User Guide
Page 55
.... For the dial backup port, this shows N/A when dial backup is disabled and IPCP client when dial backup is the date and time the alert was recorded. Renew If you are...VPN connections. You can configure the ZyWALL's IP address in order to access the ZyWALL for management. Message This is using PPPoE or PPTP encapsulation. VPN Click VPN to dial up . In bridge mode, the ZyWALL... computer directly to the ZyWALL, you also need to see more information in the View Log screen, such as a bridge firewall). If you connect your existing network. ZyWALL 2 Plus User's Guide 55 Chapter...
.... For the dial backup port, this shows N/A when dial backup is disabled and IPCP client when dial backup is the date and time the alert was recorded. Renew If you are...VPN connections. You can configure the ZyWALL's IP address in order to access the ZyWALL for management. Message This is using PPPoE or PPTP encapsulation. VPN Click VPN to dial up . In bridge mode, the ZyWALL... computer directly to the ZyWALL, you also need to see more information in the View Log screen, such as a bridge firewall). If you connect your existing network. ZyWALL 2 Plus User's Guide 55 Chapter...
User Guide
Page 64
...to router mode. Refresh Click Refresh to reload the DHCP table. 2.4.8 VPN Status Click VPN in the HOME screen when the ZyWALL is unique to 32 entries in this screen. Figure 12 HOME > VPN Status 64 ZyWALL 2 Plus User's Guide Reserve Select the check box in the heading row to ... is the index number of security settings related to show the current DHCP client information for the specified interface. Table 8 HOME > DHCP Table LABEL DESCRIPTION Interface Select LAN, DMZ or WLAN to a specific VPN tunnel. This address follows an industry standard that is the group of the...
...to router mode. Refresh Click Refresh to reload the DHCP table. 2.4.8 VPN Status Click VPN in the HOME screen when the ZyWALL is unique to 32 entries in this screen. Figure 12 HOME > VPN Status 64 ZyWALL 2 Plus User's Guide Reserve Select the check box in the heading row to ... is the index number of security settings related to show the current DHCP client information for the specified interface. Table 8 HOME > DHCP Table LABEL DESCRIPTION Interface Select LAN, DMZ or WLAN to a specific VPN tunnel. This address follows an industry standard that is the group of the...
User Guide
Page 71
... IP address of data from a remote client to configure DNS servers. If you do not configure a DNS server, you do not want to a private server, creating a Virtual Private Network (VPN) using TCP/ IP-based networks. " The ZyWALL supports one PPTP server connection at any given time. ZyWALL 2 Plus User's Guide 71 Leave the field as...
... IP address of data from a remote client to configure DNS servers. If you do not configure a DNS server, you do not want to a private server, creating a Virtual Private Network (VPN) using TCP/ IP-based networks. " The ZyWALL supports one PPTP server connection at any given time. ZyWALL 2 Plus User's Guide 71 Leave the field as...
User Guide
Page 145
... Figure 101 NETWORK > Bridge ZyWALL 2 Plus User's Guide 145 You do not need to change the configuration of other features that are available in bridge mode. " In bridge mode, if you need to let DHCP clients behind the ZyWALL use the firewall and VPN in bridge mode. See the... user's guide for the BOOTP_CLIENT service. Click NETWORK > BRIDGE to configure bridge and RSTP (Rapid Spanning Tree Protocol) settings. The ZyWALL bridges traffic traveling between the ZyWALL's interfaces and still...
... Figure 101 NETWORK > Bridge ZyWALL 2 Plus User's Guide 145 You do not need to change the configuration of other features that are available in bridge mode. " In bridge mode, if you need to let DHCP clients behind the ZyWALL use the firewall and VPN in bridge mode. See the... user's guide for the BOOTP_CLIENT service. Click NETWORK > BRIDGE to configure bridge and RSTP (Rapid Spanning Tree Protocol) settings. The ZyWALL bridges traffic traveling between the ZyWALL's interfaces and still...
User Guide
Page 160
...network-layer protocol used to a private server, creating a Virtual Private Network (VPN) using TCP/IP-based networks. Multicasting can use the factory assigned default MAC Address or cloning the MAC address from a remote client to carry user data. IGMP is still in a Multicast group - Multicast ... listen to establish membership in RIP-2 format; The screen shown next is probably adequate for PPTP encapsulation. 160 ZyWALL 2 Plus User's Guide When set to the ZyWALL. RIP-1 is for most networks, unless you are cloning. However, if one router uses multicasting, then all...
...network-layer protocol used to a private server, creating a Virtual Private Network (VPN) using TCP/IP-based networks. Multicasting can use the factory assigned default MAC Address or cloning the MAC address from a remote client to carry user data. IGMP is still in a Multicast group - Multicast ... listen to establish membership in RIP-2 format; The screen shown next is probably adequate for PPTP encapsulation. 160 ZyWALL 2 Plus User's Guide When set to the ZyWALL. RIP-1 is for most networks, unless you are cloning. However, if one router uses multicasting, then all...
User Guide
Page 161
... with the user name above. Retype to Confirm Type your password again to a private server, creating a Virtual Private Network (VPN) using TCP/IP-based networks. ZyWALL 2 Plus User's Guide 161 To configure a PPTP client, you must configure the User Name and Password fields for a PPP connection and the PPTP parameters for Internet Access Encapsulation...
... with the user name above. Retype to Confirm Type your password again to a private server, creating a Virtual Private Network (VPN) using TCP/IP-based networks. ZyWALL 2 Plus User's Guide 161 To configure a PPTP client, you must configure the User Name and Password fields for a PPP connection and the PPTP parameters for Internet Access Encapsulation...
User Guide
Page 203
...the Default Rule screen for the NetBIOS service to expand or - ZyWALL 2 Plus User's Guide 203 Chapter 11 Firewall Screens " The ordering of the gateways (VPN pass-through traffic). In the heading row, click + to let computers behind the ZyWALL access devices on the WAN using computer names. Figure 132 SECURITY... the labels in bridge mode, enable the default WAN to LAN firewall rule for the BOOTP_CLIENT service to let DHCP clients behind the ZyWALL use a DHCP server on the WAN. • Enable the default WAN to LAN firewall rule for the packet direction displayed.
...the Default Rule screen for the NetBIOS service to expand or - ZyWALL 2 Plus User's Guide 203 Chapter 11 Firewall Screens " The ordering of the gateways (VPN pass-through traffic). In the heading row, click + to let computers behind the ZyWALL access devices on the WAN using computer names. Figure 132 SECURITY... the labels in bridge mode, enable the default WAN to LAN firewall rule for the BOOTP_CLIENT service to let DHCP clients behind the ZyWALL use a DHCP server on the WAN. • Enable the default WAN to LAN firewall rule for the packet direction displayed.
User Guide
Page 262
.... You must enter a user name and password when you want to use the same DH key group. 262 ZyWALL 2 Plus User's Guide The password can configure the ZyWALL to check an external RADIUS server. a 56-bit key with the DES encryption algorithm AES - a 128-bit... to encrypt and decrypt information. Chapter 14 IPSec VPN Screens Table 65 SECURITY > VPN > VPN Rules (IKE) > Edit Gateway Policy (continued) LABEL DESCRIPTION Server Mode Select Server Mode to have this ZyWALL authenticate extended authentication clients that request this VPN connection. Click RADIUS to go to the Local User...
.... You must enter a user name and password when you want to use the same DH key group. 262 ZyWALL 2 Plus User's Guide The password can configure the ZyWALL to check an external RADIUS server. a 56-bit key with the DES encryption algorithm AES - a 128-bit... to encrypt and decrypt information. Chapter 14 IPSec VPN Screens Table 65 SECURITY > VPN > VPN Rules (IKE) > Edit Gateway Policy (continued) LABEL DESCRIPTION Server Mode Select Server Mode to have this ZyWALL authenticate extended authentication clients that request this VPN connection. Click RADIUS to go to the Local User...
User Guide
Page 323
... on page 324) to authenticate users without interacting with a network RADIUS server. ZyWALL 2 Plus User's Guide 323 RADIUS is a limit on a client-server model that supports authentication, authorization and accounting. The ZyWALL uses the same local user database for an unlimited number of users. However, ...there is based on the number of users. A ZyWALL set to be a VPN extended authentication server can use either the local user database internal to the ZyWALL or an external RADIUS (Remote Authentication Dial In User Service, RFC 2138, 2139)...
... on page 324) to authenticate users without interacting with a network RADIUS server. ZyWALL 2 Plus User's Guide 323 RADIUS is a limit on a client-server model that supports authentication, authorization and accounting. The ZyWALL uses the same local user database for an unlimited number of users. However, ...there is based on the number of users. A ZyWALL set to be a VPN extended authentication server can use either the local user database internal to the ZyWALL or an external RADIUS (Remote Authentication Dial In User Service, RFC 2138, 2139)...
User Guide
Page 365
... usually in the DNS Screens • Use the System screen (Section 20.2 on page 367) to configure the ZyWALL to use a DNS server to resolve domain names for ZyWALL system features like VPN, DDNS and the time server. • Use the Add Address Record screen (Section 20.2.1 on page 369) ... (along with the ZyWALL's WAN IP address), set the DNS server fields to its corresponding IP address and vice versa. The DNS server is for mapping a domain name to its LAN, DMZ or WLAN DHCP clients. • Use the DDNS screen (Section 20.5 on page 366). ZyWALL 2 Plus User's Guide 365
... usually in the DNS Screens • Use the System screen (Section 20.2 on page 367) to configure the ZyWALL to use a DNS server to resolve domain names for ZyWALL system features like VPN, DDNS and the time server. • Use the Add Address Record screen (Section 20.2.1 on page 369) ... (along with the ZyWALL's WAN IP address), set the DNS server fields to its corresponding IP address and vice versa. The DNS server is for mapping a domain name to its LAN, DMZ or WLAN DHCP clients. • Use the DDNS screen (Section 20.5 on page 366). ZyWALL 2 Plus User's Guide 365
User Guide
Page 366
... a DNS server to resolve domain names for ZyWALL system features like VPN, DDNS and the time server. Address Record An address record contains the mapping of a host and domain name and includes the top-level domain. For example, www.zyxel.com.tw is a fully qualified domain name,...client devices on the remote private network. Chapter 20 DNS Screens DNS Servers There are created from the ISP since these DNS servers cannot resolve domain names to private IP addresses on the LAN, DMZ or WLAN. 3 Use the REMOTE MGMT DNS screen to configure the ZyWALL (in headquarters. 366 ZyWALL 2 Plus...
... a DNS server to resolve domain names for ZyWALL system features like VPN, DDNS and the time server. Address Record An address record contains the mapping of a host and domain name and includes the top-level domain. For example, www.zyxel.com.tw is a fully qualified domain name,...client devices on the remote private network. Chapter 20 DNS Screens DNS Servers There are created from the ISP since these DNS servers cannot resolve domain names to private IP addresses on the LAN, DMZ or WLAN. 3 Use the REMOTE MGMT DNS screen to configure the ZyWALL (in headquarters. 366 ZyWALL 2 Plus...
User Guide
Page 680
... mode 292 tunnel mode 292 VPN 292 encryption algorithms 284, 289 and active protocol 284 entering information 469 ESP 291 and transport mode 292 ESSID 610 Ethernet ZyWALL 2 Plus User's Guide device introduction 45 DHCP 63, 133, 134, 373, 493 Relay 493 Server 493 WAN 568 DHCP clients 448 DHCP table 63 diagnostic... 567 diagnostics 461 dial timeout 485 Diffie-Hellman key group 284 Perfect Forward Secrecy (PFS) 292 Dimensions 613 disclaimer 669 DMZ IP alias setup 503 port filter setup 501 setup 501 TCP/IP setup 502 DNS 393 DNS Server For VPN Host 366...
... mode 292 tunnel mode 292 VPN 292 encryption algorithms 284, 289 and active protocol 284 entering information 469 ESP 291 and transport mode 292 ESSID 610 Ethernet ZyWALL 2 Plus User's Guide device introduction 45 DHCP 63, 133, 134, 373, 493 Relay 493 Server 493 WAN 568 DHCP clients 448 DHCP table 63 diagnostic... 567 diagnostics 461 dial timeout 485 Diffie-Hellman key group 284 Perfect Forward Secrecy (PFS) 292 Dimensions 613 disclaimer 669 DMZ IP alias setup 503 port filter setup 501 setup 501 TCP/IP setup 502 DNS 393 DNS Server For VPN Host 366...
User Guide
Page 681
... incomplete 209 three-way handshake 219 threshold 208 VPN 91 ZyWALL 2 Plus User's Guide when to use 553 firmware file maintenance 571 upload 457 firmware upload 579 FTP 580 flow control 467 FTP 367, 389 commands 573 file upload 581 firmware upload 580 GUI-based clients 574 restoring files 577 G gateway IP address 498...
... incomplete 209 three-way handshake 219 threshold 208 VPN 91 ZyWALL 2 Plus User's Guide when to use 553 firmware file maintenance 571 upload 457 firmware upload 579 FTP 580 flow control 467 FTP 367, 389 commands 573 file upload 581 firmware upload 580 GUI-based clients 574 restoring files 577 G gateway IP address 498...
User Guide
Page 683
... traversal 288, 397 navigation panel 58 NBNS 134, 136 NetBIOS 136 NetBIOS Name Server. pool of IP addresses 133, 136 port filter setup ZyWALL 2 Plus User's Guide R RADIUS 323 and IKE SA 286 Shared Secret Key 324 RADIUS Message Types 324 RADIUS Messages 324 Rapid Spanning Tree Protocol....client 499 encapsulation 71, 160, 513 idle timeout 499 private 349, 488, 516, 520 private IP address 132, 154 product overview 45 product registration 671 protocol filter 495 incoming 495 outgoing 495 O one minute high 209 one minute low 209 online services center 125 outgoing protocol filter 495 overlap in VPN...
... traversal 288, 397 navigation panel 58 NBNS 134, 136 NetBIOS 136 NetBIOS Name Server. pool of IP addresses 133, 136 port filter setup ZyWALL 2 Plus User's Guide R RADIUS 323 and IKE SA 286 Shared Secret Key 324 RADIUS Message Types 324 RADIUS Messages 324 Rapid Spanning Tree Protocol....client 499 encapsulation 71, 160, 513 idle timeout 499 private 349, 488, 516, 520 private IP address 132, 154 product overview 45 product registration 671 protocol filter 495 incoming 495 outgoing 495 O one minute high 209 one minute low 209 online services center 125 outgoing protocol filter 495 overlap in VPN...
User Guide
Page 685
...UPnP Implementers Corp. 398 user profiles 323 V Vantage CNM 394 virtual address mapping over VPN 265 virtual interfaces vs asymmetrical routes 218 vs triangle routes 218 Virtual Private Network. troubleshooting ... Telnet 388 terminal emulation 467 TFTP configuration backup 575 file upload 582 GUI-based clients 575 threshold 208 time 450 and date setting 591 Daylight Saving Time 451 resetting 450...55, 143, 145, 454 triangle routes 218 vs virtual interfaces 218 trigger port forwarding 537 ZyWALL 2 Plus User's Guide Trivial File Transfer Protocol. local and remote network any 290 local network 253...
...UPnP Implementers Corp. 398 user profiles 323 V Vantage CNM 394 virtual address mapping over VPN 265 virtual interfaces vs asymmetrical routes 218 vs triangle routes 218 Virtual Private Network. troubleshooting ... Telnet 388 terminal emulation 467 TFTP configuration backup 575 file upload 582 GUI-based clients 575 threshold 208 time 450 and date setting 591 Daylight Saving Time 451 resetting 450...55, 143, 145, 454 triangle routes 218 vs virtual interfaces 218 trigger port forwarding 537 ZyWALL 2 Plus User's Guide Trivial File Transfer Protocol. local and remote network any 290 local network 253...