User Guide
Page 48
... Login Screen 3 Type the user name (default: "admin") and password (default: "1234"). Otherwise, the dashboard (Figure 13 on page 48) appears. The Login screen appears. The number is only good for one login. Figure 12 Update Admin Info Screen 48 ZyWALL USG 100/200 Series User's Guide If your web browser,... the token to generate a new number the next time you logged in using the default user name and password, the Update Admin Info screen (Figure 12 on page 49) appears. By default, the ZyWALL automatically routes this request to generate a number. You must use the OTP (One-Time...
... Login Screen 3 Type the user name (default: "admin") and password (default: "1234"). Otherwise, the dashboard (Figure 13 on page 48) appears. The Login screen appears. The number is only good for one login. Figure 12 Update Admin Info Screen 48 ZyWALL USG 100/200 Series User's Guide If your web browser,... the token to generate a new number the next time you logged in using the default user name and password, the Update Admin Info screen (Figure 12 on page 49) appears. By default, the ZyWALL automatically routes this request to generate a number. You must use the OTP (One-Time...
User Guide
Page 49
If you click Apply. If you change the default password, the Login screen (Figure 11 on page 48) appears after you change the password for the default user account, this screen. If you log in using its default configuration (see Chapter 4 on page 49): • A -.... Figure 13 Dashboard A B C 3.3 Web Configurator Screens Overview The Web Configurator screen is using the default user name and default password. title bar • B - navigation panel ZyWALL USG 100/200 Series User's Guide 49 Chapter 3 Web Configurator 5 The screen above appears every time you click Ignore,...
If you click Apply. If you change the default password, the Login screen (Figure 11 on page 48) appears after you change the password for the default user account, this screen. If you log in using its default configuration (see Chapter 4 on page 49): • A -.... Figure 13 Dashboard A B C 3.3 Web Configurator Screens Overview The Web Configurator screen is using the default user name and default password. title bar • B - navigation panel ZyWALL USG 100/200 Series User's Guide 49 Chapter 3 Web Configurator 5 The screen above appears every time you click Ignore,...
User Guide
Page 87
...before transmitting data through NAT (there is a NAT router between the IPSec devices). DH1 (default) refers to Diffie-Hellman Group 5 a 1536 bit random number. • SA Life Time: Set how often the ZyWALL renegotiates the IKE SA. DH5 refers to Diffie-Hellman Group 1 a 768 bit random number... Key to use a password or Certificate to authenticate packet data. SHA-1 gives higher security. See VPN, NAT, and NAT Traversal on page 504 for at least 15 seconds, the ZyWALL sends a message to Diffie-Hellman Group 2 a 1024 bit (1Kb) random number. ZyWALL USG 100/200 Series User's Guide 87...
...before transmitting data through NAT (there is a NAT router between the IPSec devices). DH1 (default) refers to Diffie-Hellman Group 5 a 1536 bit random number. • SA Life Time: Set how often the ZyWALL renegotiates the IKE SA. DH5 refers to Diffie-Hellman Group 1 a 768 bit random number... Key to use a password or Certificate to authenticate packet data. SHA-1 gives higher security. See VPN, NAT, and NAT Traversal on page 504 for at least 15 seconds, the ZyWALL sends a message to Diffie-Hellman Group 2 a 1024 bit (1Kb) random number. ZyWALL USG 100/200 Series User's Guide 87...
User Guide
Page 125
... LAN You can use on page 923 for authentication. 7.4.1 Set Up User Accounts The ZyWALL supports TTLS using PAP so you have different wireless LAN networks using different SSIDs. 3 Select the trunk as the default trunk and click Apply. This lets you can install a wireless LAN card (IEEE 802...user, set up a user account containing the user name and password the WLAN user needs to enter to connect to use the ZyWALL's local user database with WPA or WPA2 instead of needing an external RADIUS server. ZyWALL USG 100/200 Series User's Guide 125 You can configure the WLAN interfaces ...
... LAN You can use on page 923 for authentication. 7.4.1 Set Up User Accounts The ZyWALL supports TTLS using PAP so you have different wireless LAN networks using different SSIDs. 3 Select the trunk as the default trunk and click Apply. This lets you can install a wireless LAN card (IEEE 802...user, set up a user account containing the user name and password the WLAN user needs to enter to connect to use the ZyWALL's local user database with WPA or WPA2 instead of needing an external RADIUS server. ZyWALL USG 100/200 Series User's Guide 125 You can configure the WLAN interfaces ...
User Guide
Page 305
... information. authenticate OSPF routing information using subnet broadcasting; Direction This field is effective when RIP is enabled. use the default authentication method in this to enable RIP in the area None - Chapter 13 Interfaces Table 61 Configuration > Network >...a plain-text password MD5 - This interface receives routing information. V2-Broadcast This field is effective when RIP is enabled. otherwise, the ZyWALL uses multicasting. disable authentication Text - authenticate OSPF routing information using MD5 encryption ZyWALL USG 100/200 Series User's ...
... information. authenticate OSPF routing information using subnet broadcasting; Direction This field is effective when RIP is enabled. use the default authentication method in this to enable RIP in the area None - Chapter 13 Interfaces Table 61 Configuration > Network >...a plain-text password MD5 - This interface receives routing information. V2-Broadcast This field is effective when RIP is enabled. otherwise, the ZyWALL uses multicasting. disable authentication Text - authenticate OSPF routing information using MD5 encryption ZyWALL USG 100/200 Series User's ...
User Guide
Page 306
... is MD5. Have the interface use either the factory assigned default MAC address, a manually specified MAC address, or clone the MAC address of object. 306 ZyWALL USG 100/200 Series User's Guide By default, the ZyWALL uses the factory assigned MAC address to have the interface use... copied to eight characters long. MD5 This field is available if the Authentication is MD5. Type the password for Authentication MD5 authentication. Overwrite Default MAC Address Select this option to identify itself. Once it is External or General. Configure WAN TRUNK Click...
... is MD5. Have the interface use either the factory assigned default MAC address, a manually specified MAC address, or clone the MAC address of object. 306 ZyWALL USG 100/200 Series User's Guide By default, the ZyWALL uses the factory assigned MAC address to have the interface use... copied to eight characters long. MD5 This field is available if the Authentication is MD5. Type the password for Authentication MD5 authentication. Overwrite Default MAC Address Select this option to identify itself. Once it is External or General. Configure WAN TRUNK Click...
User Guide
Page 328
...interface. Wireless stations associating to the access point (AP) must be the same on the external authentication server and ZyWALL. 328 ZyWALL USG 100/200 Series User's Guide Enter a password (up to 31 alphanumeric characters) as the key to be up to 32 printable 7-bit ASCII characters) for ...security and click Advanced. Select none to the wireless interface at the same time. Enter the RADIUS server's listening port number (the default is not used elsewhere. Description Enter a description of wireless clients that is not sent over the network. Zone Select the zone to...
...interface. Wireless stations associating to the access point (AP) must be the same on the external authentication server and ZyWALL. 328 ZyWALL USG 100/200 Series User's Guide Enter a password (up to 31 alphanumeric characters) as the key to be up to 32 printable 7-bit ASCII characters) for ...security and click Advanced. Select none to the wireless interface at the same time. Enter the RADIUS server's listening port number (the default is not used elsewhere. Description Enter a description of wireless clients that is not sent over the network. Zone Select the zone to...
User Guide
Page 331
...you must use the same authentication method that they use the default authentication method in this interface when the area is Text. Type the password for more information about OSPF. Out-Only - Choices are...ZyWALL USG 100/200 Series User's Guide 331 BiDir - This interface sends and receives routing information. Choices are 1, 2, and 1 and 2. otherwise, the ZyWALL uses multicasting. Select None to send RIP-2 packets using subnet broadcasting; disable authentication Text - ID MD5 Authentication Key This field is available if the Authentication is enabled. Type the password...
...you must use the same authentication method that they use the default authentication method in this interface when the area is Text. Type the password for more information about OSPF. Out-Only - Choices are...ZyWALL USG 100/200 Series User's Guide 331 BiDir - This interface sends and receives routing information. Choices are 1, 2, and 1 and 2. otherwise, the ZyWALL uses multicasting. Select None to send RIP-2 packets using subnet broadcasting; disable authentication Text - ID MD5 Authentication Key This field is available if the Authentication is enabled. Type the password...
User Guide
Page 335
... authentication method can configure the "default" authentication method object, but it's default configuration uses the ZyWALL's local database for authentication. TTLS Certificate Select an authentication method object that you have the ZyWALL check a user's user name and password against the ZyWALL's local database, a remote LDAP...the TTLS secure tunnel. You can have already configured. Radius Server IP Address The wireless clients must use . ZyWALL USG 100/200 Series User's Guide 335 The RADIUS fields display if you set the Authentication Type field to Auth Method. ...
... authentication method can configure the "default" authentication method object, but it's default configuration uses the ZyWALL's local database for authentication. TTLS Certificate Select an authentication method object that you have the ZyWALL check a user's user name and password against the ZyWALL's local database, a remote LDAP...the TTLS secure tunnel. You can have already configured. Radius Server IP Address The wireless clients must use . ZyWALL USG 100/200 Series User's Guide 335 The RADIUS fields display if you set the Authentication Type field to Auth Method. ...
User Guide
Page 336
... Interface > WLAN > Add (WPA/WPA2 Security) LABEL DESCRIPTION Radius Server Port Enter the RADIUS server's listening port number (the default is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority. This key must be shared between the ...clients. The key is allowed. To display your ZyWALL's MAC filter settings, click Configuration > Network > Interface > WLAN > MAC Filter. Radius Server Secret Enter a password (up to 31 alphanumeric characters) as shown. 336 ZyWALL USG 100/200 Series User's Guide Setting of the devices to stay...
... Interface > WLAN > Add (WPA/WPA2 Security) LABEL DESCRIPTION Radius Server Port Enter the RADIUS server's listening port number (the default is done using a RADIUS server, the reauthentication timer on the RADIUS server has priority. This key must be shared between the ...clients. The key is allowed. To display your ZyWALL's MAC filter settings, click Configuration > Network > Interface > WLAN > MAC Filter. Radius Server Secret Enter a password (up to 31 alphanumeric characters) as shown. 336 ZyWALL USG 100/200 Series User's Guide Setting of the devices to stay...
User Guide
Page 347
...characters and the underscore, and it can consist of this VLAN. ZyWALL USG 100/200 Series User's Guide 347 Authentication Select an authentication method, or disable authentication. The key can be up to 16 characters long. The password can be up to eight characters long. Configure Policy Route Click .... Select None to disable OSPF in which this to a screen where you must use the same authentication method that they use the default authentication method in the area None - To exchange OSPF routing information with this interface when the area is Text. Type the ID ...
...characters and the underscore, and it can consist of this VLAN. ZyWALL USG 100/200 Series User's Guide 347 Authentication Select an authentication method, or disable authentication. The key can be up to 16 characters long. The password can be up to eight characters long. Configure Policy Route Click .... Select None to disable OSPF in which this to a screen where you must use the same authentication method that they use the default authentication method in the area None - To exchange OSPF routing information with this interface when the area is Text. Type the ID ...
User Guide
Page 402
...area. Text uses a plain text password that are outside the OSPF AS. Authentication NSSA - Select the default authentication method used in IP address format. None uses no authentication. MD5 uses an MD5 password and authentication ID (most secure). 402 ZyWALL USG 100/200 Series User's Guide It does not...OSPF > Add The following table describes the labels in this screen, go to the OSPF summary screen (see Section 16.3 on a default route to send information outside the OSPF AS. This authentication protects the integrity, but not about networks outside the OSPF AS and are...
...area. Text uses a plain text password that are outside the OSPF AS. Authentication NSSA - Select the default authentication method used in IP address format. None uses no authentication. MD5 uses an MD5 password and authentication ID (most secure). 402 ZyWALL USG 100/200 Series User's Guide It does not...OSPF > Add The following table describes the labels in this screen, go to the OSPF summary screen (see Section 16.3 on a default route to send information outside the OSPF AS. This authentication protects the integrity, but not about networks outside the OSPF AS and are...
User Guide
Page 403
Type the default ID for text authentication. The password can consist of alphanumeric characters ...to the backbone) to create a new virtual link or edit an existing one. Type the password for MD5 authentication in IP address format) of routing updates. The ID can be between 1 ...default password for MD5 authentication in the virtual link. Remove To remove an entry, select it can be up the virtual link on the ABR that is not associated with a specific area. This authentication protects the integrity, but not the confidentiality, of the other area and on page ZyWALL USG 100/200...
Type the default ID for text authentication. The password can consist of alphanumeric characters ...to the backbone) to create a new virtual link or edit an existing one. Type the password for MD5 authentication in IP address format) of routing updates. The ID can be between 1 ...default password for MD5 authentication in the virtual link. Remove To remove an entry, select it can be up the virtual link on the ABR that is not associated with a specific area. This authentication protects the integrity, but not the confidentiality, of the other area and on page ZyWALL USG 100/200...
User Guide
Page 404
...Network > Routing > OSPF > Add > Add The following . This field is available if the Authentication is MD5. Type the default ID for text authentication. This field is available if the Authentication is Text. Click OK to save your changes back to Normal, ...Authentication Select the authentication method the virtual link uses. Text uses a plain text password that is more detailed information about RIP and OSPF. 404 ZyWALL USG 100/200 Series User's Guide Type the password for MD5 authentication in this screen without saving. 16.4 Routing Protocol Technical Reference Here...
...Network > Routing > OSPF > Add > Add The following . This field is available if the Authentication is MD5. Type the default ID for text authentication. This field is available if the Authentication is Text. Click OK to save your changes back to Normal, ...Authentication Select the authentication method the virtual link uses. Text uses a plain text password that is more detailed information about RIP and OSPF. 404 ZyWALL USG 100/200 Series User's Guide Type the password for MD5 authentication in this screen without saving. 16.4 Routing Protocol Technical Reference Here...
User Guide
Page 405
... to guarantee the integrity, but not the confidentiality, of routing updates. For OSPF, the ZyWALL supports a default authentication type by area. Alternatively, you only have the same key. ZyWALL USG 100/200 Series User's Guide 405 The receiving router uses its key to Same as the one authentication...same as the authentication ID of the interface that it matches the smaller message sent with the original message. authentication using an MD5 password and authentication ID. As a result, you can be set the associated Authentication Type field to encrypt the original message into a...
... to guarantee the integrity, but not the confidentiality, of routing updates. For OSPF, the ZyWALL supports a default authentication type by area. Alternatively, you only have the same key. ZyWALL USG 100/200 Series User's Guide 405 The receiving router uses its key to Same as the one authentication...same as the authentication ID of the interface that it matches the smaller message sent with the original message. authentication using an MD5 password and authentication ID. As a result, you can be set the associated Authentication Type field to encrypt the original message into a...
User Guide
Page 705
...must use a different cluster ID for a backup ZyWALL. If you have multiple ZyWALL virtual routers on page 707 for authentication. this virtual router uses an encrypted MD5 password for more information about authentication methods. ZyWALL USG 100/200 Series User's Guide 705 Device Role Select the... eight characters long. The backup ZyWALL with the highest value takes over the role of configuration fields. Text - Type the password in the same virtual router (same cluster ID). This ZyWALL is master, the ZyWALL preempts by default.) Cluster Settings Cluster ID Type the...
...must use a different cluster ID for a backup ZyWALL. If you have multiple ZyWALL virtual routers on page 707 for authentication. this virtual router uses an encrypted MD5 password for more information about authentication methods. ZyWALL USG 100/200 Series User's Guide 705 Device Role Select the... eight characters long. The backup ZyWALL with the highest value takes over the role of configuration fields. Text - Type the password in the same virtual router (same cluster ID). This ZyWALL is master, the ZyWALL preempts by default.) Cluster Settings Cluster ID Type the...
User Guide
Page 726
... user has access to renew the current session before the lease time expires. 726 ZyWALL USG 100/200 Series User's Guide Description Enter the description of minutes this type. See Ext-Group-User Accounts on page 724. Default descriptions are : Password • admin - Table 194 Configuration > User/Group > User > Add LABEL DESCRIPTION User Name Type...
... user has access to renew the current session before the lease time expires. 726 ZyWALL USG 100/200 Series User's Guide Description Enter the description of minutes this type. See Ext-Group-User Accounts on page 724. Default descriptions are : Password • admin - Table 194 Configuration > User/Group > User > Add LABEL DESCRIPTION User Name Type...
User Guide
Page 732
...if logon retry limit is enabled and the maximum retry count is reached. These default authentication timeout settings also control the settings for any user account's authentication timeout settings. 732 ZyWALL USG 100/200 Series User's Guide You can still manually configure any existing user accounts that are... account Select this check box to set a limit on the number of times each user can login unsuccessfully (for example, wrong password) before the IP address is locked out for the specified lockout period. Maximum number per This field is effective when Limit ... ...
...if logon retry limit is enabled and the maximum retry count is reached. These default authentication timeout settings also control the settings for any user account's authentication timeout settings. 732 ZyWALL USG 100/200 Series User's Guide You can still manually configure any existing user accounts that are... account Select this check box to set a limit on the number of times each user can login unsuccessfully (for example, wrong password) before the IP address is locked out for the specified lockout period. Maximum number per This field is effective when Limit ... ...
User Guide
Page 903
...), then release it. It returns the ZyWALL to the factory defaults (password is installed and functioning properly. see your local vendor. Make sure that its features and checks, see Chapter 10 on page 276). Make sure your computer or switch. • Ping the ZyWALL from a LAN computer. ZyWALL USG 100/200 Series User's Guide 903 None of...
...), then release it. It returns the ZyWALL to the factory defaults (password is installed and functioning properly. see your local vendor. Make sure that its features and checks, see Chapter 10 on page 276). Make sure your computer or switch. • Ping the ZyWALL from a LAN computer. ZyWALL USG 100/200 Series User's Guide 903 None of...
User Guide
Page 923
...bits) (P4) Default Password 1234 This table provides hardware specifications. See Chapter 2 on page 39 for a wireless LAN or cellular (3G) card. Table 265 Hardware Specifications FEATURE SPECIFICATION Ethernet Interfaces Number of key features. Compatible PCMCIA Cards ZyXEL's G-170S IEEE 802...interface AUX port USB Slots Compatible USB Cards (3G) Extension Card Slot All Ethernet interfaces are subject to 95% (non-condensing) ZyWALL USG 100/200 Series User's Guide 923 Power Requirements Operating Environment Sierra Wireless AC850, AC860, AC880 or AC881 3G card 12V DC Temperature: 0...
...bits) (P4) Default Password 1234 This table provides hardware specifications. See Chapter 2 on page 39 for a wireless LAN or cellular (3G) card. Table 265 Hardware Specifications FEATURE SPECIFICATION Ethernet Interfaces Number of key features. Compatible PCMCIA Cards ZyXEL's G-170S IEEE 802...interface AUX port USB Slots Compatible USB Cards (3G) Extension Card Slot All Ethernet interfaces are subject to 95% (non-condensing) ZyWALL USG 100/200 Series User's Guide 923 Power Requirements Operating Environment Sierra Wireless AC850, AC860, AC880 or AC881 3G card 12V DC Temperature: 0...