User Guide
Page 5
Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons. ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device.
Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons. ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device.
User Guide
Page 9
... List of Tables...37 Part I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem 45 1.2.2 VPN Application ...46...2.2 Accessing the ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4...
... List of Tables...37 Part I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem 45 1.2.2 VPN Application ...46...2.2 Accessing the ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4...
User Guide
Page 12
... You Can Do in the Firewall Screens 196 11.1.2 What You Need To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary...
... You Can Do in the Firewall Screens 196 11.1.2 What You Need To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary...
User Guide
Page 17
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457...
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457...
User Guide
Page 22
... 603 Chapter 45 Troubleshooting...605 45.1 Power, Hardware Connections, and LEDs 605 45.2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII...
... 603 Chapter 45 Troubleshooting...605 45.1 Power, Hardware Connections, and LEDs 605 45.2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII...
User Guide
Page 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
User Guide
Page 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
User Guide
Page 28
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
User Guide
Page 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
User Guide
Page 32
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
User Guide
Page 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
User Guide
Page 38
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
User Guide
Page 40
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40...
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40...
User Guide
Page 51
... to blink, the defaults have been restored and the ZyWALL is now restarting. 5 Release the RESET button and wait for the ZyWALL to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it in a folder... configuration file replaces the current configuration file with 8 data bit, no parity, one stop bit and flow control set to restart the router. Figure 6 Example Xmodem Upload Type the configuration file's location, or click Browse to blink and flicker very quickly after about 20 seconds...
... to blink, the defaults have been restored and the ZyWALL is now restarting. 5 Release the RESET button and wait for the ZyWALL to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it in a folder... configuration file replaces the current configuration file with 8 data bit, no parity, one stop bit and flow control set to restart the router. Figure 6 Example Xmodem Upload Type the configuration file's location, or click Browse to blink and flicker very quickly after about 20 seconds...
User Guide
Page 53
... interval or to update all Interval screen statistics automatically at the end of your ZyWALL. Model This is set to router mode. Bootbase Version This is ZyXEL's proprietary Network Operating System design. ZyWALL 2 Plus User's Guide 53 It is the ZyNOS Firmware version and the date... created. This screen displays general status information about the ZyWALL. Firmware Version This is for this ...
... interval or to update all Interval screen statistics automatically at the end of your ZyWALL. Model This is set to router mode. Bootbase Version This is ZyXEL's proprietary Network Operating System design. ZyWALL 2 Plus User's Guide 53 It is the ZyNOS Firmware version and the date... created. This screen displays general status information about the ZyWALL. Firmware Version This is for this ...
User Guide
Page 54
...Screen in Router Mode (continued) LABEL DESCRIPTION Up Time This field displays how long the ZyWALL has been running at full load, and the throughput is not going to improve anymore. The second number is the maximum number of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network ...bar turns from GMT is being approached. Interfaces This is in use the same speed or duplex mode setting as a router or a bridge. The Ethernet port must use . The ZyWALL starts up . It is being approached. Click the field label to go to the screen where you turn off ....
...Screen in Router Mode (continued) LABEL DESCRIPTION Up Time This field displays how long the ZyWALL has been running at full load, and the throughput is not going to improve anymore. The second number is the maximum number of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network ...bar turns from GMT is being approached. Interfaces This is in use the same speed or duplex mode setting as a router or a bridge. The Ethernet port must use . The ZyWALL starts up . It is being approached. Click the field label to go to the screen where you turn off ....
User Guide
Page 55
... screen displays when the ZyWALL is set to the LAN. Security Services Content Filter Expiration Date This is using a manually entered static (fixed) IP address. Date/Time This is using a manually entered static (fixed) IP address. You can see router performance statistics such as the... source and destination IP addresses and port numbers of the incoming packets. DHCP relay displays when the ZyWALL is configured to get the IP address automatically from the ISP, click...
... screen displays when the ZyWALL is set to the LAN. Security Services Content Filter Expiration Date This is using a manually entered static (fixed) IP address. Date/Time This is using a manually entered static (fixed) IP address. You can see router performance statistics such as the... source and destination IP addresses and port numbers of the incoming packets. DHCP relay displays when the ZyWALL is configured to get the IP address automatically from the ISP, click...
User Guide
Page 57
...The bar displays what percent of the heap memory the ZyWALL is in use . CPU This field displays what percentage of the flash the ZyWALL is not used . Firewall This displays whether or not the ZyWALL's firewall is functioning as a router or a bridge. The bar turns from green to ...the field label to go to have more throughput, you can configure the ZyWALL as a router or a bridge. Memory The first number shows how many megabytes of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is in use . Heap memory refers to the...
...The bar displays what percent of the heap memory the ZyWALL is in use . CPU This field displays what percentage of the flash the ZyWALL is not used . Firewall This displays whether or not the ZyWALL's firewall is functioning as a router or a bridge. The bar turns from green to ...the field label to go to have more throughput, you can configure the ZyWALL as a router or a bridge. Memory The first number shows how many megabytes of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is in use . Heap memory refers to the...
User Guide
Page 58
...date and time the alert was recorded. Latest Alerts This table displays the five most recent alerts recorded by the ZyWALL. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN ...number of the incoming packets. Click the field label to go to view the ZyWALL's bandwidth usage and allotments. 2.4.5 Navigation Panel After you can see router performance statistics such as the source and destination IP addresses and port numbers of ...
...date and time the alert was recorded. Latest Alerts This table displays the five most recent alerts recorded by the ZyWALL. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN ...number of the incoming packets. Click the field label to go to view the ZyWALL's bandwidth usage and allotments. 2.4.5 Navigation Panel After you can see router performance statistics such as the source and destination IP addresses and port numbers of ...
User Guide
Page 59
... subject to change . Static DHCP Use this screen to assign fixed IP addresses on the ZyWALL. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN Y Certificates Y ...Authentication Server Y NAT Static Route Bandwidth Management Y DNS Remote Management Y UPnP Custom APP Y ALG Y Logs Y Maintenance Y ROUTER MODE Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Table Key: A Y in this screen to change the bridge settings on the...
... subject to change . Static DHCP Use this screen to assign fixed IP addresses on the ZyWALL. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN Y Certificates Y ...Authentication Server Y NAT Static Route Bandwidth Management Y DNS Remote Management Y UPnP Custom APP Y ALG Y Logs Y Maintenance Y ROUTER MODE Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Y Table Key: A Y in this screen to change the bridge settings on the...