User Guide
Page 12
Table of Contents 3.2 Accessing the ZyWALL Web Configurator 61 3.3 Resetting the ZyWALL ...63 3.3.1 Procedure To Use The Reset Button 63 3.3.2 Uploading a Configuration File Via Console Port 63 3.4 Navigating the ZyWALL Web Configurator 64 3.4.1 Title Bar ...64 3.4.2 Main Window ...65 3.4.3 HOME Screen: Router Mode 65 3.4.4 HOME Screen: Bridge Mode 71 3.4.5 Navigation ...Rule Configuration 109 5.1.1 Configure Bob's User Account 110 5.1.2 VPN Gateway and Network Policy Configuration 110 5.1.3 Configure Zero Configuration Mode on ZyWALL B 116 5.1.4 Testing Your VPN Configuration 117 12...
Table of Contents 3.2 Accessing the ZyWALL Web Configurator 61 3.3 Resetting the ZyWALL ...63 3.3.1 Procedure To Use The Reset Button 63 3.3.2 Uploading a Configuration File Via Console Port 63 3.4 Navigating the ZyWALL Web Configurator 64 3.4.1 Title Bar ...64 3.4.2 Main Window ...65 3.4.3 HOME Screen: Router Mode 65 3.4.4 HOME Screen: Bridge Mode 71 3.4.5 Navigation ...Rule Configuration 109 5.1.1 Configure Bob's User Account 110 5.1.2 VPN Gateway and Network Policy Configuration 110 5.1.3 Configure Zero Configuration Mode on ZyWALL B 116 5.1.4 Testing Your VPN Configuration 117 12...
User Guide
Page 23
Table of Contents 34.3 Navigating the SMT Interface 606 34.3.1 Main Menu ...607 34.3.2 SMT Menus Overview 609 34.4 Changing the System Password 610 34.5 Resetting the ZyWALL ...611 Chapter 35 SMT Menu 1 - General Setup 613 35.1 Introduction to General Setup 613 35.2 Configuring General Setup 613 35.2.1 Configuring Dynamic DNS 615 Chapter....2 Ethernet Encapsulation 639 38.3 Configuring the PPTP Client 641 38.4 Configuring the PPPoE Client 642 38.5 Basic Setup Complete ...643 Chapter 39 DMZ Setup ...645 ZyWALL 5/35/70 Series User's Guide 23
Table of Contents 34.3 Navigating the SMT Interface 606 34.3.1 Main Menu ...607 34.3.2 SMT Menus Overview 609 34.4 Changing the System Password 610 34.5 Resetting the ZyWALL ...611 Chapter 35 SMT Menu 1 - General Setup 613 35.1 Introduction to General Setup 613 35.2 Configuring General Setup 613 35.2.1 Configuring Dynamic DNS 615 Chapter....2 Ethernet Encapsulation 639 38.3 Configuring the PPTP Client 641 38.4 Configuring the PPPoE Client 642 38.5 Basic Setup Complete ...643 Chapter 39 DMZ Setup ...645 ZyWALL 5/35/70 Series User's Guide 23
User Guide
Page 37
... Backup and Restore 597 Figure 353 Configuration Upload Successful 598 Figure 354 Network Temporarily Disconnected 598 Figure 355 Configuration Upload Error 598 Figure 356 Reset Warning Message ...599 Figure 357 MAINTENANCE > Restart 599 Figure 358 MAINTENANCE > Diagnostics 600 Figure 359 Initial Screen ...606 Figure 360 Password ...Figure 374 Menu 11.3.3: Remote Node Script 627 Figure 375 Menu 11.3.4: Remote Node Filter 628 Figure 376 3G Modem Setup in WAN Setup (ZyWALL 5 629 Figure 377 Menu 11.2: Remote Node Profile (3G WAN 630 Figure 378 Menu 3: LAN Setup ...633 Figure 379 Menu 3.1: ...
... Backup and Restore 597 Figure 353 Configuration Upload Successful 598 Figure 354 Network Temporarily Disconnected 598 Figure 355 Configuration Upload Error 598 Figure 356 Reset Warning Message ...599 Figure 357 MAINTENANCE > Restart 599 Figure 358 MAINTENANCE > Diagnostics 600 Figure 359 Initial Screen ...606 Figure 360 Password ...Figure 374 Menu 11.3.3: Remote Node Script 627 Figure 375 Menu 11.3.4: Remote Node Filter 628 Figure 376 3G Modem Setup in WAN Setup (ZyWALL 5 629 Figure 377 Menu 11.2: Remote Node Profile (3G WAN 630 Figure 378 Menu 3: LAN Setup ...633 Figure 379 Menu 3.1: ...
User Guide
Page 45
... LOGS > Log Settings ...559 Table 173 System Maintenance Logs 561 Table 174 System Error Logs ...563 Table 175 Access Control Logs ...563 Table 176 TCP Reset Logs ...564 Table 177 Packet Filter Logs ...565 Table 178 ICMP Logs ...565 Table 179 CDR Logs ...566 Table 180 PPP Logs ...566 Table 181... 207 Main Menu Commands ...606 Table 208 Main Menu Summary ...608 Table 209 SMT Menus Overview ...609 Table 210 Menu 1: General Setup (Router Mode 613 ZyWALL 5/35/70 Series User's Guide 45
... LOGS > Log Settings ...559 Table 173 System Maintenance Logs 561 Table 174 System Error Logs ...563 Table 175 Access Control Logs ...563 Table 176 TCP Reset Logs ...564 Table 177 Packet Filter Logs ...565 Table 178 ICMP Logs ...565 Table 179 CDR Logs ...566 Table 180 PPP Logs ...566 Table 181... 207 Main Menu Commands ...606 Table 208 Main Menu Summary ...608 Table 209 SMT Menus Overview ...609 Table 210 Menu 1: General Setup (Router Mode 613 ZyWALL 5/35/70 Series User's Guide 45
User Guide
Page 54
... useful if the device becomes unstable or even crashes. Use a password that's not easy to guess and that you would not have to reset the ZyWALL to its factory default settings. Restoring an earlier working configuration may be remotely managed using a (supported) web browser. • Command Line ...configure your device. • FTP for troubleshooting by an SNMP manager. If you backed up the configuration (and make the ZyWALL more secure and to manage the ZyWALL more information about the CLI. • SMT. You could simply restore your password, you know how to restore it ...
... useful if the device becomes unstable or even crashes. Use a password that's not easy to guess and that you would not have to reset the ZyWALL to its factory default settings. Restoring an earlier working configuration may be remotely managed using a (supported) web browser. • Command Line ...configure your device. • FTP for troubleshooting by an SNMP manager. If you backed up the configuration (and make the ZyWALL more secure and to manage the ZyWALL more information about the CLI. • SMT. You could simply restore your password, you know how to restore it ...
User Guide
Page 63
... before activating Xmodem upload on the back of 9600bps with the factorydefault configuration file. ZyWALL 5/35/70 Series User's Guide 63 Chapter 3 Introducing the Web Configurator 3.3 Resetting the ZyWALL If you forget your password or cannot access the web configurator, you will need .... 5 Wait for the ZyWALL to finish restarting. 3.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . The password will begin a terminal emulation software session and turn the ZyWALL on the ZyWALL again.
... before activating Xmodem upload on the back of 9600bps with the factorydefault configuration file. ZyWALL 5/35/70 Series User's Guide 63 Chapter 3 Introducing the Web Configurator 3.3 Resetting the ZyWALL If you forget your password or cannot access the web configurator, you will need .... 5 Wait for the ZyWALL to finish restarting. 3.3.2 Uploading a Configuration File Via Console Port 1 Download the default configuration file from the ZyXEL FTP site, unzip it and save it . The password will begin a terminal emulation software session and turn the ZyWALL on the ZyWALL again.
User Guide
Page 66
...Operating System) and is for example, using . ZyNOS is functioning as a router or a bridge. Device Mode This displays whether the ZyWALL is ZyXEL's proprietary Network Operating System design. Click the field label to go to the screen where you can be open on the time zone....the field label to go to have more throughput, you turn the firewall on , when you restart it (MAINTENANCE > Restart), or when you reset it last started up when you should turn off . System Time This field displays your ZyWALL. The second number shows the ZyWALL's total heap memory (in megabytes).
...Operating System) and is for example, using . ZyNOS is functioning as a router or a bridge. Device Mode This displays whether the ZyWALL is ZyXEL's proprietary Network Operating System design. Click the field label to go to the screen where you can be open on the time zone....the field label to go to have more throughput, you turn the firewall on , when you restart it (MAINTENANCE > Restart), or when you reset it last started up when you should turn off . System Time This field displays your ZyWALL. The second number shows the ZyWALL's total heap memory (in megabytes).
User Guide
Page 69
... the 3G connection has been up. New PIN Code Configure a PIN code for confirmation. You can specify any four to eight digits to have the ZyWALL do budget calculation starting from the one for which you configured budget control. Confirm New PIN Enter the PIN code again for the SIM card.../70 Series User's Guide 69 You then need to the carrier network. The ESN is the serial number of your ISP. Reset budget counters, resume budget control This field displays if you have enabled budget control but insert a 3G card with a different user account from 0 but use ...
... the 3G connection has been up. New PIN Code Configure a PIN code for confirmation. You can specify any four to eight digits to have the ZyWALL do budget calculation starting from the one for which you configured budget control. Confirm New PIN Enter the PIN code again for the SIM card.../70 Series User's Guide 69 You then need to the carrier network. The ESN is the serial number of your ISP. Reset budget counters, resume budget control This field displays if you have enabled budget control but insert a 3G card with a different user account from 0 but use ...
User Guide
Page 70
... ZyWALL keeps the existing statistics if you do not change in the counters will not be saved. You could reinsert the original card and enable budget control to have enabled budget control but insert a 3G card with the 3G connection's full configured monthly time and data budgets. Reset time... as the source and destination IP addresses and port numbers of time the 3G connection can still be transmitted through the 3G connection before the ZyWALL takes the actions you enable budget control in the 3G (WAN 2) screen. This displays when you specified in the Network > WAN > 3G (WAN...
... ZyWALL keeps the existing statistics if you do not change in the counters will not be saved. You could reinsert the original card and enable budget control to have enabled budget control but insert a 3G card with the 3G connection's full configured monthly time and data budgets. Reset time... as the source and destination IP addresses and port numbers of time the 3G connection can still be transmitted through the 3G connection before the ZyWALL takes the actions you enable budget control in the 3G (WAN 2) screen. This displays when you specified in the Network > WAN > 3G (WAN...
User Guide
Page 72
...in use it (see Section 3.3 on , when you restart it (MAINTENANCE > Restart), or when you reset it . The bar displays what percentage of the heap memory the ZyWALL is not going to the memory that can turn it on page 63). If you want some applications to ... is the maximum number of sessions that is not used . Sessions The first number shows how many megabytes of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is being approached. Chapter 3 Introducing the Web Configurator Table 5 Web Configurator HOME Screen in ...
...in use it (see Section 3.3 on , when you restart it (MAINTENANCE > Restart), or when you reset it . The bar displays what percentage of the heap memory the ZyWALL is not going to the memory that can turn it on page 63). If you want some applications to ... is the maximum number of sessions that is not used . Sessions The first number shows how many megabytes of the ZyWALL's processing ability is currently used by ZyNOS (ZyXEL Network Operating System) and is being approached. Chapter 3 Introducing the Web Configurator Table 5 Web Configurator HOME Screen in ...
User Guide
Page 80
... screen to upload firmware to change your password. LOGOUT Click this screen to backup and restore the configuration or reset the factory defaults to your ZyWALL Backup & Restore Use this label to exit the web configurator. 3.4.6 Port Statistics Click Port Statistics in this screen... to your ZyWALL. The Poll Interval(s) field is configurable. Password Use this screen to change your ZyWALL work as a router or a bridge. Table 8 HOME > Port Statistics LABEL DESCRIPTION Click the icon to reboot the ZyWALL without turning the power off. Diagnosis...
... screen to upload firmware to change your password. LOGOUT Click this screen to backup and restore the configuration or reset the factory defaults to your ZyWALL Backup & Restore Use this label to exit the web configurator. 3.4.6 Port Statistics Click Port Statistics in this screen... to your ZyWALL. The Poll Interval(s) field is configurable. Password Use this screen to change your ZyWALL work as a router or a bridge. Table 8 HOME > Port Statistics LABEL DESCRIPTION Click the icon to reboot the ZyWALL without turning the power off. Diagnosis...
User Guide
Page 144
Use the Service screen to update your changes back to the ZyWALL. Click REGISTRATION > Service to open the screen as shown next. Reset Click Reset to begin configuring this screen is registered already, this screen afresh. Figure 80 REGISTRATION > Registration: Registered Device 6.3 The Service Screen After you activate a trial, you ...
Use the Service screen to update your changes back to the ZyWALL. Click REGISTRATION > Service to open the screen as shown next. Reset Click Reset to begin configuring this screen is registered already, this screen afresh. Figure 80 REGISTRATION > Registration: Registered Device 6.3 The Service Screen After you activate a trial, you ...
User Guide
Page 155
... firewall rule that forwards NetBIOS traffic. Clear this check box to forward NetBIOS packets from the LAN to WAN 2 and from WAN 1 to the LAN. ZyWALL 5/35/70 Series User's Guide 155 If your firewall is enabled with a LAN. Allow between LAN and WAN1 Select this check box to forward NetBIOS... to block all NetBIOS packets going from the LAN to the WLAN and from the DMZ to specific individual computers based on the WAN. Reset Click Reset to begin configuring this check box to block all NetBIOS packets going from the LAN to the DMZ and from the WLAN to the LAN...
... firewall rule that forwards NetBIOS traffic. Clear this check box to forward NetBIOS packets from the LAN to WAN 2 and from WAN 1 to the LAN. ZyWALL 5/35/70 Series User's Guide 155 If your firewall is enabled with a LAN. Allow between LAN and WAN1 Select this check box to forward NetBIOS... to block all NetBIOS packets going from the LAN to the WLAN and from the DMZ to specific individual computers based on the WAN. Reset Click Reset to begin configuring this check box to block all NetBIOS packets going from the LAN to the DMZ and from the WLAN to the LAN...
User Guide
Page 156
... that you to partition a physical network into different logical networks over the same Ethernet interface. 156 ZyWALL 5/35/70 Series User's Guide MAC Address Type the MAC address of the static IP table entry (row). Reset Click Reset to begin configuring this screen. Chapter 7 LAN Screens Figure 84 NETWORK > LAN > Static DHCP The...
... that you to partition a physical network into different logical networks over the same Ethernet interface. 156 ZyWALL 5/35/70 Series User's Guide MAC Address Type the MAC address of the static IP table entry (row). Reset Click Reset to begin configuring this screen. Chapter 7 LAN Screens Figure 84 NETWORK > LAN > Static DHCP The...
User Guide
Page 158
... direction from a computer connected to set to access the ZyWALL. By default, RIP direction is probably adequate for the ZyWALL. 2 IP Address Enter the IP address of the RIP packets that RIP-2B uses subnet broadcasting while RIP-2M uses multicasting. Reset Click Reset to begin configuring this screen. RIP1 is in this screen...
... direction from a computer connected to set to access the ZyWALL. By default, RIP direction is probably adequate for the ZyWALL. 2 IP Address Enter the IP address of the RIP packets that RIP-2B uses subnet broadcasting while RIP-2M uses multicasting. Reset Click Reset to begin configuring this screen. RIP1 is in this screen...
User Guide
Page 159
...Select a port's WLAN radio button to begin configuring this screen. Figure 87 NETWORK > LAN > Port Roles The following screen appears. Reset Click Reset to use the ZyWALL's LAN IP address and MAC address. Chapter 7 LAN Screens The radio buttons correspond to 4 are all LAN ports by default. On ...the ZyWALL 70, ports 1 to Ethernet ports on the front panel of the LAN. " Your changes are also reflected in this screen afresh...
...Select a port's WLAN radio button to begin configuring this screen. Figure 87 NETWORK > LAN > Port Roles The following screen appears. Reset Click Reset to use the ZyWALL's LAN IP address and MAC address. Chapter 7 LAN Screens The radio buttons correspond to 4 are all LAN ports by default. On ...the ZyWALL 70, ports 1 to Ethernet ports on the front panel of the LAN. " Your changes are also reflected in this screen afresh...
User Guide
Page 164
...an interval (between 0 and 240 as part of a machine before sending a hello packet. RSTP Active Select the check box to the right. The ZyWALL 70 has a separate (dedicated) LAN port, so ports 1~4 can be part of the LAN, DMZ or WLAN interface. To change your changes back... the field(s) to enable RSTP on the ZyWALL. st) Apply Click Apply to save your ZyWALL's port role settings, click NETWORK > BRIDGE > Port Roles. The switch with the lowest MAC address becomes the root. The default is the highest. Reset Click Reset to activate RSTP on the corresponding port. ...
...an interval (between 0 and 240 as part of a machine before sending a hello packet. RSTP Active Select the check box to the right. The ZyWALL 70 has a separate (dedicated) LAN port, so ports 1~4 can be part of the LAN, DMZ or WLAN interface. To change your changes back... the field(s) to enable RSTP on the ZyWALL. st) Apply Click Apply to save your ZyWALL's port role settings, click NETWORK > BRIDGE > Port Roles. The switch with the lowest MAC address becomes the root. The default is the highest. Reset Click Reset to activate RSTP on the corresponding port. ...
User Guide
Page 165
... following screen appears. DMZ Select a port's DMZ radio button to 4 are all LAN ports by default. Click Return to go back to the ZyWALL. Table 32 NETWORK > Bridge > Port Roles LABEL DESCRIPTION LAN Select a port's LAN radio button to begin configuring this screen. After you change...afresh. Apply Click Apply to save your changes back to the Port Roles screen. Figure 94 Port Roles Change Complete ZyWALL 5/35/70 Series User's Guide 165 Reset Click Reset to use the port as part of the WLAN. WLAN Select a port's WLAN radio button to Ethernet ports ...
... following screen appears. DMZ Select a port's DMZ radio button to 4 are all LAN ports by default. Click Return to go back to the ZyWALL. Table 32 NETWORK > Bridge > Port Roles LABEL DESCRIPTION LAN Select a port's LAN radio button to begin configuring this screen. After you change...afresh. Apply Click Apply to save your changes back to the Port Roles screen. Figure 94 Port Roles Change Complete ZyWALL 5/35/70 Series User's Guide 165 Reset Click Reset to use the port as part of the WLAN. WLAN Select a port's WLAN radio button to Ethernet ports ...
User Guide
Page 177
... Dial Select this screen afresh. 9.2.2 Configuring Load Balancing To configure load balancing on the ZyWALL, click NETWORK > WAN in the table below. The WAN General screen displays by default. Reset Click Reset to route traffic. The inbound bandwidth utilization is distributed to initiate calls. A new LAN... Mode under Operation Mode to the Internet. Example 1 The following figure depicts an example where both the WAN interfaces on the ZyWALL are connected to enable load balancing on what you select in the Load Balancing Algorithm field. 9.2.3 Least Load First The least load...
... Dial Select this screen afresh. 9.2.2 Configuring Load Balancing To configure load balancing on the ZyWALL, click NETWORK > WAN in the table below. The WAN General screen displays by default. Reset Click Reset to route traffic. The inbound bandwidth utilization is distributed to initiate calls. A new LAN... Mode under Operation Mode to the Internet. Example 1 The following figure depicts an example where both the WAN interfaces on the ZyWALL are connected to enable load balancing on what you select in the Load Balancing Algorithm field. 9.2.3 Least Load First The least load...
User Guide
Page 186
By default, the ZyWALL uses the factory assigned MAC Address to -Point Protocol over version 1 (RFC 1112) but IGMP version 1 is still in a Multicast group - It will not change the setting or upload a different ROM file. Reset Click Reset to begin configuring this option and enter the IP ...address of the computer on the LAN do not need PPPoE software installed, since the ZyWALL does that part of the task. For the service provider, PPPoE...
By default, the ZyWALL uses the factory assigned MAC Address to -Point Protocol over version 1 (RFC 1112) but IGMP version 1 is still in a Multicast group - It will not change the setting or upload a different ROM file. Reset Click Reset to begin configuring this option and enter the IP ...address of the computer on the LAN do not need PPPoE software installed, since the ZyWALL does that part of the task. For the service provider, PPPoE...