User Guide
Page 8
... Filter Configuration ...541 SNMP Configuration ...557 System Information & Diagnosis 559 Firmware and Configuration File Maintenance 571 System Maintenance Menus 8 to 10 587 Remote Management ...595 Call Scheduling ...599 Troubleshooting and Specifications 603 Troubleshooting ...605 Product Specifications ...613 Appendices and Index ...619 8 ZyWALL 2 Plus User's Guide Contents Overview SMT ...465 Introducing the SMT ...467...
... Filter Configuration ...541 SNMP Configuration ...557 System Information & Diagnosis 559 Firmware and Configuration File Maintenance 571 System Maintenance Menus 8 to 10 587 Remote Management ...595 Call Scheduling ...599 Troubleshooting and Specifications 603 Troubleshooting ...605 Product Specifications ...613 Appendices and Index ...619 8 ZyWALL 2 Plus User's Guide Contents Overview SMT ...465 Introducing the SMT ...467...
User Guide
Page 21
... 40.4.2 Syslog Logging ...563 40.4.3 Call-Triggering Packet 566 40.5 Diagnostic ...567 40.5.1 WAN DHCP ...568 Chapter 41 Firmware and Configuration File Maintenance 571 41.1 Introduction ...571 41.2 Filename Conventions ...571 41.3 Backup Configuration ...572 41.3.1 Backup ...Firmware File Upload 582 41.5.5 TFTP File Upload 582 41.5.6 TFTP Upload Command Example 583 41.5.7 Uploading Via Console Port 583 41.5.8 Uploading Firmware File Via Console Port 583 41.5.9 Example Xmodem Firmware Upload Using HyperTerminal 583 41.5.10 Uploading Configuration File Via Console Port 584 ZyWALL 2 Plus...
... 40.4.2 Syslog Logging ...563 40.4.3 Call-Triggering Packet 566 40.5 Diagnostic ...567 40.5.1 WAN DHCP ...568 Chapter 41 Firmware and Configuration File Maintenance 571 41.1 Introduction ...571 41.2 Filename Conventions ...571 41.3 Backup Configuration ...572 41.3.1 Backup ...Firmware File Upload 582 41.5.5 TFTP File Upload 582 41.5.6 TFTP Upload Command Example 583 41.5.7 Uploading Via Console Port 583 41.5.8 Uploading Firmware File Via Console Port 583 41.5.9 Example Xmodem Firmware Upload Using HyperTerminal 583 41.5.10 Uploading Configuration File Via Console Port 584 ZyWALL 2 Plus...
User Guide
Page 30
... Certificate 382 Figure 247 Common ZyWALL Certificate 382 Figure 248 SSH Example 1: Store Host Key 383 Figure 249 SSH Example 2: Test ...383 Figure 250 SSH Example 2: Log in ...384 Figure 251 Secure FTP: Firmware Upload Example 384 Figure 252 HTTPS Implementation ...385 Figure 253 ADVANCED > REMOTE MGMT > WWW 386 30 ZyWALL 2 Plus User's Guide
... Certificate 382 Figure 247 Common ZyWALL Certificate 382 Figure 248 SSH Example 1: Store Host Key 383 Figure 249 SSH Example 2: Test ...383 Figure 250 SSH Example 2: Log in ...384 Figure 251 Secure FTP: Firmware Upload Example 384 Figure 252 HTTPS Implementation ...385 Figure 253 ADVANCED > REMOTE MGMT > WWW 386 30 ZyWALL 2 Plus User's Guide
User Guide
Page 31
... Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288 Network Temporarily Disconnected 458 Figure 289 Firmware Upload Error ...458 Figure 290 MAINTENANCE > Backup and ...Restore 459 Figure 291 Configuration Upload Successful 460 Figure 292 Network Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus...
... Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288 Network Temporarily Disconnected 458 Figure 289 Firmware Upload Error ...458 Figure 290 MAINTENANCE > Backup and ...Restore 459 Figure 291 Configuration Upload Successful 460 Figure 292 Network Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus...
User Guide
Page 34
...to a Remote Node (PPTP 602 Figure 424 Console/Dial Backup Cable DB-9 End Pin Layout 616 Figure 425 Wall-mounting Example ...618 34 ZyWALL 2 Plus User's Guide List of Figures Figure 383 Menu 24.1: System Maintenance: Status 560 Figure 384 Menu 24.2: System Information and Console Port Speed ...Figure 404 Successful Restoration Confirmation Screen 579 Figure 405 Telnet Into Menu 24.7.1: Upload System Firmware 580 Figure 406 Telnet Into Menu 24.7.2: System Maintenance 581 Figure 407 FTP Session Example of Firmware File Upload 582 Figure 408 Menu 24.7.1 As Seen Using the Console Port 583 ...
...to a Remote Node (PPTP 602 Figure 424 Console/Dial Backup Cable DB-9 End Pin Layout 616 Figure 425 Wall-mounting Example ...618 34 ZyWALL 2 Plus User's Guide List of Figures Figure 383 Menu 24.1: System Maintenance: Status 560 Figure 384 Menu 24.2: System Information and Console Port Speed ...Figure 404 Successful Restoration Confirmation Screen 579 Figure 405 Telnet Into Menu 24.7.1: Upload System Firmware 580 Figure 406 Telnet Into Menu 24.7.2: System Maintenance 581 Figure 407 FTP Session Example of Firmware File Upload 582 Figure 408 Menu 24.7.1 As Seen Using the Console Port 583 ...
User Guide
Page 40
... MAINTENANCE > Firmware Upload 457 Table 161 Restore Configuration ...459 Table 162 MAINTENANCE > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40 ZyWALL 2 Plus User's Guide
... MAINTENANCE > Firmware Upload 457 Table 161 Restore Configuration ...459 Table 162 MAINTENANCE > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40 ZyWALL 2 Plus User's Guide
User Guide
Page 42
Remote Management Control 596 Table 214 Schedule Set Setup ...600 Table 215 Hardware Specifications ...613 Table 216 Firmware Specifications ...613 Table 217 Feature and Performance Specifications 615 Table 218 Console Cable Pin Assignments 616 Table 219 Dial Backup Cable Pin Assignments 616 ... Table 230 24-bit Network Number Subnet Planning 651 Table 231 16-bit Network Number Subnet Planning 651 Table 232 Commonly Used Services 654 42 ZyWALL 2 Plus User's Guide List of Tables Table 211 Call History ...591 Table 212 Menu 24.10 System Maintenance: Time and Date Setting 592 Table 213 ...
Remote Management Control 596 Table 214 Schedule Set Setup ...600 Table 215 Hardware Specifications ...613 Table 216 Firmware Specifications ...613 Table 217 Feature and Performance Specifications 615 Table 218 Console Cable Pin Assignments 616 Table 219 Dial Backup Cable Pin Assignments 616 ... Table 230 24-bit Network Number Subnet Planning 651 Table 231 16-bit Network Number Subnet Planning 651 Table 232 Commonly Used Services 654 42 ZyWALL 2 Plus User's Guide List of Tables Table 211 Call History ...591 Table 212 Menu 24.10 System Maintenance: Time and Date Setting 592 Table 213 ...
User Guide
Page 46
... the following methods to connect branch offices, business partners and telecommuters over the Internet without the need (and expense) for firmware upgrades and configuration backup/restore (Chapter 41 on page 571) • SNMP. Figure 2 VPN Application 1.3 Ways to Manage the ZyWALL Use any of the ZyWALL using a Vantage CNM server. 46 ZyWALL 2 Plus User's Guide
... the following methods to connect branch offices, business partners and telecommuters over the Internet without the need (and expense) for firmware upgrades and configuration backup/restore (Chapter 41 on page 571) • SNMP. Figure 2 VPN Application 1.3 Ways to Manage the ZyWALL Use any of the ZyWALL using a Vantage CNM server. 46 ZyWALL 2 Plus User's Guide
User Guide
Page 51
...console port will be reset to the default of the ZyWALL. Then click Send. 6 After successful firmware upload, enter "atgo" to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . This..., and then release it in a folder. 2 Turn off . 3 While pressing the RESET button, turn on the ZyWALL again. Choose the Xmodem protocol. This indicates that you will lose all configurations that the defaults have been restored and the ZyWALL restarts. ZyWALL 2 Plus User's Guide 51
...console port will be reset to the default of the ZyWALL. Then click Send. 6 After successful firmware upload, enter "atgo" to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . This..., and then release it in a folder. 2 Turn off . 3 While pressing the RESET button, turn on the ZyWALL again. Choose the Xmodem protocol. This indicates that you will lose all configurations that the defaults have been restored and the ZyWALL restarts. ZyWALL 2 Plus User's Guide 51
User Guide
Page 53
Figure 8 Web Configurator HOME Screen in Router Mode The following screen displays when the ZyWALL is ZyXEL's proprietary Network Operating System design. System Information System Name This is for this screen. Table 3 Web Configurator HOME Screen in Router Mode ...about the ZyWALL. ZyWALL 2 Plus User's Guide 53 The ZyWALL is the model name of every time interval or to router mode. ZyNOS is set to update all Interval screen statistics automatically at the end of your ZyWALL. Click the field label to go to the screen where you can upload a new firmware file....
Figure 8 Web Configurator HOME Screen in Router Mode The following screen displays when the ZyWALL is ZyXEL's proprietary Network Operating System design. System Information System Name This is for this screen. Table 3 Web Configurator HOME Screen in Router Mode ...about the ZyWALL. ZyWALL 2 Plus User's Guide 53 The ZyWALL is the model name of every time interval or to router mode. ZyNOS is set to update all Interval screen statistics automatically at the end of your ZyWALL. Click the field label to go to the screen where you can upload a new firmware file....
User Guide
Page 56
... the field label to go to the screen where you turn it on page 51). 56 ZyWALL 2 Plus User's Guide Model This is the ZyNOS Firmware version and the date created. Refresh Click this ZyWALL. Bootbase Version This is ZyXEL's proprietary Network Operating System design. Figure 9 Web Configurator HOME Screen in Bridge Mode The following...
... the field label to go to the screen where you turn it on page 51). 56 ZyWALL 2 Plus User's Guide Model This is the ZyNOS Firmware version and the date created. Refresh Click this ZyWALL. Bootbase Version This is ZyXEL's proprietary Network Operating System design. Figure 9 Web Configurator HOME Screen in Bridge Mode The following...
User Guide
Page 62
...2.4.6 Port Statistics Click Port Statistics in the HOME screen. LOGOUT Click this screen to change your ZyWALL work as a router or a bridge. Figure 10 HOME > Show Statistics 62 ZyWALL 2 Plus User's Guide Chapter 2 Introducing the Web Configurator Table 6 Screens Summary (continued) LINK TAB FUNCTION ... restore the configuration or reset the factory defaults to have your ZyWALL's time and date. F/W Upload Use this screen to upload firmware to your ZyWALL Backup & Restore Use this screen to change your ZyWALL. Time and Date Use this screen to configure and have the...
...2.4.6 Port Statistics Click Port Statistics in the HOME screen. LOGOUT Click this screen to change your ZyWALL work as a router or a bridge. Figure 10 HOME > Show Statistics 62 ZyWALL 2 Plus User's Guide Chapter 2 Introducing the Web Configurator Table 6 Screens Summary (continued) LINK TAB FUNCTION ... restore the configuration or reset the factory defaults to have your ZyWALL's time and date. F/W Upload Use this screen to upload firmware to your ZyWALL Backup & Restore Use this screen to change your ZyWALL. Time and Date Use this screen to configure and have the...
User Guide
Page 384
... /ras Read from remote host 192.168.1.1: Connection reset by peer Connection closed $ 384 ZyWALL 2 Plus User's Guide Type "yes" and press [ENTER]. 2 Enter the password to login to the ZyWALL. 3 Use the "put firmware.bin ras Uploading firmware.bin to the ZyWALL. [email protected]'s password: 3 The SMT main menu displays next. 21.2.3 Secure FTP...
... /ras Read from remote host 192.168.1.1: Connection reset by peer Connection closed $ 384 ZyWALL 2 Plus User's Guide Type "yes" and press [ENTER]. 2 Enter the password to login to the ZyWALL. 3 Use the "put firmware.bin ras Uploading firmware.bin to the ZyWALL. [email protected]'s password: 3 The SMT main menu displays next. 21.2.3 Secure FTP...
User Guide
Page 389
... Selected to just allow Telnet access and from which IP address the access can come . ZyWALL 2 Plus User's Guide 389 " It is allowed to communicate with the ZyWALL using this feature, your computer must use the same port number in this screen to specify...File Transfer Protocol) to upload and download the ZyWALL's firmware and configuration files, please see the chapter on firmware and configuration file maintenance for details. Table 115 ADVANCED > REMOTE MGMT > TELNET LABEL DESCRIPTION Server Port You may access the ZyWALL using this service. Secure Client IP Address ...
... Selected to just allow Telnet access and from which IP address the access can come . ZyWALL 2 Plus User's Guide 389 " It is allowed to communicate with the ZyWALL using this feature, your computer must use the same port number in this screen to specify...File Transfer Protocol) to upload and download the ZyWALL's firmware and configuration files, please see the chapter on firmware and configuration file maintenance for details. Table 115 ADVANCED > REMOTE MGMT > TELNET LABEL DESCRIPTION Server Port You may access the ZyWALL using this service. Secure Client IP Address ...
User Guide
Page 419
...was generated due to discover devices on the network. destination The NetBIOS packet was a User Datagram Protocol packet. notes The ZyWALL blocked the packet. If the ZyWALL does not have a CA certificate signed by VeriSign from myZyXEL.com. 1 Go to http://www.myZyXEL.com and log ... # This is an example of how a log displays in accordance with myzyxel.com and the update server. ZyWALL 2 Plus User's Guide 419 If you upgraded to ZyNOS V4.00 firmware without uploading the V4.00 default configuration file, you can download a CA certificate signed by VeriSign as a ...
...was generated due to discover devices on the network. destination The NetBIOS packet was a User Datagram Protocol packet. notes The ZyWALL blocked the packet. If the ZyWALL does not have a CA certificate signed by VeriSign from myZyXEL.com. 1 Go to http://www.myZyXEL.com and log ... # This is an example of how a log displays in accordance with myzyxel.com and the update server. ZyWALL 2 Plus User's Guide 419 If you upgraded to ZyNOS V4.00 firmware without uploading the V4.00 default configuration file, you can download a CA certificate signed by VeriSign as a ...
User Guide
Page 447
...the Network Identification tab and then the Properties button. System Name is for the Computer Name field and enter it as the System Name. ZyWALL 2 Plus User's Guide 447 The maintenance screens can help you should enter your local time zone. • Use the Device Mode screen (Section...bridge. • Use the F/W Upload screen (Section 26.6 on page 457) to upgrade the ZyWALL's firmware. • Use the Backup and Restore screen (Section 26.7 on page 458) to backup and restore the ZyWALL configuration file and to reset the device to factory settings. • Use the Restart screen (...
...the Network Identification tab and then the Properties button. System Name is for the Computer Name field and enter it as the System Name. ZyWALL 2 Plus User's Guide 447 The maintenance screens can help you should enter your local time zone. • Use the Device Mode screen (Section...bridge. • Use the F/W Upload screen (Section 26.6 on page 457) to upgrade the ZyWALL's firmware. • Use the Backup and Restore screen (Section 26.7 on page 458) to backup and restore the ZyWALL configuration file and to reset the device to factory settings. • Use the Restart screen (...
User Guide
Page 457
...your specific model! Reset Click Reset to access the ZyWALL again. See Section 41.5 on page 579 for example, "zywall.bin". Remember that (usually) uses the system model name with a .bin extension, for upgrading firmware using FTP/TFTP commands. ZyWALL 2 Plus User's Guide 457 Click MAINTENANCE > F/W UPLOAD. ... them. to two minutes. 1 Do not turn off the ZyWALL while firmware upload is in this screen to upload firmware to begin configuring this screen afresh. 26.6 The F/W Upload Screen Find firmware at www.zyxel.com in this field or click Browse ... This process may ...
...your specific model! Reset Click Reset to access the ZyWALL again. See Section 41.5 on page 579 for example, "zywall.bin". Remember that (usually) uses the system model name with a .bin extension, for upgrading firmware using FTP/TFTP commands. ZyWALL 2 Plus User's Guide 457 Click MAINTENANCE > F/W UPLOAD. ... them. to two minutes. 1 Do not turn off the ZyWALL while firmware upload is in this screen to upload firmware to begin configuring this screen afresh. 26.6 The F/W Upload Screen Find firmware at www.zyxel.com in this field or click Browse ... This process may ...
User Guide
Page 458
...using FTP/TFTP commands. 458 ZyWALL 2 Plus User's Guide Click Return to go back to the F/W Upload screen. Chapter 26 Maintenance Screens After you may see the Firmware Upload in Process screen, wait two minutes before logging into the ZyWALL again. Figure 289 Firmware Upload Error 26.7 The ...Backup and Restore Screen See Section 41.5 on your new firmware version in the HOME screen. Figure 288 Network...
...using FTP/TFTP commands. 458 ZyWALL 2 Plus User's Guide Click Return to go back to the F/W Upload screen. Chapter 26 Maintenance Screens After you may see the Firmware Upload in Process screen, wait two minutes before logging into the ZyWALL again. Figure 289 Firmware Upload Error 26.7 The ...Backup and Restore Screen See Section 41.5 on your new firmware version in the HOME screen. Figure 288 Network...
User Guide
Page 465
PART VI SMT Introducing the SMT (467) SMT Menu 1 - General Setup (475) WAN and Dial Backup Setup (481) LAN Setup (491) Internet Access (497) DMZ Setup (501) Remote Node Setup (509) IP Static Route Setup (519) Network Address Translation (NAT) (521) Introducing the ZyWALL Firewall (539) Filter Configuration (541) SNMP Configuration (557) System Information & Diagnosis (559) Firmware and Configuration File Maintenance (571) System Maintenance Menus 8 to 10 (587) Remote Management (595) Call Scheduling (599) 465
PART VI SMT Introducing the SMT (467) SMT Menu 1 - General Setup (475) WAN and Dial Backup Setup (481) LAN Setup (491) Internet Access (497) DMZ Setup (501) Remote Node Setup (509) IP Static Route Setup (519) Network Address Translation (NAT) (521) Introducing the ZyWALL Firewall (539) Filter Configuration (541) SNMP Configuration (557) System Information & Diagnosis (559) Firmware and Configuration File Maintenance (571) System Maintenance Menus 8 to 10 (587) Remote Management (595) Call Scheduling (599) 465
User Guide
Page 470
ZyWALL 2 Plus Main Menu Getting Started 1. General Setup Advanced Management 21. Exit Enter Menu Selection Number: The following table describes the fields in this menu (recommended). 24 System Maintenance From displaying system status to uploading firmware, this menu provides comprehensive system maintenance...this menu to configure detailed remote node settings (your password in this menu to exit (necessary for remote configuration). 470 ZyWALL 2 Plus User's Guide Wireless Setup 99. Filter and Firewall Setup 22. System Password 24. System Maintenance 7. Chapter 27 Introducing...
ZyWALL 2 Plus Main Menu Getting Started 1. General Setup Advanced Management 21. Exit Enter Menu Selection Number: The following table describes the fields in this menu (recommended). 24 System Maintenance From displaying system status to uploading firmware, this menu provides comprehensive system maintenance...this menu to configure detailed remote node settings (your password in this menu to exit (necessary for remote configuration). 470 ZyWALL 2 Plus User's Guide Wireless Setup 99. Filter and Firewall Setup 22. System Password 24. System Maintenance 7. Chapter 27 Introducing...