User Guide
Page 2
...-Line Interface (CLI) to connect the ZyWALL and access the Web Configurator wizards. (See the wizard real time help for help in Windows 7 Video Example 85 Bandwidth Management Video Example 100 AppPatrol Video Example 117 2 ZyWALL USG100-PLUS User's Guide Note: It is recommended you use the... Web Configurator to configure the ZyWALL. • Web Configurator Online Help Click the help icon in any screen...
...-Line Interface (CLI) to connect the ZyWALL and access the Web Configurator wizards. (See the wizard real time help for help in Windows 7 Video Example 85 Bandwidth Management Video Example 100 AppPatrol Video Example 117 2 ZyWALL USG100-PLUS User's Guide Note: It is recommended you use the... Web Configurator to configure the ZyWALL. • Web Configurator Online Help Click the help icon in any screen...
User Guide
Page 3
...Up an IPv6 6to4 Tunnel 34 2.7 How to Set Up an IPv6-in-IPv4 Tunnel 38 Protecting Your Network ...45 3.1 Firewall ...45 3.2 User-aware Access Control ...46 3.3 Endpoint Security (EPS) ...47 3.4 Device and Service Registration ...47 3.5 Anti-Virus Policy Configuration ...48 3.6 IDP ... VPN Concentrator Example ...65 4.3 Hub-and-spoke IPSec VPN Without VPN Concentrator 67 4.4 ZyWALL IPSec VPN Client Configuration Provisioning 69 4.5 SSL VPN ...73 4.6 L2TP VPN with Android, iOS, and Windows 75 4.7 One-Time Password Version 2 (OTPv2 90 Managing Traffic ...93 ZyWALL USG100-PLUS User's Guide 3
...Up an IPv6 6to4 Tunnel 34 2.7 How to Set Up an IPv6-in-IPv4 Tunnel 38 Protecting Your Network ...45 3.1 Firewall ...45 3.2 User-aware Access Control ...46 3.3 Endpoint Security (EPS) ...47 3.4 Device and Service Registration ...47 3.5 Anti-Virus Policy Configuration ...48 3.6 IDP ... VPN Concentrator Example ...65 4.3 Hub-and-spoke IPSec VPN Without VPN Concentrator 67 4.4 ZyWALL IPSec VPN Client Configuration Provisioning 69 4.5 SSL VPN ...73 4.6 L2TP VPN with Android, iOS, and Windows 75 4.7 One-Time Password Version 2 (OTPv2 90 Managing Traffic ...93 ZyWALL USG100-PLUS User's Guide 3
User Guide
Page 4
Contents 5.1 How to Configure Bandwidth Management 93 5.2 How to Configure a Trunk for WAN Load Balancing 100 5.3 How to Use Multiple Static Public WAN IP Addresses for LAN-to-WAN Traffic 103 5.4 How to Configure DNS Inbound Load Balancing 104 5.5 How to ... 126 6.7 How to Save System Logs to a USB Storage Device 127 6.8 How to Get the ZyWALL's Diagnostic File 130 6.9 How to Capture Packets on the ZyWALL 131 6.10 How to Get the ZyWALL's Core Dump File 134 6.11 How to Use Packet Flow Explore for Troubleshooting 135 Appendix A Legal Information...137 4 ZyWALL USG100-PLUS User's Guide
Contents 5.1 How to Configure Bandwidth Management 93 5.2 How to Configure a Trunk for WAN Load Balancing 100 5.3 How to Use Multiple Static Public WAN IP Addresses for LAN-to-WAN Traffic 103 5.4 How to Configure DNS Inbound Load Balancing 104 5.5 How to ... 126 6.7 How to Save System Logs to a USB Storage Device 127 6.8 How to Get the ZyWALL's Diagnostic File 130 6.9 How to Capture Packets on the ZyWALL 131 6.10 How to Get the ZyWALL's Core Dump File 134 6.11 How to Use Packet Flow Explore for Troubleshooting 135 Appendix A Legal Information...137 4 ZyWALL USG100-PLUS User's Guide
User Guide
Page 5
... through IPv4 networks using different tunneling methods. You may also create IPv6 policy routes and IPv6 objects. The ZyWALL can also purchase the ZyWALL OTPv2 One-Time ZyWALL USG100-PLUS User's Guide 5 CHAPTER 1 Introduction 1.1 Overview Here are some ZyWALL application scenarios. Security Router Security features include a stateful inspection firewall, intrusion, detection & prevention, anomaly detection & prevention, content...
... through IPv4 networks using different tunneling methods. You may also create IPv6 policy routes and IPv6 objects. The ZyWALL can also purchase the ZyWALL OTPv2 One-Time ZyWALL USG100-PLUS User's Guide 5 CHAPTER 1 Introduction 1.1 Overview Here are some ZyWALL application scenarios. Security Router Security features include a stateful inspection firewall, intrusion, detection & prevention, anomaly detection & prevention, content...
User Guide
Page 6
... figure user A can access network resources in and cannot access either. 6 ZyWALL USG100-PLUS User's Guide User C is trying to the ZyWALL's network. User B has... a lower level of the internal network. Figure 4 SSL VPN With Full Tunnel Mode LAN (192.168.1.X) https:// Web Mail File Share Non-Web Web-based Application Application Server User...-based Application SSL VPN Network Access SSL VPN lets remote users use VPN solution. Chapter 1 Introduction Password System for strong...
... figure user A can access network resources in and cannot access either. 6 ZyWALL USG100-PLUS User's Guide User C is trying to the ZyWALL's network. User B has... a lower level of the internal network. Figure 4 SSL VPN With Full Tunnel Mode LAN (192.168.1.X) https:// Web Mail File Share Non-Web Web-based Application Application Server User...-based Application SSL VPN Network Access SSL VPN lets remote users use VPN solution. Chapter 1 Introduction Password System for strong...
User Guide
Page 7
In either case, you can manage the ZyWALL in your model. For example, this guide may be generic rather than "wan1" or "wan2". Figure 6 Applications: Multiple WAN Interfaces 1.2 Default Zones, Interfaces, and Ports The default configurations for ...LAN2 lan1 lan2 DMZ dmz Physical Ports P1 P2 P3 P4 P5 P6 1.3 Management Overview You can balance the traffic loads between them. ZyWALL USG100-PLUS User's Guide 7 Figure 5 Applications: User-Aware Access Control A B C Chapter 1 Introduction Load Balancing Set up multiple connections to interfaces may use "the WAN interface" rather ...
In either case, you can manage the ZyWALL in your model. For example, this guide may be generic rather than "wan1" or "wan2". Figure 6 Applications: Multiple WAN Interfaces 1.2 Default Zones, Interfaces, and Ports The default configurations for ...LAN2 lan1 lan2 DMZ dmz Physical Ports P1 P2 P3 P4 P5 P6 1.3 Management Overview You can balance the traffic loads between them. ZyWALL USG100-PLUS User's Guide 7 Figure 5 Applications: User-Aware Access Control A B C Chapter 1 Introduction Load Balancing Set up multiple connections to interfaces may use "the WAN interface" rather ...
User Guide
Page 8
..., and cookies The recommended screen resolution is 1024 x 768 pixels. 8 ZyWALL USG100-PLUS User's Guide Use the System > Vantage CNM screen to allow your ZyWALL to configure the ZyWALL. See the Vantage CNM User's Guide for CLI details. Chapter 1 Introduction Web Configurator The Web Configurator allows easy ZyWALL setup and management using remote management (for the console port...
..., and cookies The recommended screen resolution is 1024 x 768 pixels. 8 ZyWALL USG100-PLUS User's Guide Use the System > Vantage CNM screen to allow your ZyWALL to configure the ZyWALL. See the Vantage CNM User's Guide for CLI details. Chapter 1 Introduction Web Configurator The Web Configurator allows easy ZyWALL setup and management using remote management (for the console port...
User Guide
Page 9
..."1234"). The number is using the default user name and password, the Update Admin Info screen appears. You must use the token to generate a new number the next time you click Apply. See the Quick Start Guide. 2 In your ZyWALL hardware is recommended to display the screen and... click OK. 6 Follow the directions in the One-Time Password field. ZyWALL USG100-PLUS User's Guide 9 Otherwise, the dashboard appears. 5 The Network Risk Warning screen displays any unregistered or disabled security services. Chapter 1 Introduction 1.4.1 Web ...
..."1234"). The number is using the default user name and password, the Update Admin Info screen appears. You must use the token to generate a new number the next time you click Apply. See the Quick Start Guide. 2 In your ZyWALL hardware is recommended to display the screen and... click OK. 6 Follow the directions in the One-Time Password field. ZyWALL USG100-PLUS User's Guide 9 Otherwise, the dashboard appears. 5 The Network Risk Warning screen displays any unregistered or disabled security services. Chapter 1 Introduction 1.4.1 Web ...
User Guide
Page 10
Chapter 1 Introduction B C A 1.4.2 Web Configurator Introduction Video Use Adobe Reader 9 or later or a recent version of Foxit Reader to play the content and click play this video. After clicking play, you may need to confirm that you want to play again. 10 ZyWALL USG100-PLUS User's Guide
Chapter 1 Introduction B C A 1.4.2 Web Configurator Introduction Video Use Adobe Reader 9 or later or a recent version of Foxit Reader to play the content and click play this video. After clicking play, you may need to confirm that you want to play again. 10 ZyWALL USG100-PLUS User's Guide
User Guide
Page 11
... screen. Figure 10 Navigation Panel ZyWALL USG100-PLUS User's Guide 11 title bar • B - You will be prompted to log out of the Web Configurator. Table 2 Title Bar: Web Configurator Icons LABEL DESCRIPTION Logout Click this to enter your user name and password. About Click... this to display basic information about the commands. The following functions. Help Click this to open the help page for information about the ZyWALL. navigation panel • C - main window ...
... screen. Figure 10 Navigation Panel ZyWALL USG100-PLUS User's Guide 11 title bar • B - You will be prompted to log out of the Web Configurator. Table 2 Title Bar: Web Configurator Icons LABEL DESCRIPTION Logout Click this to enter your user name and password. About Click... this to display basic information about the commands. The following functions. Help Click this to open the help page for information about the ZyWALL. navigation panel • C - main window ...
User Guide
Page 12
... Monitor Displays the status of the ZyWALL's DDNS domain names. USB Storage Displays details about USB device connected to suit your needs. Log Lists log entries. 12 ZyWALL USG100-PLUS User's Guide IP/MAC Binding Lists the devices that the ZyWALL has detected. L2TP over IPSec Displays... details about the ZyWALL's 3G connection status. IDP Collect and display statistics on the dashboard....
... Monitor Displays the status of the ZyWALL's DDNS domain names. USB Storage Displays details about USB device connected to suit your needs. Log Lists log entries. 12 ZyWALL USG100-PLUS User's Guide IP/MAC Binding Lists the devices that the ZyWALL has detected. L2TP over IPSec Displays... details about the ZyWALL's 3G connection status. IDP Collect and display statistics on the dashboard....
User Guide
Page 13
...sessions. OSPF Configure device-level OSPF settings, including areas and virtual links. Policy Define rules to which the ZyWALL does not apply IP/MAC binding. Session Limit Limit the number of interfaces) for load balancing. HTTP Redirect...signatures immediately or by a schedule. PPP Create and manage PPPoE and PPTP interfaces. VPN ZyWALL USG100-PLUS User's Guide 13 DDNS Profile Define and manage the ZyWALL's DDNS domain names. Licensing Registration Registration Register the device and activate trial services. ALG ...
...sessions. OSPF Configure device-level OSPF settings, including areas and virtual links. Policy Define rules to which the ZyWALL does not apply IP/MAC binding. Session Limit Limit the number of interfaces) for load balancing. HTTP Redirect...signatures immediately or by a schedule. PPP Create and manage PPPoE and PPTP interfaces. VPN ZyWALL USG100-PLUS User's Guide 13 DDNS Profile Define and manage the ZyWALL's DDNS domain names. Licensing Registration Registration Register the device and activate trial services. ALG ...
User Guide
Page 14
... regardless of traffic. Anti-Spam General Turn anti-spam on or off and manage anti-spam policies. Object 14 ZyWALL USG100-PLUS User's Guide VPN Gateway Configure IKE tunnels. BWM BWM Enable and configure bandwidth management rules. IDP General Display and manage IDP bindings.... Filter Profile Create and manage the detailed filtering rules for users and groups. Forbidden Web Sites Create a list of web ...
... regardless of traffic. Anti-Spam General Turn anti-spam on or off and manage anti-spam policies. Object 14 ZyWALL USG100-PLUS User's Guide VPN Gateway Configure IKE tunnels. BWM BWM Enable and configure bandwidth management rules. IDP General Display and manage IDP bindings.... Filter Profile Create and manage the detailed filtering rules for users and groups. Forbidden Web Sites Create a list of web ...
User Guide
Page 15
... Configure the DNS server and address records for the ZyWALL. Login Page Configure how the login and access user screens look. Vantage CNM Configure and allow your ZyWALL to send. Log Setting Configure the system log, e-mail logs, and remote syslog servers. ZyWALL USG100-PLUS User's Guide 15 Address Address Create and manage host, range, and...
... Configure the DNS server and address records for the ZyWALL. Login Page Configure how the login and access user screens look. Vantage CNM Configure and allow your ZyWALL to send. Log Setting Configure the system log, e-mail logs, and remote syslog servers. ZyWALL USG100-PLUS User's Guide 15 Address Address Create and manage host, range, and...
User Guide
Page 16
...reboot or shut down arrow next to it here. Core Dump Connect a USB device to the ZyWALL and save the ZyWALL operating system kernel to a column heading for text 16 ZyWALL USG100-PLUS User's Guide View a clear picture on the type of what you can do: • Sort in groups... • Filter by a Column's Criteria Click the down the ZyWALL. Reboot Restart the ZyWALL. Figure 11 Sorting Table Entries by mathematical operators ...
...reboot or shut down arrow next to it here. Core Dump Connect a USB device to the ZyWALL and save the ZyWALL operating system kernel to a column heading for text 16 ZyWALL USG100-PLUS User's Guide View a clear picture on the type of what you can do: • Sort in groups... • Filter by a Column's Criteria Click the down the ZyWALL. Reboot Restart the ZyWALL. Figure 11 Sorting Table Entries by mathematical operators ...
User Guide
Page 17
ZyWALL USG100-PLUS User's Guide 17 Figure 15 Navigating Pages of the table to navigate to change the column order. Figure 14 Moving Columns Use the icons and fields at a ...
ZyWALL USG100-PLUS User's Guide 17 Figure 15 Navigating Pages of the table to navigate to change the column order. Figure 14 Moving Columns Use the icons and fields at a ...
User Guide
Page 18
... the entry's settings. In some lists you can select an entry and click Add to the other . Working with Lists 18 ZyWALL USG100-PLUS User's Guide Edit Double-click an entry or select it and click Connect. Connect To connect an entry, select it and click Edit to... 1 Introduction Figure 16 Common Table Icons Here are moving becomes number 6 and the previous entry 6 (if there is important (features where the ZyWALL applies the table's entries in a numbered list, select it from one . Table 6 Common Table Icons LABEL DESCRIPTION Add Click this to check which...
... the entry's settings. In some lists you can select an entry and click Add to the other . Working with Lists 18 ZyWALL USG100-PLUS User's Guide Edit Double-click an entry or select it and click Connect. Connect To connect an entry, select it and click Edit to... 1 Introduction Figure 16 Common Table Icons Here are moving becomes number 6 and the previous entry 6 (if there is important (features where the ZyWALL applies the table's entries in a numbered list, select it from one . Table 6 Common Table Icons LABEL DESCRIPTION Add Click this to check which...
User Guide
Page 19
...a rack-mounting kit. Note: Failure to the rack with other bracket in a similar fashion. 3 After attaching both mounting brackets, position the ZyWALL in a wiring closet with the rack-mounting screws. Note: Leave 10 cm of clearance at the sides and 20 cm in the rear. ... install the screws. Use a #2 Phillips screwdriver to anchor the rack securely before you turn off the ZyWALL or remove the power. ZyWALL USG100-PLUS User's Guide 19 Chapter 1 Introduction 1.5 Stopping the ZyWALL Always use the proper screws may damage the unit. 1 Align one bracket with the holes on an ...
...a rack-mounting kit. Note: Failure to the rack with other bracket in a similar fashion. 3 After attaching both mounting brackets, position the ZyWALL in a wiring closet with the rack-mounting screws. Note: Leave 10 cm of clearance at the sides and 20 cm in the rear. ... install the screws. Use a #2 Phillips screwdriver to anchor the rack securely before you turn off the ZyWALL or remove the power. ZyWALL USG100-PLUS User's Guide 19 Chapter 1 Introduction 1.5 Stopping the ZyWALL Always use the proper screws may damage the unit. 1 Align one bracket with the holes on an ...
User Guide
Page 20
...successful link. 20 ZyWALL USG100-PLUS User's Guide Chapter 1 Introduction 1.7 Front Panel This section introduces the ZyWALL's front panel. If the LED turns red again, then please contact your vendor. This port has a successful link. Connected to the USB port. The ZyWALL is not supported by the ZyWALL. Shut down the... LEDs LED COLOR STATUS PWR Off Green On Red On SYS 1, 2 ... There is sending or receiving packets on this port. The ZyWALL is no connection on this port. There is not ready or has failed. There is connected to a 3G network through the connected 3G...
...successful link. 20 ZyWALL USG100-PLUS User's Guide Chapter 1 Introduction 1.7 Front Panel This section introduces the ZyWALL's front panel. If the LED turns red again, then please contact your vendor. This port has a successful link. Connected to the USB port. The ZyWALL is not supported by the ZyWALL. Shut down the... LEDs LED COLOR STATUS PWR Off Green On Red On SYS 1, 2 ... There is sending or receiving packets on this port. The ZyWALL is no connection on this port. There is not ready or has failed. There is connected to a 3G network through the connected 3G...
User Guide
Page 21
... 38 2.1 Wizard Overview Use the wizards to quickly configure Internet connection and VPN settings as well as activate subscription services. ZyWALL USG100-PLUS User's Guide 21 You can go to the CONFIGURATION screens to configure advanced settings. 2.2 How to Configure Interfaces, Port Roles, and ... to configure WAN connections and register your network in the CONFIGURATION navigation panel. Use these wizard screens to set up your ZyWALL. Note: The tutorials featured here require a basic understanding of connecting to and using the Web Configurator to quickly configure a...
... 38 2.1 Wizard Overview Use the wizards to quickly configure Internet connection and VPN settings as well as activate subscription services. ZyWALL USG100-PLUS User's Guide 21 You can go to the CONFIGURATION screens to configure advanced settings. 2.2 How to Configure Interfaces, Port Roles, and ... to configure WAN connections and register your network in the CONFIGURATION navigation panel. Use these wizard screens to set up your ZyWALL. Note: The tutorials featured here require a basic understanding of connecting to and using the Web Configurator to quickly configure a...