet Explorer, select Tools, Pop-up Blocker and th

ZyWALL 2 Plus User’s GuideChapter 39 Troubleshooting 50339.4.1.1.2 Enable pop-up Blockers with ExceptionsAlternatively, if you only want to allow pop

ZyWALL 2 Plus User’s Guide504 Chapter 39 TroubleshootingFigure 322 Pop-up Blocker Settings5 Click Close to return to the Privacy screen. 6 Click App

ZyWALL 2 Plus User’s GuideChapter 39 Troubleshooting 505Figure 323 Internet Options: Security 2 Click the Custom Level... button. 3 Scroll down to S

ZyWALL 2 Plus User’s Guide506 Chapter 39 TroubleshootingFigure 324 Security Settings - Java Scripting39.4.1.3 Java Permissions1 From Internet Explo

ZyWALL 2 Plus User’s GuideChapter 39 Troubleshooting 507Figure 325 Security Settings - Java 39.4.1.3.1 JAVA (Sun)1 From Internet Explorer, click To

ZyWALL 2 Plus User’s Guide508 Chapter 39 TroubleshootingFigure 326 Java (Sun)39.5 Packet FlowThe following is the packet check flow on the ZyWALL.L

ZyWALL 2 Plus User’s GuideAppendix A Product Specifications 509APPENDIX AProduct SpecificationsSee also the Introduction chapter for a general overvie

ZyWALL 2 Plus User’s GuideChapter 1 Getting to Know Your ZyWALL 51Figure 1 Secure Internet Access via Cable, DSL or Wireless Modem1.3.2 VPN Applica

ZyWALL 2 Plus User’s Guide510 Appendix A Product SpecificationsConcurrent Sessions 3000Simultaneous IPSec VPN Connections 2Table 194 Firmware Featu

ZyWALL 2 Plus User’s GuideAppendix A Product Specifications 511 Cable Pin AssignmentsIn a serial communications connection, generally a computer is DT

ZyWALL 2 Plus User’s Guide512 Appendix A Product SpecificationsFigure 327 Console/Dial Backup Cable DB-9 End Pin Layout Table 196 Console Cable P

ZyWALL 2 Plus User’s GuideAppendix A Product Specifications 513Figure 328 Ethernet Cable Pin AssignmentsWall Mounting SpecificationsUse two M4 x 30

ZyWALL 2 Plus User’s Guide514 Appendix A Product Specifications

ZyWALL 2 Plus User’s GuideAppendix B Wall-mounting Instructions 515APPENDIX BWall-mounting InstructionsDo the following to hang your ZyWALL on a wall.

ZyWALL 2 Plus User’s Guide516 Appendix B Wall-mounting Instructions

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 517APPENDIX CSetting up Your Computer’s IP AddressAll computers must have a

ZyWALL 2 Plus User’s Guide518 Appendix C Setting up Your Computer’s IP AddressFigure 330 WIndows 95/98/Me: Network: ConfigurationInstalling Componen

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 5193 Select Microsoft from the list of manufacturers.4 Select Client for Mi

ZyWALL 2 Plus User’s Guide52 Chapter 1 Getting to Know Your ZyWALL1.3.3 Front Panel LightsFigure 3 Front PanelThe following table describes the lig

ZyWALL 2 Plus User’s Guide520 Appendix C Setting up Your Computer’s IP AddressFigure 332 Windows 95/98/Me: TCP/IP Properties: DNS Configuration4 Cli

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 521Figure 333 Windows XP: Start Menu2 In the Control Panel, double-click

ZyWALL 2 Plus User’s Guide522 Appendix C Setting up Your Computer’s IP AddressFigure 335 Windows XP: Control Panel: Network Connections: Properties4

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 523• If you have a static IP address click Use the following IP Address and

ZyWALL 2 Plus User’s Guide524 Appendix C Setting up Your Computer’s IP AddressFigure 338 Windows XP: Advanced TCP/IP Properties7 In the Internet Pro

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 525Figure 339 Windows XP: Internet Protocol (TCP/IP) Properties8 Click OK

ZyWALL 2 Plus User’s Guide526 Appendix C Setting up Your Computer’s IP AddressFigure 340 Macintosh OS 8/9: Apple Menu2 Select Ethernet built-in from

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 5274 For statically assigned settings, do the following:•From the Configure

ZyWALL 2 Plus User’s Guide528 Appendix C Setting up Your Computer’s IP AddressFigure 343 Macintosh OS X: Network4 For statically assigned settings,

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 529Note: Make sure you are logged in as the root administrator. Using the K

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 53CHAPTER 2Introducing the WebConfiguratorThis chapter describes how to access th

ZyWALL 2 Plus User’s Guide530 Appendix C Setting up Your Computer’s IP Address• If you have a dynamic IP address, click Automatically obtain IP addres

ZyWALL 2 Plus User’s GuideAppendix C Setting up Your Computer’s IP Address 5311 Assuming that you have only one network card on the computer, locate t

ZyWALL 2 Plus User’s Guide532 Appendix C Setting up Your Computer’s IP AddressFigure 351 Red Hat 9.0: Restart Ethernet Card Verifying SettingsEnter

ZyWALL 2 Plus User’s GuideAppendix D IP Subnetting 533APPENDIX DIP SubnettingIP Addressing Routers “route” based on the network number. The router tha

ZyWALL 2 Plus User’s Guide534 Appendix D IP SubnettingSince the first octet of a class “A” IP address must contain a “0”, the first octet of a class “

ZyWALL 2 Plus User’s GuideAppendix D IP Subnetting 535Since the mask is always a continuous number of ones beginning from the left, followed by a cont

ZyWALL 2 Plus User’s Guide536 Appendix D IP SubnettingNote: In the following charts, shaded/bolded last octet bit values indicate host ID bits “borrow

ZyWALL 2 Plus User’s GuideAppendix D IP Subnetting 537Example: Four Subnets The above example illustrated using a 25-bit subnet mask to divide a class

ZyWALL 2 Plus User’s Guide538 Appendix D IP SubnettingExample Eight SubnetsSimilarly use a 27-bit mask to create 8 subnets (001, 010, 011, 100, 101, 1

ZyWALL 2 Plus User’s GuideAppendix D IP Subnetting 539Subnetting With Class A and Class B Networks. For class “A” and class “B” addresses the subnet m

ZyWALL 2 Plus User’s Guide54 Chapter 2 Introducing the Web ConfiguratorFigure 4 Change Password Screen6 Click Apply in the Replace Certificate scree

ZyWALL 2 Plus User’s Guide540 Appendix D IP Subnetting

ZyWALL 2 Plus User’s GuideAppendix E Common Services 541Appendix E Common ServicesThe following table lists some commonly-used services and their asso

ZyWALL 2 Plus User’s Guide542 Appendix E Common ServicesHTTP TCP 80 Hyper Text Transfer Protocol - a client/server protocol for the world wide web.HTT

ZyWALL 2 Plus User’s GuideAppendix E Common Services 543SFTP TCP 115 Simple File Transfer Protocol.SMTP TCP 25 Simple Mail Transfer Protocol is the me

ZyWALL 2 Plus User’s Guide544 Appendix E Common Services

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 545APPENDIX FVPN SetupThis appendix will help you to quickly create a IPSec/VPN connection between two

ZyWALL 2 Plus User’s Guide546 Appendix F VPN SetupThe following pages show a typical configuration that builds a tunnel between two private networks.

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 547Figure 354 Headquarters Gateway Policy EditThe IP address of the branch office IPSec router.

ZyWALL 2 Plus User’s Guide548 Appendix F VPN SetupFigure 355 Branch Office Gateway Policy Edit3 Click the add network policy ( ) icon next to the BR

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 549Figure 356 Headquarters VPN RuleFigure 357 Branch Office VPN Rule4 Configure the screens in the

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 552.3.1 Procedure To Use The Reset ButtonMake sure the SYS LED is on (not blinki

ZyWALL 2 Plus User’s Guide550 Appendix F VPN SetupFigure 358 Headquarters Network Policy EditIP addresses on different subnets.Activate the network

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 551Figure 359 Branch Office Network Policy EditDialing the VPN Tunnel via Web ConfiguratorTo test whe

ZyWALL 2 Plus User’s Guide552 Appendix F VPN SetupFigure 360 VPN Rule ConfiguredThe following screen displays.Figure 361 VPN DialThis screen displ

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 553VPN TroubleshootingIf the IPSec tunnel does not build properly, the problem is likely a configuratio

ZyWALL 2 Plus User’s Guide554 Appendix F VPN SetupFigure 363 VPN Log Example ras> sys log disp ike ipsec# .time source

ZyWALL 2 Plus User’s GuideAppendix F VPN Setup 555IPSec DebugIf you are having difficulty building an IPSec tunnel to a non-ZyXEL IPSec router, advanc

ZyWALL 2 Plus User’s Guide556 Appendix F VPN SetupUse a VPN TunnelA VPN tunnel gives you a secure connection to another computer or network. The VPN S

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 557APPENDIX GImporting CertificatesThis appendix shows importing certificates examples usi

ZyWALL 2 Plus User’s Guide558 Appendix G Importing CertificatesFigure 366 Login Screen2 Click Install Certificate to open the Install Certificate wi

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 559Figure 368 Certificate Import Wizard 14 Select where you would like to store the cert

ZyWALL 2 Plus User’s Guide56 Chapter 2 Introducing the Web Configurator2.4.1 Router ModeThe following screen displays when the ZyWALL is set to route

ZyWALL 2 Plus User’s Guide560 Appendix G Importing CertificatesFigure 370 Certificate Import Wizard 36 Click Yes to add the ZyWALL certificate to t

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 561Figure 372 Certificate General Information after ImportEnrolling and Importing SSL Cl

ZyWALL 2 Plus User’s Guide562 Appendix G Importing CertificatesFigure 373 ZyWALL Trusted CA ScreenThe CA sends you a package containing the CA’s tru

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 563Figure 374 CA Certificate Example2 Click Install Certificate and follow the wizard as

ZyWALL 2 Plus User’s Guide564 Appendix G Importing CertificatesFigure 375 Personal Certificate Import Wizard 12 The file name and path of the certif

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 565Figure 377 Personal Certificate Import Wizard 34 Have the wizard determine where the

ZyWALL 2 Plus User’s Guide566 Appendix G Importing CertificatesFigure 379 Personal Certificate Import Wizard 56 You should see the following screen

ZyWALL 2 Plus User’s GuideAppendix G Importing Certificates 567Figure 382 SSL Client Authentication3 You next see the ZyWALL login screen.Figure 383

ZyWALL 2 Plus User’s Guide568 Appendix G Importing Certificates

ZyWALL 2 Plus User’s GuideAppendix H Command Interpreter 569APPENDIX HCommand InterpreterThe following describes how to use the command interpreter. E

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 57Routing Protocol This shows the routing protocol - IP for which the ZyWALL is c

ZyWALL 2 Plus User’s Guide570 Appendix H Command Interpreter

ZyWALL 2 Plus User’s GuideAppendix I Firewall Commands 571APPENDIX IFirewall CommandsThe following describes the firewall commands. See Appendix H on

ZyWALL 2 Plus User’s Guide572 Appendix I Firewall CommandsE-mail config edit firewall e-mail mail-server <ip address of mail server>This comman

ZyWALL 2 Plus User’s GuideAppendix I Firewall Commands 573config edit firewall attack minute-high <0-255>This command sets the threshold rate of

ZyWALL 2 Plus User’s Guide574 Appendix I Firewall CommandsConfig edit firewall set <set #> tcp-idle-timeout <seconds>This command sets how

ZyWALL 2 Plus User’s GuideAppendix I Firewall Commands 575config edit firewall set <set #> rule <rule #> destaddr-subnet <ip address>

ZyWALL 2 Plus User’s Guide576 Appendix I Firewall Commands

ZyWALL 2 Plus User’s GuideAppendix J NetBIOS Filter Commands 577APPENDIX JNetBIOS Filter CommandsThe following describes the NetBIOS packet filter com

ZyWALL 2 Plus User’s Guide578 Appendix J NetBIOS Filter CommandsThe filter types and their default settings are as follows.NetBIOS Filter Configuratio

ZyWALL 2 Plus User’s GuideAppendix K Certificates Commands 579APPENDIX KCertificates CommandsThe following describes the certificate commands. See App

ZyWALL 2 Plus User’s Guide58 Chapter 2 Introducing the Web Configurator2.4.2 Bridge ModeThe following screen displays when the ZyWALL is set to bridg

ZyWALL 2 Plus User’s Guide580 Appendix K Certificates Commandscreate cmp_enroll <name> <CA addr> <CA cert> <auth key> <subj

ZyWALL 2 Plus User’s GuideAppendix K Certificates Commands 581replace_factoryCreate a certificate using your device MAC address that will be specific

ZyWALL 2 Plus User’s Guide582 Appendix K Certificates Commands delete <name> Delete the specified trusted remote host certificate. <name>

ZyWALL 2 Plus User’s GuideAppendix L Brute-Force Password Guessing Protection 583APPENDIX LBrute-Force Password GuessingProtectionBrute-force password

ZyWALL 2 Plus User’s Guide584 Appendix L Brute-Force Password Guessing Protection

ZyWALL 2 Plus User’s GuideAppendix M Boot Commands 585APPENDIX MBoot CommandsThe BootModule AT commands execute from within the router’s bootup softwa

ZyWALL 2 Plus User’s Guide586 Appendix M Boot CommandsFigure 385 Boot Module CommandsAT just answer OKATHE print helpATBAx

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 587APPENDIX NLog DescriptionsThis appendix provides descriptions of example log messages. Table

ZyWALL 2 Plus User’s Guide588 Appendix N Log DescriptionsConfiguration Change: PC = 0x%x, Task ID = 0x%xThe router is saving configuration changes.Suc

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 589 DHCP Server cannot assign the static IP %S (out of range).The LAN subnet, LAN alias 1, or L

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 59Figure 8 Web Configurator HOME Screen in Bridge ModeThe following table descr

ZyWALL 2 Plus User’s Guide590 Appendix N Log Descriptions For type and code details, see Table 236 on page 601.Peer TCP state out of order, sent TCP

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 591 Packet without a NAT table entry blocked: ICMPThe router blocked a packet that didn’t hav

ZyWALL 2 Plus User’s Guide592 Appendix N Log Descriptions For type and code details, see Table 236 on page 601.Table 227 Content Filtering LogsLOG

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 593land [ TCP | UDP | IGMP | ESP | GRE | OSPF ]The firewall detected a TCP/UDP/IGMP/ESP/GRE/OSPF

ZyWALL 2 Plus User’s Guide594 Appendix N Log Descriptions IP address in FTP port command is different from the client IP address. It maybe a bounce at

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 595 Rule <%d> idle time out, disconnectThe router dropped a connection that had outbound t

ZyWALL 2 Plus User’s Guide596 Appendix N Log DescriptionsCannot resolve Secure Gateway Addr for rule <%d>The router couldn’t resolve the IP addr

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 597XAUTH fail! Username: <Username>The router was not able to use extended authentication

ZyWALL 2 Plus User’s Guide598 Appendix N Log Descriptions Rule [%d] phase 2 mismatch The listed rule’s IKE phase 2 did not match between the router an

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 599 Failed to decode the received user certThe router received a corrupted user certificate from

ZyWALL 2 Plus User’s Guide6 Safety WarningsSafety WarningsFor your safety, be sure to read and follow all warning notices and instructions.• Do NOT op

ZyWALL 2 Plus User’s Guide60 Chapter 2 Introducing the Web ConfiguratorSystem Time This field displays your ZyWALL’s present date and time along with

ZyWALL 2 Plus User’s Guide600 Appendix N Log Descriptions 20 CRL decoding failed.21 CRL is not currently valid, but in the future.22 CRL contains dupl

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 601 Use Local User Database to authenticate user.The local user database is operating as the aut

ZyWALL 2 Plus User’s Guide602 Appendix N Log Descriptions2 Redirect datagrams for the Type of Service and Network3 Redirect datagrams for the Type of

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 603Syslog LogsThere are two types of syslog: event logs and traffic logs. The device generates a

ZyWALL 2 Plus User’s Guide604 Appendix N Log DescriptionsLog CommandsThis section provides some general examples of how to use the log commands. The i

ZyWALL 2 Plus User’s GuideAppendix N Log Descriptions 605Figure 387 Displaying Log Parameters Example4 Use sys logs category followed by a log categ

ZyWALL 2 Plus User’s Guide606 Appendix N Log DescriptionsLog Command ExampleThis example shows how to set the ZyWALL to record the access logs and ale

ZyWALL 2 Plus User’s GuideIndex 607IndexNumerics10/100 Mbps Ethernet WAN 45AAction for Matched Packets 142Active 386, 388, 404Active Protocol 187AH 18

ZyWALL 2 Plus User’s Guide608 IndexConnection ID/Name 408Console Port 457, 458, 459Configuration File Upload 480File Backup 472File Upload 479Restorin

ZyWALL 2 Plus User’s GuideIndex 609SMT Menus 435When To Use 441Firewall Threshold 145Firmware FileMaintenance 467Flow Control 367FTP 294, 297, 312, 46

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 612.4.3 Navigation PanelAfter you enter the password, use the sub-menus on the n

ZyWALL 2 Plus User’s Guide610 IndexIPSec High Availability 191IPSec SAActive Protocol 185, 187and NetBIOS 186Authentication Algorithms 188Authenticati

ZyWALL 2 Plus User’s GuideIndex 611OOffline 379One Minute High 146One Minute Low 145One to One 252Outgoing Protocol Filters 398Outside 249PPacket Filt

ZyWALL 2 Plus User’s Guide612 IndexSafety Warnings 6Schedule SetsDuration 496Scheduler 271, 276Schedules 405, 407, 408Screws 513Secure FTP Using SSH E

ZyWALL 2 Plus User’s GuideIndex 613VVirtual Private Network 46Virtual Private Network. See VPN.VPN 119, 179Active Protocol 187and NAT 190and Remote Ma

ZyWALL 2 Plus User’s Guide62 Chapter 2 Introducing the Web ConfiguratorTable Key: An O in a mode’s column shows that the device mode has the specified

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 63CERTIFICATES My Certificates Use this screen to view a summary list of certific

ZyWALL 2 Plus User’s Guide64 Chapter 2 Introducing the Web Configurator2.4.4 System StatisticsClick Show Statistics in the HOME screen. Read-only inf

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 65The following table describes the labels in this screen.2.4.5 DHCP Table Scree

ZyWALL 2 Plus User’s Guide66 Chapter 2 Introducing the Web ConfiguratorFigure 10 Home: DHCP TableThe following table describes the labels in this sc

ZyWALL 2 Plus User’s GuideChapter 2 Introducing the Web Configurator 67Figure 11 Home: VPN StatusThe following table describes the labels in this sc

ZyWALL 2 Plus User’s Guide68 Chapter 2 Introducing the Web Configurator

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 69CHAPTER 3Wizard SetupThis chapter provides information on the Wizard Setup screens in the web confi

ZyWALL 2 Plus User’s GuideZyXEL Limited Warranty 7ZyXEL Limited WarrantyZyXEL warrants to the original end user (purchaser) that this product is free

ZyWALL 2 Plus User’s Guide70 Chapter 3 Wizard SetupFigure 12 ISP Parameters: Ethernet EncapsulationThe following table describes the labels in this

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 713.2.1.2 PPPoE EncapsulationPoint-to-Point Protocol over Ethernet (PPPoE) functions as a dial-up co

ZyWALL 2 Plus User’s Guide72 Chapter 3 Wizard Setup3.2.1.3 PPTP EncapsulationPoint-to-Point Tunneling Protocol (PPTP) is a network protocol that enab

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 73Note: The ZyWALL supports one PPTP server connection at any given time.Figure 14 ISP Parameters:

ZyWALL 2 Plus User’s Guide74 Chapter 3 Wizard Setup3.2.2 Internet Access Wizard: Second ScreenClick Next to go to the screen where you can register y

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 75Figure 16 Internet Access Setup Complete3.2.3 Internet Access Wizard: RegistrationIf you clicked

ZyWALL 2 Plus User’s Guide76 Chapter 3 Wizard SetupThe following table describes the labels in this screen. After you fill in the fields and click Nex

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 77Figure 19 Internet Access Wizard: StatusThe following screen appears if the registration was not

ZyWALL 2 Plus User’s Guide78 Chapter 3 Wizard SetupFigure 22 Internet Access Wizard: Activated Services3.3 VPN Wizard Gateway SettingA VPN (Virtual

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 79Figure 24 IPSec Fields Summary Use the VPN wizard screens to configure a VPN rule that uses a pr

ZyWALL 2 Plus User’s Guide8 Customer SupportCustomer SupportPlease have the following information ready when you contact customer support.• Product mo

ZyWALL 2 Plus User’s Guide80 Chapter 3 Wizard Setup3.4 VPN Wizard Network SettingTwo active SAs cannot have the local and remote IP address(es) both

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 81The following table describes the labels in this screen. Table 14 VPN Wizard: Network SettingLABE

ZyWALL 2 Plus User’s Guide82 Chapter 3 Wizard Setup3.5 VPN Wizard IKE Tunnel Setting (IKE Phase 1)Figure 27 VPN Wizard: IKE Tunnel SettingThe follo

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 833.6 VPN Wizard IPSec Setting (IKE Phase 2)Figure 28 VPN Wizard: IPSec SettingPre-Shared Key Type

ZyWALL 2 Plus User’s Guide84 Chapter 3 Wizard SetupThe following table describes the labels in this screen.3.7 VPN Wizard Status SummaryThis read-onl

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 85Figure 29 VPN Wizard: VPN StatusThe following table describes the labels in this screen.Table 17

ZyWALL 2 Plus User’s Guide86 Chapter 3 Wizard SetupName This is the name of this VPN network policy.Network Policy SettingLocal NetworkStarting IP Add

ZyWALL 2 Plus User’s GuideChapter 3 Wizard Setup 873.8 VPN Wizard Setup CompleteCongratulations! You have successfully set up the VPN rule after any

ZyWALL 2 Plus User’s Guide88 Chapter 3 Wizard Setup

ZyWALL 2 Plus User’s GuideChapter 4 Registration 89CHAPTER 4Registration4.1 myZyXEL.com overviewmyZyXEL.com is ZyXEL’s online services center where y

ZyWALL 2 Plus User’s GuideCustomer Support [email protected] +48 (22) 333 8250 www.pl.zyxel.com ZyXEL Communicationsul. Okrzei 1A03-715 Warszaw

ZyWALL 2 Plus User’s Guide90 Chapter 4 RegistrationFigure 31 RegistrationThe following table describes the labels in this screen. Table 18 Registr

ZyWALL 2 Plus User’s GuideChapter 4 Registration 91Note: If the ZyWALL is registered already, this screen is read-only and indicates whether trial ser

ZyWALL 2 Plus User’s Guide92 Chapter 4 RegistrationFigure 33 Registration: ServiceThe following table describes the labels in this screen. Table 19

ZyWALL 2 Plus User’s GuideChapter 5 LAN Screens 93CHAPTER 5LAN ScreensThis chapter describes how to configure LAN settings. This chapter is only appli

ZyWALL 2 Plus User’s Guide94 Chapter 5 LAN ScreensIf the ISP did not explicitly give you an IP network number, then most likely you have a single user

ZyWALL 2 Plus User’s GuideChapter 5 LAN Screens 955.3 DHCP The ZyWALL can use DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) to au

ZyWALL 2 Plus User’s Guide96 Chapter 5 LAN ScreensIGMP (Internet Group Multicast Protocol) is a network-layer protocol used to establish membership in

ZyWALL 2 Plus User’s GuideChapter 5 LAN Screens 97Figure 35 LANThe following table describes the labels in this screen.Table 20 LAN LABEL DESCRIPT

ZyWALL 2 Plus User’s Guide98 Chapter 5 LAN Screens5.8 LAN Static DHCPThis table allows you to assign IP addresses on the LAN to specific individual c

ZyWALL 2 Plus User’s GuideChapter 5 LAN Screens 99Every Ethernet device has a unique MAC (Media Access Control) address. The MAC address is assigned a