User Guide
Page 33
... the network and enforce security policies efficiently. Note: Leave 10 cm of the ZyWALL. It explains the front panel ports, LEDs, introduces the management methods, and lists different ways to install the screws. It also provides bandwidth management, Instant Messaging (IM)...to Peer (P2P) control, NAT, port forwarding, policy routing, DHCP server and many other equipment. The ZyWALL's security features include VPN, firewall, anti-virus, content filtering, IDP (Intrusion Detection and Prevention), ADP (Anomaly Detection and Protection), and certificates. ZyWALL USG 1000 User's Guide 33
... the network and enforce security policies efficiently. Note: Leave 10 cm of the ZyWALL. It explains the front panel ports, LEDs, introduces the management methods, and lists different ways to install the screws. It also provides bandwidth management, Instant Messaging (IM)...to Peer (P2P) control, NAT, port forwarding, policy routing, DHCP server and many other equipment. The ZyWALL's security features include VPN, firewall, anti-virus, content filtering, IDP (Intrusion Detection and Prevention), ADP (Anomaly Detection and Protection), and certificates. ZyWALL USG 1000 User's Guide 33
User Guide
Page 35
... run without the hard disk. Flashing The AUX port is not ready or has failed. Flashing The ZyWALL is no traffic on this port. ZyWALL USG 1000 User's Guide 35 SYS Green Off The ZyWALL is sending or receiving packets. On The AUX port is accessing the hard disk. Flashing The...is ready and running. No hard disk is turned on this port. P1, P2 ... Figure 3 ZyWALL Front Panel 1.3.1 Front Panel LEDs The following ways to manage the ZyWALL. Green On The ZyWALL is present. On The hard disk is turned off. Table 1 Front Panel LEDs LED COLOR STATUS DESCRIPTION...
... run without the hard disk. Flashing The AUX port is not ready or has failed. Flashing The ZyWALL is no traffic on this port. ZyWALL USG 1000 User's Guide 35 SYS Green Off The ZyWALL is sending or receiving packets. On The AUX port is accessing the hard disk. Flashing The...is ready and running. No hard disk is turned on this port. P1, P2 ... Figure 3 ZyWALL Front Panel 1.3.1 Front Panel LEDs The following ways to manage the ZyWALL. Green On The ZyWALL is present. On The hard disk is turned off. Table 1 Front Panel LEDs LED COLOR STATUS DESCRIPTION...
User Guide
Page 36
... Interface (CLI) The CLI allows you to use the console port to configure the ZyWALL. Console Port You can access it using remote management (for the console port are some of the ways to start and stop the ZyWALL. 36 ZyWALL USG 1000 User's Guide Table 2 Console Port Default Settings SETTING VALUE Speed 115200 bps Data...
... Interface (CLI) The CLI allows you to use the console port to configure the ZyWALL. Console Port You can access it using remote management (for the console port are some of the ways to start and stop the ZyWALL. 36 ZyWALL USG 1000 User's Guide Table 2 Console Port Default Settings SETTING VALUE Speed 115200 bps Data...
User Guide
Page 43
... 15 Network Access Mode: Full Tunnel Mode 192.168.1.100 https;// LAN (192.168.1.X) Web Mail File Share Web-based Application Non-Web Application Server ZyWALL USG 1000 User's Guide 47 Figure 14 Network Access Mode: Reverse Proxy https;// LAN (192.168.1.X) Web Mail File Share Web-based Application 2.2.2.2 Full Tunnel Mode In... for access. This allows them to install additional client software on the remote user computers for remote users with private IP addresses in the same way as the local network.
... 15 Network Access Mode: Full Tunnel Mode 192.168.1.100 https;// LAN (192.168.1.X) Web Mail File Share Web-based Application Non-Web Application Server ZyWALL USG 1000 User's Guide 47 Figure 14 Network Access Mode: Reverse Proxy https;// LAN (192.168.1.X) Web Mail File Share Web-based Application 2.2.2.2 Full Tunnel Mode In... for access. This allows them to install additional client software on the remote user computers for remote users with private IP addresses in the same way as the local network.
User Guide
Page 55
...user authentication. DNS Configure the DNS server and address records for the ZyWALL. ZyWALL USG 1000 User's Guide 59 RADIUS-Default Configure the default RADIUS settings. Method Create and manage ways of Active Directory Group servers. Schedule Create one-time and recurring ... SSL web application or file sharing objects. Configure the default Active Directory settings. Certificate My Certificates Create and manage the ZyWALL's certificates. Chapter 3 Web Configurator Table 6 Configuration Menu Screens Summary (continued) FOLDER OR LINK TAB FUNCTION User/Group...
...user authentication. DNS Configure the DNS server and address records for the ZyWALL. ZyWALL USG 1000 User's Guide 59 RADIUS-Default Configure the default RADIUS settings. Method Create and manage ways of Active Directory Group servers. Schedule Create one-time and recurring ... SSL web application or file sharing objects. Configure the default Active Directory settings. Certificate My Certificates Create and manage the ZyWALL's certificates. Chapter 3 Web Configurator Table 6 Configuration Menu Screens Summary (continued) FOLDER OR LINK TAB FUNCTION User/Group...
User Guide
Page 59
... Display Here are some of the ways you can manipulate the Web Configurator tables. 1 Click a column heading to sort the table's entries according to that column's criteria. Figure 28 Sorting Table Entries by the Web Configurator. Here are some examples of what you can do: ZyWALL USG 1000 User's Guide 63 These commands appear...
... Display Here are some of the ways you can manipulate the Web Configurator tables. 1 Click a column heading to sort the table's entries according to that column's criteria. Figure 28 Sorting Table Entries by the Web Configurator. Here are some examples of what you can do: ZyWALL USG 1000 User's Guide 63 These commands appear...
User Guide
Page 120
...example shows how to configure a trunk for the connections is working. Plus, if a WAN connection goes down, the ZyWALL still sends traffic through each WAN interface. 124 ZyWALL USG 1000 User's Guide If you can automatically balance the traffic load amongst the available WAN connections to wan1 and wan2 in ... Example ge2: 1 Mbps ge3: 512 Kbps You do not have to send out through the remaining WAN connections. Chapter 7 Tutorials This way the ZyWALL can still access the Internet, your cellular interface is properly configured and your cellular device is 1Mbps (ge2) and 512 Kbps (ge3) ...
...example shows how to configure a trunk for the connections is working. Plus, if a WAN connection goes down, the ZyWALL still sends traffic through each WAN interface. 124 ZyWALL USG 1000 User's Guide If you can automatically balance the traffic load amongst the available WAN connections to wan1 and wan2 in ... Example ge2: 1 Mbps ge3: 512 Kbps You do not have to send out through the remaining WAN connections. Chapter 7 Tutorials This way the ZyWALL can still access the Internet, your cellular interface is properly configured and your cellular device is 1Mbps (ge2) and 512 Kbps (ge3) ...
User Guide
Page 129
...• Since the USG ZyWALLs automatically handle the routing for VPN tunnels, if a USG ZyWALL is a simple example that does not include priorities for different types of traffic. First, set up the following policies. Chapter 7 Tutorials • To have user-configured policy routes so the only way to get traffic destined ...groups of users. This is illustrated in the following example, where you will set ipsec swSkipOverlapIp to on bandwidth management. The ZyWALL has its local network settings, set up the user accounts and user groups in the ZyWALL. ZyWALL USG 1000 User's Guide 133
...• Since the USG ZyWALLs automatically handle the routing for VPN tunnels, if a USG ZyWALL is a simple example that does not include priorities for different types of traffic. First, set up the following policies. Chapter 7 Tutorials • To have user-configured policy routes so the only way to get traffic destined ...groups of users. This is illustrated in the following example, where you will set ipsec swSkipOverlapIp to on bandwidth management. The ZyWALL has its local network settings, set up the user accounts and user groups in the ZyWALL. ZyWALL USG 1000 User's Guide 133
User Guide
Page 210
...Current This field displays the current date and time in to connect a PPPoE/PPTP interface or the auxiliary interface. See Section 9.2.1 on page 220. 214 ZyWALL USG 1000 User's Guide Click the icon to pop-open a list of the device connected to the extension slot (or none if no device is yyyy-mm...interfaces, see Section 10.9 on page 219. See Chapter 40 on . Click the Connect icon to have the ZyWALL try to the Login Users ZyWALL. If the interface cannot use one of these ways to get or to update the IP address for the interface. Current Login User This field displays the user...
...Current This field displays the current date and time in to connect a PPPoE/PPTP interface or the auxiliary interface. See Section 9.2.1 on page 220. 214 ZyWALL USG 1000 User's Guide Click the icon to pop-open a list of the device connected to the extension slot (or none if no device is yyyy-mm...interfaces, see Section 10.9 on page 219. See Chapter 40 on . Click the Connect icon to have the ZyWALL try to the Login Users ZyWALL. If the interface cannot use one of these ways to get or to update the IP address for the interface. Current Login User This field displays the user...
User Guide
Page 217
Reauth Lease T. Force Logout Click this screen. Type This field displays the way the user logged in to the ZyWALL. ZyWALL USG 1000 User's Guide 221 See Chapter 40 on page 689. User ID This field displays the user name of lease time remaining for each user .... IP address This field displays the IP address of Login Users LABEL DESCRIPTION # This field is a sequential value and is currently logged in to the ZyWALL. Chapter 9 Dashboard The following table describes the labels in this icon to end a user's session. Table 27 Dashboard > Number of the computer used ...
Reauth Lease T. Force Logout Click this screen. Type This field displays the way the user logged in to the ZyWALL. ZyWALL USG 1000 User's Guide 221 See Chapter 40 on page 689. User ID This field displays the user name of lease time remaining for each user .... IP address This field displays the IP address of Login Users LABEL DESCRIPTION # This field is a sequential value and is currently logged in to the ZyWALL. Chapter 9 Dashboard The following table describes the labels in this icon to end a user's session. Table 27 Dashboard > Number of the computer used ...
User Guide
Page 220
...> Port Statistics 224 ZyWALL USG 1000 User's Guide You can change the way the log is currently checking and DNSBL statistics. • Use the Log (Section 10.20 on page 261) to look at packet statistics for each Gigabit Ethernet port. To access this screen to view the ZyWALL's current log messages....content filter statistics. • Use the Anti-X Statistics > Content Filter > Cache screen (Section 10.17 on page 255) to view and configure your ZyWALL's URL caching. • Use the Anti-X Statistics > Anti-Spam screen (Section 10.18 on page 258) to start or stop data collection and ...
...> Port Statistics 224 ZyWALL USG 1000 User's Guide You can change the way the log is currently checking and DNSBL statistics. • Use the Log (Section 10.20 on page 261) to look at packet statistics for each Gigabit Ethernet port. To access this screen to view the ZyWALL's current log messages....content filter statistics. • Use the Anti-X Statistics > Content Filter > Cache screen (Section 10.17 on page 255) to view and configure your ZyWALL's URL caching. • Use the Anti-X Statistics > Anti-Spam screen (Section 10.18 on page 258) to start or stop data collection and ...
User Guide
Page 225
... per second, on the interface since it is the auxiliary interface. This is either the static IP address of these ways to get or to a DHCP server. This interface has a static IP address. This is a backup). Click Connect... IP address (if it was last connected. This field displays the current status of packets received by the ZyWALL on the interface in the screen. This field displays the number of the interface. This field displays the reception.... TxPkts RxPkts Tx B/s Rx B/s Speed / Duplex - The interface is currently using. ZyWALL USG 1000 User's Guide 229
... per second, on the interface since it is the auxiliary interface. This is either the static IP address of these ways to get or to a DHCP server. This interface has a static IP address. This is a backup). Click Connect... IP address (if it was last connected. This field displays the current status of packets received by the ZyWALL on the interface in the screen. This field displays the number of the interface. This field displays the reception.... TxPkts RxPkts Tx B/s Rx B/s Speed / Duplex - The interface is currently using. ZyWALL USG 1000 User's Guide 229
User Guide
Page 233
... LABEL DESCRIPTION # This field is a sequential value and is not associated with the ZyWALL through this icon to the ZyWALL. ZyWALL USG 1000 User's Guide 237 Type This field displays the way the user logged in to update the information in to the ZyWALL. Reauth Lease T. Force Logout Click this interface. Refresh Click this button to update...
... LABEL DESCRIPTION # This field is a sequential value and is not associated with the ZyWALL through this icon to the ZyWALL. ZyWALL USG 1000 User's Guide 237 Type This field displays the way the user logged in to update the information in to the ZyWALL. Reauth Lease T. Force Logout Click this interface. Refresh Click this button to update...
User Guide
Page 276
...DHCP services, and they appear on page 363 for background information about these routing protocols. 282 ZyWALL USG 1000 User's Guide Use Ethernet interfaces to control which physical ports exchange routing information with other routers and... However, the routers also generate more routing information is effectively removed from the ZyWALL, but you delete any physical ports assigned to it . Reset Click this ...interface. See Chapter 16 on the front panel of the ZyWALL. They have any of them to the ZyWALL. The ZyWALL supports two routing protocols, RIP and OSPF. Unlike other ...
...DHCP services, and they appear on page 363 for background information about these routing protocols. 282 ZyWALL USG 1000 User's Guide Use Ethernet interfaces to control which physical ports exchange routing information with other routers and... However, the routers also generate more routing information is effectively removed from the ZyWALL, but you delete any physical ports assigned to it . Reset Click this ...interface. See Chapter 16 on the front panel of the ZyWALL. They have any of them to the ZyWALL. The ZyWALL supports two routing protocols, RIP and OSPF. Unlike other ...
User Guide
Page 283
... clients. days, hours, and minutes - This number must also be at least one of the following ways to delete it. # This field is 10.10.10.10, the ZyWALL can use the information (especially the IP address) before it has to use. Static DHCP Table Configure ... Configuration > Network > Interface > Ethernet > Edit (continued) LABEL DESCRIPTION Pool Size Enter the number of IP addresses to another device's MAC address. ZyWALL USG 1000 User's Guide 289 enter a static IP address. The WINS server keeps a mapping table of the WINS (Windows Internet Naming Service) server that is...
... clients. days, hours, and minutes - This number must also be at least one of the following ways to delete it. # This field is 10.10.10.10, the ZyWALL can use the information (especially the IP address) before it has to use. Static DHCP Table Configure ... Configuration > Network > Interface > Ethernet > Edit (continued) LABEL DESCRIPTION Pool Size Enter the number of IP addresses to another device's MAC address. ZyWALL USG 1000 User's Guide 289 enter a static IP address. The WINS server keeps a mapping table of the WINS (Windows Internet Naming Service) server that is...
User Guide
Page 286
... settings that use it displays here. Priority If it is applicable, this field lists the referencing configuration item's position in the network. 292 ZyWALL USG 1000 User's Guide This way, you do not have to your ISP. Service This is the type of setting that references the object. Description If the referencing configuration item...
... settings that use it displays here. Priority If it is applicable, this field lists the referencing configuration item's position in the network. 292 ZyWALL USG 1000 User's Guide This way, you do not have to your ISP. Service This is the type of setting that references the object. Description If the referencing configuration item...
User Guide
Page 287
... used to set up the IP address of the gateway (ISP) using CLI commands but not in some ways. PPPoE/PPTP interfaces are two main differences between the ZyWALL and only one computer. At the time of writing, it is possible to make routing decisions; they can.../PPTP interfaces and other interfaces in the Web Configurator. 13.4.1 PPP Interface Summary This screen lists every PPPoE/PPTP interface. ZyWALL USG 1000 User's Guide 293 In addition, the ZyWALL always treats the ISP as your ISP account information. They have to change ISPs later, you change any network policies....
... used to set up the IP address of the gateway (ISP) using CLI commands but not in some ways. PPPoE/PPTP interfaces are two main differences between the ZyWALL and only one computer. At the time of writing, it is possible to make routing decisions; they can.../PPTP interfaces and other interfaces in the Web Configurator. 13.4.1 PPP Interface Summary This screen lists every PPPoE/PPTP interface. ZyWALL USG 1000 User's Guide 293 In addition, the ZyWALL always treats the ISP as your ISP account information. They have to change ISPs later, you change any network policies....
User Guide
Page 303
...one Ethernet interface, though each Ethernet interface can set different bandwidth limits for each department in many ways. Note: Each VLAN interface is created on top of network) is handled by the switches. ... VLAN 1. • Between the router and VLAN 2. • Between the router and VLAN 3. As a router, the ZyWALL routes traffic between a VLAN and another VLAN. • Better manageability - They have one Ethernet interface. For example, you can... routing decisions. You can change the physical network without changing policies. ZyWALL USG 1000 User's Guide 309
...one Ethernet interface, though each Ethernet interface can set different bandwidth limits for each department in many ways. Note: Each VLAN interface is created on top of network) is handled by the switches. ... VLAN 1. • Between the router and VLAN 2. • Between the router and VLAN 3. As a router, the ZyWALL routes traffic between a VLAN and another VLAN. • Better manageability - They have one Ethernet interface. For example, you can... routing decisions. You can change the physical network without changing policies. ZyWALL USG 1000 User's Guide 309
User Guide
Page 309
...IP addresses that you want to assign a static IP address to the DHCP clients. From ISP - These fields appear if the ZyWALL is optional. Custom Defined - ZyWALL USG 1000 User's Guide 315 Choices are currently using. Relay Server 2 This field is a DHCP Relay. The DHCP server(s) may be ... address), last address (broadcast address) and the interface's IP address. enter a static IP address. Use one of the following ways to one and is a DHCP Server. The WINS server keeps a mapping table of the computer names on another interface received from which the...
...IP addresses that you want to assign a static IP address to the DHCP clients. From ISP - These fields appear if the ZyWALL is optional. Custom Defined - ZyWALL USG 1000 User's Guide 315 Choices are currently using. Relay Server 2 This field is a DHCP Relay. The DHCP server(s) may be ... address), last address (broadcast address) and the interface's IP address. enter a static IP address. Use one of the following ways to one and is a DHCP Server. The WINS server keeps a mapping table of the computer names on another interface received from which the...
User Guide
Page 319
... list of the WINS (Windows Internet Naming Service) server that another interface received from which the ZyWALL begins allocating IP addresses. Enter the number of the following ways to this case, the ZyWALL can assign every IP address allowed by the interface's IP address and subnet mask, except for... option to the DHCP clients. Custom Defined - Choices are currently using. Enable Logs for the DHCP clients to request the information again. ZyWALL USG 1000 User's Guide 325 This number must be at least one of IP addresses to the interface. For example, if the Subnet Mask is ...
... list of the WINS (Windows Internet Naming Service) server that another interface received from which the ZyWALL begins allocating IP addresses. Enter the number of the following ways to this case, the ZyWALL can assign every IP address allowed by the interface's IP address and subnet mask, except for... option to the DHCP clients. Custom Defined - Choices are currently using. Enable Logs for the DHCP clients to request the information again. ZyWALL USG 1000 User's Guide 325 This number must be at least one of IP addresses to the interface. For example, if the Subnet Mask is ...