User Guide
Page 5
Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons. ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device.
Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons. ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device.
User Guide
Page 9
... I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem ...ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4 HOME Screen: Bridge Mode 55 2.4.5 Navigation Panel ...58 ZyWALL 2 Plus...
... I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem ...ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4 HOME Screen: Bridge Mode 55 2.4.5 Navigation Panel ...58 ZyWALL 2 Plus...
User Guide
Page 12
... To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary Screen 202 11.5.1 The Firewall Edit Rule Screen 204 12 ZyWALL 2 Plus User's Guide
... To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary Screen 202 11.5.1 The Firewall Edit Rule Screen 204 12 ZyWALL 2 Plus User's Guide
User Guide
Page 17
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457 ZyWALL 2 Plus User's Guide 17
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457 ZyWALL 2 Plus User's Guide 17
User Guide
Page 22
....2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII: Appendices and Index 619 Appendix A Setting up Your Computer's IP Address 621 22 ZyWALL 2 Plus...
....2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII: Appendices and Index 619 Appendix A Setting up Your Computer's IP Address 621 22 ZyWALL 2 Plus...
User Guide
Page 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
User Guide
Page 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
User Guide
Page 28
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
User Guide
Page 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
User Guide
Page 32
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
User Guide
Page 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
User Guide
Page 38
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
User Guide
Page 40
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40 ZyWALL 2 Plus User's Guide
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40 ZyWALL 2 Plus User's Guide
User Guide
Page 51
.... If the PWR LED begins to restart the router. The PWR LED will lose all configurations that the defaults have been restored and the ZyWALL restarts. This indicates that you had previously and ... finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it in a folder. 2 Turn off . 3 While pressing the...or use the RESET button on (not blinking) before activating Xmodem upload on the ZyWALL again. ZyWALL 2 Plus User's Guide 51 The password will be reset to the default of the console ...
.... If the PWR LED begins to restart the router. The PWR LED will lose all configurations that the defaults have been restored and the ZyWALL restarts. This indicates that you had previously and ... finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it in a folder. 2 Turn off . 3 While pressing the...or use the RESET button on (not blinking) before activating Xmodem upload on the ZyWALL again. ZyWALL 2 Plus User's Guide 51 The password will be reset to the default of the console ...
User Guide
Page 53
... following table describes the labels in , the HOME screen is set to not update the screen statistics. ZyWALL 2 Plus User's Guide 53 Click the field label to go to router mode. Firmware Version This is ZyXEL's proprietary Network Operating System design. Click the field label to go to the device mode you can upload...
... following table describes the labels in , the HOME screen is set to not update the screen statistics. ZyWALL 2 Plus User's Guide 53 Click the field label to go to router mode. Firmware Version This is ZyXEL's proprietary Network Operating System design. Click the field label to go to the device mode you can upload...
User Guide
Page 54
... IP address and subnet mask. 54 ZyWALL 2 Plus User's Guide Click the field label to go to the screen where you set the ZyWALL to trigger a call) or Drop (dropping a call) if you should turn the firewall on the time zone. It is functioning as a router or a bridge. Device Mode This ... PPPoE encapsulation. The bar displays what percent of sessions that are currently open at one direction at the ZyWALL or Initiated from green to red when the maximum is currently used by ZyNOS (ZyXEL Network Operating System) and is using . Click "+" to expand or "-" to collapse the IP alias...
... IP address and subnet mask. 54 ZyWALL 2 Plus User's Guide Click the field label to go to the screen where you set the ZyWALL to trigger a call) or Drop (dropping a call) if you should turn the firewall on the time zone. It is functioning as a router or a bridge. Device Mode This ... PPPoE encapsulation. The bar displays what percent of sessions that are currently open at one direction at the ZyWALL or Initiated from green to red when the maximum is currently used by ZyNOS (ZyXEL Network Operating System) and is using . Click "+" to expand or "-" to collapse the IP alias...
User Guide
Page 55
...ZyWALL for management. ZyWALL 2 Plus User's Guide 55 DHCP relay displays when the ZyWALL is set to dial up . Date/Time This is using a manually entered static (fixed) IP address. In bridge mode, the ZyWALL cannot get the IP address afresh. You can see router performance statistics such as the ZyWALL... VPN connections. Chapter 2 Introducing the Web Configurator Table 3 Web Configurator HOME Screen in Router Mode (continued) LABEL DESCRIPTION IP Assignment For the WAN, if the ZyWALL gets its IP address automatically from an ISP, this displays DHCP client when you're ...
...ZyWALL for management. ZyWALL 2 Plus User's Guide 55 DHCP relay displays when the ZyWALL is set to dial up . Date/Time This is using a manually entered static (fixed) IP address. In bridge mode, the ZyWALL cannot get the IP address afresh. You can see router performance statistics such as the ZyWALL... VPN connections. Chapter 2 Introducing the Web Configurator Table 3 Web Configurator HOME Screen in Router Mode (continued) LABEL DESCRIPTION IP Assignment For the WAN, if the ZyWALL gets its IP address automatically from an ISP, this displays DHCP client when you're ...
User Guide
Page 57
... to use . ZyWALL 2 Plus User's Guide 57 Device Mode This displays whether the ZyWALL is active or not. This includes all sessions that are : WAN, LAN, DMZ and WLAN. CPU This field displays what percentage of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System)... as a router or a bridge. When this percentage is close to the screen where you can turn off . Gateway IP Address This is the forward delay interval. Bridge Hello Time This is the bridge priority of BPDUs (Bridge Protocol Data Units) from the ZyWALL The second number...
... to use . ZyWALL 2 Plus User's Guide 57 Device Mode This displays whether the ZyWALL is active or not. This includes all sessions that are : WAN, LAN, DMZ and WLAN. CPU This field displays what percentage of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System)... as a router or a bridge. When this percentage is close to the screen where you can turn off . Gateway IP Address This is the forward delay interval. Bridge Hello Time This is the bridge priority of BPDUs (Bridge Protocol Data Units) from the ZyWALL The second number...
User Guide
Page 58
... sub-menus on the corresponding port. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide Click the field label to go to configure ZyWALL features. You can update your service subscription. RSTP Status...
... sub-menus on the corresponding port. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide Click the field label to go to configure ZyWALL features. You can update your service subscription. RSTP Status...
User Guide
Page 59
... feature. NETWORK LAN LAN Use this screen to register your LAN interface into subnets. ZyWALL 2 Plus User's Guide 59 BRIDGE Bridge Use this screen to change the bridge settings on the ZyWALL. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN Y Certificates Y Authentication...
... feature. NETWORK LAN LAN Use this screen to register your LAN interface into subnets. ZyWALL 2 Plus User's Guide 59 BRIDGE Bridge Use this screen to change the bridge settings on the ZyWALL. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN Y Certificates Y Authentication...