User Guide
Page 5
ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device. Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons.
ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User's Guide 5 The ZyWALL icon is not an exact representation of your device. Document Conventions Icons Used in Figures Figures in this User's Guide may use the following generic icons.
User Guide
Page 9
... List of Tables...37 Part I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem 45 1.2.2 VPN Application ...46...2.2 Accessing the ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4...
... List of Tables...37 Part I: Introduction and Registration 43 Chapter 1 Getting to Know Your ZyWALL 45 1.1 ZyWALL Internet Security Appliance Overview 45 1.2 Applications for the ZyWALL 45 1.2.1 Secure Broadband Internet Access via Cable or DSL Modem 45 1.2.2 VPN Application ...46...2.2 Accessing the ZyWALL Web Configurator 49 2.3 Resetting the ZyWALL ...51 2.3.1 Procedure To Use The Reset Button 51 2.3.2 Uploading a Configuration File Via Console Port 51 2.4 Navigating the ZyWALL Web Configurator 52 2.4.1 Title Bar ...52 2.4.2 Main Window ...52 2.4.3 HOME Screen: Router Mode 53 2.4.4...
User Guide
Page 12
... You Can Do in the Firewall Screens 196 11.1.2 What You Need To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary...
... You Can Do in the Firewall Screens 196 11.1.2 What You Need To Know About The ZyWALL Firewall 196 11.1.3 Before You Begin ...196 11.2 Firewall Rules Examples 196 11.3 The Firewall Default Rule Screen (Router Mode 198 11.4 The Firewall Default Rule Screen (Bridge Mode 200 11.5 The Firewall Rule Summary...
User Guide
Page 17
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457...
... ...448 26.4 The Time and Date Screen 449 26.4.1 Time Server Synchronization Example 452 26.5 The Device Mode Screen 453 26.5.1 The Device Mode Screen (Router 453 26.5.2 The Device Mode Screen (Bridge 454 26.6 The F/W Upload Screen 457...
User Guide
Page 22
... 603 Chapter 45 Troubleshooting...605 45.1 Power, Hardware Connections, and LEDs 605 45.2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII...
... 603 Chapter 45 Troubleshooting...605 45.1 Power, Hardware Connections, and LEDs 605 45.2 ZyWALL Access and Login 606 45.3 Internet Access ...608 45.4 Wireless Router/AP Troubleshooting 610 45.5 UPnP ...610 Chapter 46 Product Specifications ...613 46.1 General ZyWALL Specifications 613 46.2 Cable Pin Assignments 615 46.3 Wall-mounting Instructions 617 Part VIII...
User Guide
Page 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
... Figure 4 Change Password Screen ...50 Figure 5 Replace Certificate Screen ...50 Figure 6 Example Xmodem Upload ...51 Figure 7 HOME Screen ...52 Figure 8 Web Configurator HOME Screen in Router Mode 53 Figure 9 Web Configurator HOME Screen in Bridge Mode 56 Figure 10 HOME > Show Statistics ...62 Figure 11 HOME > DHCP Table ...63 Figure 12... SECURITY > VPN > VPN Rules (IKE)> Add Network Policy 91 Figure 37 SECURITY > FIREWALL > Rule Summary 92 Figure 38 SECURITY > FIREWALL > Rule Summary > Edit: Allow 93 ZyWALL 2 Plus User's Guide 25
User Guide
Page 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
... > LAN > IP Alias 139 Figure 96 NETWORK > LAN > Port Roles 141 Figure 97 Port Roles Change Complete 141 Figure 98 Bridge Mode ...143 Figure 99 Router Mode ...143 Figure 100 Bridge Loop: Bridge Connected to Wired LAN 144 Figure 101 NETWORK > Bridge ...145 Figure 102 NETWORK > Bridge > Port Roles 147 Figure... 121 NETWORK > WLAN ...185 Figure 122 NETWORK > WLAN > Static DHCP 188 Figure 123 NETWORK > WLAN > IP Alias 189 Figure 124 WLAN Port Role Example 191 ZyWALL 2 Plus User's Guide 27
User Guide
Page 28
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Figure 129 Limited LAN to WAN IRC Traffic Example 198 Figure 130 SECURITY > FIREWALL > Default Rule (Router Mode 199 Figure 131 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Figure 132 SECURITY > FIREWALL > Rule Summary 203 Figure 133 SECURITY > FIREWALL > Rule Summary > Edit... Global Report Screen Example 249 Figure 165 Requested URLs Example 250 Figure 166 Web Page Review Process Screen 251 Figure 167 VPN: Example ...253 28 ZyWALL 2 Plus User's Guide
User Guide
Page 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
... and Date 450 Figure 281 Synchronization in Process 452 Figure 282 Synchronization is Successful 452 Figure 283 Synchronization Fail ...453 Figure 284 MAINTENANCE > Device Mode (Router Mode 453 Figure 285 MAINTENANCE > Device Mode (Bridge Mode 456 Figure 286 MAINTENANCE > Firmware Upload 457 Figure 287 Firmware Upload In Process 458 Figure 288... Temporarily Disconnected 460 Figure 293 Configuration Upload Error 460 Figure 294 Reset Warning Message ...461 Figure 295 MAINTENANCE > Restart 461 Figure 296 MAINTENANCE > Diagnostics 462 ZyWALL 2 Plus User's Guide 31
User Guide
Page 32
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
... 469 Figure 300 Main Menu (Bridge Mode 470 Figure 301 Menu 23: System Password 472 Figure 302 Menu 1: General Setup (Router Mode 475 Figure 303 Menu 1: General Setup (Bridge Mode 476 Figure 304 Menu 1.1: Configure Dynamic DNS 477 Figure 305 Menu 1.1.1: DDNS Host Summary 478 Figure ... Menu 11.1.5: Traffic Redirect Setup 517 Figure 338 Menu 12: IP Static Route Setup 519 Figure 339 Menu 12. 1: Edit IP Static Route 520 32 ZyWALL 2 Plus User's Guide
User Guide
Page 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
... Table 1 Front Panel LEDs ...47 Table 2 Title Bar: Web Configurator Icons 52 Table 3 Web Configurator HOME Screen in Router Mode 53 Table 4 Web Configurator HOME Screen in Bridge Mode 56 Table 5 Bridge and Router Mode Features Comparison 58 Table 6 Screens Summary ...59 Table 7 HOME > Show Statistics ...63 Table 8 HOME > DHCP Table ...64... NETWORK > WAN > Traffic Redirect 165 Table 36 NETWORK > WAN > Dial Backup 166 Table 37 NETWORK > WAN > Dial Backup > Edit 169 Table 38 NETWORK > DMZ ...175 ZyWALL 2 Plus User's Guide 37
User Guide
Page 38
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
... Blocking All LAN to WAN IRC Traffic Example 197 Table 47 Limited LAN to WAN IRC Traffic Example 198 Table 48 SECURITY > FIREWALL > Default Rule (Router Mode 199 Table 49 SECURITY > FIREWALL > Default Rule (Bridge Mode 201 Table 50 SECURITY > FIREWALL > Rule Summary 203 Table 51 SECURITY > FIREWALL > Rule Summary > Edit... SECURITY > CERTIFICATES > My Certificates > Export 302 Table 80 SECURITY > CERTIFICATES > My Certificates > Import 304 Table 81 SECURITY > CERTIFICATES > My Certificates > Import: PKCS#12 304 38 ZyWALL 2 Plus User's Guide
User Guide
Page 40
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40...
... Types 446 Table 154 MAINTENANCE > General Setup 448 Table 155 MAINTENANCE > Password 449 Table 156 MAINTENANCE > Time and Date 450 Table 157 MAINTENANCE > Device Mode (Router Mode 454 Table 158 MAC-address-to-port Mapping Table 455 Table 159 MAINTENANCE > Device Mode (Bridge Mode 456 Table 160 MAINTENANCE > Firmware Upload 457... > Diagnostics 462 Table 163 Main Menu Commands ...468 Table 164 Main Menu Summary ...470 Table 165 SMT Menus Overview ...471 Table 166 Menu 1: General Setup (Router Mode 475 Table 167 Menu 1: General Setup (Bridge Mode 476 40...
User Guide
Page 51
... Type the configuration file's location, or click Browse to restart the router. If the PWR LED begins to blink, the defaults have been restored and the ZyWALL is an example Xmodem configuration upload using HyperTerminal. ZyWALL 2 Plus User's Guide 51 Chapter 2 Introducing the Web Configurator 2.3...your terminal. This is now restarting. 5 Release the RESET button and wait for the ZyWALL to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . Otherwise, go into debug mode. 4...
... Type the configuration file's location, or click Browse to restart the router. If the PWR LED begins to blink, the defaults have been restored and the ZyWALL is an example Xmodem configuration upload using HyperTerminal. ZyWALL 2 Plus User's Guide 51 Chapter 2 Introducing the Web Configurator 2.3...your terminal. This is now restarting. 5 Release the RESET button and wait for the ZyWALL to finish restarting. 2.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . Otherwise, go into debug mode. 4...
User Guide
Page 53
... Configurator HOME Screen in Router Mode The following screen displays when the ZyWALL is set to not update the screen statistics. Bootbase Version This is the ZyNOS Firmware version and the date created. ZyNOS is the model name of every time interval or to router mode. Model This is ZyXEL's proprietary Network Operating System...
... Configurator HOME Screen in Router Mode The following screen displays when the ZyWALL is set to not update the screen statistics. Bootbase Version This is the ZyNOS Firmware version and the date created. ZyNOS is the model name of every time interval or to router mode. Model This is ZyXEL's proprietary Network Operating System...
User Guide
Page 54
...the maximum is using PPPoE encapsulation. Device Mode This displays whether the ZyWALL is using. System Resources Flash The first number shows how many megabytes of the heap memory the ZyWALL is functioning as a router or a bridge. The bar displays what percent of the maximum ...re using . Memory The first number shows how many sessions are currently traversing the ZyWALL, terminating at one direction at full load, and the throughput is currently used by ZyNOS (ZyXEL Network Operating System) and is in use . The second number is the maximum number...
...the maximum is using PPPoE encapsulation. Device Mode This displays whether the ZyWALL is using. System Resources Flash The first number shows how many megabytes of the heap memory the ZyWALL is functioning as a router or a bridge. The bar displays what percent of the maximum ...re using . Memory The first number shows how many sessions are currently traversing the ZyWALL, terminating at one direction at full load, and the throughput is currently used by ZyNOS (ZyXEL Network Operating System) and is in use . The second number is the maximum number...
User Guide
Page 55
...was recorded. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it last started up the PPTP, PPPoE or dial backup connection. You can see router performance statistics such as the source and destination IP addresses and port numbers of...when the service subscription has expired. Chapter 2 Introducing the Web Configurator Table 3 Web Configurator HOME Screen in Router Mode (continued) LABEL DESCRIPTION IP Assignment For the WAN, if the ZyWALL gets its IP address automatically from a DHCP server. In this case, you also need to change the ...
...was recorded. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it last started up the PPTP, PPPoE or dial backup connection. You can see router performance statistics such as the source and destination IP addresses and port numbers of...when the service subscription has expired. Chapter 2 Introducing the Web Configurator Table 3 Web Configurator HOME Screen in Router Mode (continued) LABEL DESCRIPTION IP Assignment For the WAN, if the ZyWALL gets its IP address automatically from a DHCP server. In this case, you also need to change the ...
User Guide
Page 57
... displays what percentage of sessions that are currently traversing the ZyWALL, terminating at the ZyWALL or initiated from the ZyWALL The second number is the maximum number of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is functioning as a router or a bridge. Sessions The first number shows how many megabytes...
... displays what percentage of sessions that are currently traversing the ZyWALL, terminating at the ZyWALL or initiated from the ZyWALL The second number is the maximum number of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is functioning as a router or a bridge. Sessions The first number shows how many megabytes...
User Guide
Page 58
...port speed and duplex setting. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide For the WAN port, it...on the corresponding port. System Status Port Statistics Click Port Statistics to view the ZyWALL's bandwidth usage and allotments. 2.4.5 Navigation Panel After you can see router performance statistics such as the source and destination IP addresses and port numbers of ...
...port speed and duplex setting. Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide For the WAN port, it...on the corresponding port. System Status Port Statistics Click Port Statistics to view the ZyWALL's bandwidth usage and allotments. 2.4.5 Navigation Panel After you can see router performance statistics such as the source and destination IP addresses and port numbers of ...
User Guide
Page 59
... manage and update the service status and license information. Service Use this screen to change the LAN/DMZ/WLAN port roles. ZyWALL 2 Plus User's Guide 59 IP Alias Use this screen to configure LAN DHCP and TCP/IP settings. NETWORK LAN LAN.... Table 6 Screens Summary LINK TAB FUNCTION HOME This screen shows the ZyWALL's general device and network status information. The following table describes the sub-menus. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN...
... manage and update the service status and license information. Service Use this screen to change the LAN/DMZ/WLAN port roles. ZyWALL 2 Plus User's Guide 59 IP Alias Use this screen to configure LAN DHCP and TCP/IP settings. NETWORK LAN LAN.... Table 6 Screens Summary LINK TAB FUNCTION HOME This screen shows the ZyWALL's general device and network status information. The following table describes the sub-menus. Chapter 2 Introducing the Web Configurator Table 5 Bridge and Router Mode Features Comparison FEATURE BRIDGE MODE WLAN Firewall Y Content Filter Y VPN...