User Guide
Page 3
...Subsequent chapters are needed to configure a feature and how to configure the ZyWALL. E-mail techwriters@zyxel.com.tw if you cannot find specific information in this guide, use the Command-Line Interface (CLI) to configure the ZyWALL using the Web Configurator. Read each chapter carefully for detailed information on... This Guide • Read Chapter 1 on page 33 chapter for an overview of Contents, the Index, or search the PDF file. ZyWALL USG 300 User's Guide 3 Related Documentation • Quick Start Guide The Quick Start Guide is designed to show you require. About This User's ...
...Subsequent chapters are needed to configure a feature and how to configure the ZyWALL. E-mail techwriters@zyxel.com.tw if you cannot find specific information in this guide, use the Command-Line Interface (CLI) to configure the ZyWALL using the Web Configurator. Read each chapter carefully for detailed information on... This Guide • Read Chapter 1 on page 33 chapter for an overview of Contents, the Index, or search the PDF file. ZyWALL USG 300 User's Guide 3 Related Documentation • Quick Start Guide The Quick Start Guide is designed to show you require. About This User's ...
User Guide
Page 36
Console Port You can access it using remote management (for more information about the CLI. Table 2 Console Port Default Settings SETTING VALUE Speed 115200 bps Data Bits 8 Parity None Stop Bit 1 Flow Control Off 36 ZyWALL USG 300 User's Guide See the Command Reference Guide for example, SSH or Telnet) or via the console port...
Console Port You can access it using remote management (for more information about the CLI. Table 2 Console Port Default Settings SETTING VALUE Speed 115200 bps Data Bits 8 Parity None Stop Bit 1 Flow Control Off 36 ZyWALL USG 300 User's Guide See the Command Reference Guide for example, SSH or Telnet) or via the console port...
User Guide
Page 50
... the console in the upper right corner. Figure 15 About 50 ZyWALL USG 300 User's Guide About Click this to display basic information about the ZyWALL. Table 4 Title Bar: Web Configurator Icons LABEL DESCRIPTION Logout Click this to open a popup window that displays the CLI commands sent by the Web Configurator. 3.3.1.1 About Click this to...
... the console in the upper right corner. Figure 15 About 50 ZyWALL USG 300 User's Guide About Click this to display basic information about the ZyWALL. Table 4 Title Bar: Web Configurator Icons LABEL DESCRIPTION Logout Click this to open a popup window that displays the CLI commands sent by the Web Configurator. 3.3.1.1 About Click this to...
User Guide
Page 59
...the selected object. Click the object's name to look at the CLI commands sent by the Web Configurator. Priority If it displays here. Cancel Click Cancel to close the screen. 3.3.3.4 CLI Messages Click CLI to display the object's configuration screen in the main window. Click ...commands appear in its list, otherwise N/A displays. Service This is the type of object. Figure 20 CLI Messages Click Clear to update the information in this screen. ZyWALL USG 300 User's Guide 59 The following . Chapter 3 Web Configurator The fields vary with any entry. Name ...
...the selected object. Click the object's name to look at the CLI commands sent by the Web Configurator. Priority If it displays here. Cancel Click Cancel to close the screen. 3.3.3.4 CLI Messages Click CLI to display the object's configuration screen in the main window. Click ...commands appear in its list, otherwise N/A displays. Service This is the type of object. Figure 20 CLI Messages Click Clear to update the information in this screen. ZyWALL USG 300 User's Guide 59 The following . Chapter 3 Web Configurator The fields vary with any entry. Name ...
User Guide
Page 112
... the object. If you have to delete references to configure the ZyWALL's administrator and user accounts. Table 20 User Types TYPE ABILITIES admin Change ZyWALL configuration (web, CLI) limited-admin Look at ZyWALL configuration (web) user Access network services, browse user-mode commands (CLI) 112 ZyWALL USG 300 User's Guide Table 19 Objects Overview OBJECT WHERE USED user...
... the object. If you have to delete references to configure the ZyWALL's administrator and user accounts. Table 20 User Types TYPE ABILITIES admin Change ZyWALL configuration (web, CLI) limited-admin Look at ZyWALL configuration (web) user Access network services, browse user-mode commands (CLI) 112 ZyWALL USG 300 User's Guide Table 19 Objects Overview OBJECT WHERE USED user...
User Guide
Page 114
... to four syslog servers. Use configuration files to upload, download, delete, or run a series of CLI commands. You can edit configuration files and shell scripts in the ZyWALL and switch between them to identify network problems. MENU ITEM(S) Maintenance > Diagnostics 6.7.5 Shutdown Use this ... and restore the complete configuration of VPN tunnels) and for disconnecting the power. 114 ZyWALL USG 300 User's Guide It can also e-mail you can also capture packets going through the ZyWALL's interfaces so you statistical reports on a daily basis. You can store multiple configuration...
... to four syslog servers. Use configuration files to upload, download, delete, or run a series of CLI commands. You can edit configuration files and shell scripts in the ZyWALL and switch between them to identify network problems. MENU ITEM(S) Maintenance > Diagnostics 6.7.5 Shutdown Use this ... and restore the complete configuration of VPN tunnels) and for disconnecting the power. 114 ZyWALL USG 300 User's Guide It can also e-mail you can also capture packets going through the ZyWALL's interfaces so you statistical reports on a daily basis. You can store multiple configuration...
User Guide
Page 297
...created. it is strict. and so on page 360 for details. You cannot specify the number after the colon if you use the CLI to each type of other than the Ethernet and ppp interface names is a sequential number. Table 59 Relationships Between Different Types of similar ... a lot of Interfaces INTERFACE REQUIRED PORT / INTERFACE auxiliary interface auxiliary port port group physical port Ethernet interface physical port port group ZyWALL USG 300 User's Guide 297 You can specify the number after the colon(:) in the following table and discussed in more detail below.
...created. it is strict. and so on page 360 for details. You cannot specify the number after the colon if you use the CLI to each type of other than the Ethernet and ppp interface names is a sequential number. Table 59 Relationships Between Different Types of similar ... a lot of Interfaces INTERFACE REQUIRED PORT / INTERFACE auxiliary interface auxiliary port port group physical port Ethernet interface physical port port group ZyWALL USG 300 User's Guide 297 You can specify the number after the colon(:) in the following table and discussed in more detail below.
User Guide
Page 311
... restrict bandwidth and packet size; In addition, the ZyWALL always treats the ISP as your ISP account information. ZyWALL USG 300 User's Guide 311 PPPoE/PPTP interfaces are two main differences between the ZyWALL and only one computer. At the time of the gateway (ISP) using CLI commands but not in some ways. There are interfaces...
... restrict bandwidth and packet size; In addition, the ZyWALL always treats the ISP as your ISP account information. ZyWALL USG 300 User's Guide 311 PPPoE/PPTP interfaces are two main differences between the ZyWALL and only one computer. At the time of the gateway (ISP) using CLI commands but not in some ways. There are interfaces...
User Guide
Page 731
... can also set up rules that control when users have to log in to the ZyWALL before it routes traffic for them . 40.1.1 What You Can Do in ZyWALL USG 300 User's Guide 731 CHAPTER 40 User/Group 40.1 Overview This chapter describes how to set up user accounts..., user groups, and user settings for the ZyWALL. User accounts are the types of User Accounts TYPE ABILITIES LOGIN METHOD(S) Admin Users admin Change ZyWALL configuration (web, CLI) WWW...
... can also set up rules that control when users have to log in to the ZyWALL before it routes traffic for them . 40.1.1 What You Can Do in ZyWALL USG 300 User's Guide 731 CHAPTER 40 User/Group 40.1 Overview This chapter describes how to set up user accounts..., user groups, and user settings for the ZyWALL. User accounts are the types of User Accounts TYPE ABILITIES LOGIN METHOD(S) Admin Users admin Change ZyWALL configuration (web, CLI) WWW...
User Guide
Page 732
...(continued) TYPE ABILITIES LOGIN METHOD(S) limited-admin Look at ZyWALL configuration (web, CLI) WWW, TELNET, SSH, Console, Perform basic diagnostics (CLI) Dial-in Access Users user Access network services WWW, TELNET, SSH Browse user-mode commands (CLI) guest Access network services ext-user External user account ext...users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-users) in the ZyWALL. 732 ZyWALL USG 300 User's Guide Once an ext-user user has been authenticated, the ZyWALL tries to set up policies for this session to User. If you do not want to set...
...(continued) TYPE ABILITIES LOGIN METHOD(S) limited-admin Look at ZyWALL configuration (web, CLI) WWW, TELNET, SSH, Console, Perform basic diagnostics (CLI) Dial-in Access Users user Access network services WWW, TELNET, SSH Browse user-mode commands (CLI) guest Access network services ext-user External user account ext...users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-users) in the ZyWALL. 732 ZyWALL USG 300 User's Guide Once an ext-user user has been authenticated, the ZyWALL tries to set up policies for this session to User. If you do not want to set...
User Guide
Page 745
...;leaseTime=222;reauthTime=222 Creating a Large Number of Ext-User Accounts If you plan to log in LDAP and RADIUS servers. Possible Values: 1-1440 (minutes). ZyWALL USG 300 User's Guide 745 Setting up User Attributes in an External Server To set up user attributes, such as reauthentication time, in the user configuration file... show you how you might set up user attributes in . leaseTime Lease Time. reauthTime Reauthentication Time. The following keywords in LDAP or RADIUS servers, use CLI commands, instead of the Web Configurator, to create the accounts.
...;leaseTime=222;reauthTime=222 Creating a Large Number of Ext-User Accounts If you plan to log in LDAP and RADIUS servers. Possible Values: 1-1440 (minutes). ZyWALL USG 300 User's Guide 745 Setting up User Attributes in an External Server To set up user attributes, such as reauthentication time, in the user configuration file... show you how you might set up user attributes in . leaseTime Lease Time. reauthTime Reauthentication Time. The following keywords in LDAP or RADIUS servers, use CLI commands, instead of the Web Configurator, to create the accounts.
User Guide
Page 860
... Server Port You may change the server port number for details). Service Control This specifies from which ZyWALL zones. Version 1 Select the check box to access the ZyWALL CLI using this screen. Select an entry and click Add to allow or disallow the computer with the ...the ZyWALL use both SSH version 1 and version 2 protocols. Table 246 Configuration > System > SSH LABEL DESCRIPTION Enable Select the check box to create a new entry after the selected entry. Edit Double-click an entry or select it and click Remove. Add Click this action. 860 ZyWALL USG 300 User's...
... Server Port You may change the server port number for details). Service Control This specifies from which ZyWALL zones. Version 1 Select the check box to access the ZyWALL CLI using this screen. Select an entry and click Add to allow or disallow the computer with the ...the ZyWALL use both SSH version 1 and version 2 protocols. Table 246 Configuration > System > SSH LABEL DESCRIPTION Enable Select the check box to create a new entry after the selected entry. Edit Double-click an entry or select it and click Remove. Add Click this action. 860 ZyWALL USG 300 User's...
User Guide
Page 862
.... 1 Test whether the SSH service is the first time you are connecting to the ZyWALL using SSH, a message displays prompting you want to the list of the ZyWALL. Figure 571 SSH Example 2: Test $ telnet 192.168.1.1 22 Trying 192.168.1.1... ...authenticity of 192.168.1.1). A message displays indicating the SSH protocol version supported by the ZyWALL. [email protected]'s password: 3 The CLI screen displays next. 50.9 Telnet You can come. 862 ZyWALL USG 300 User's Guide The CLI screen displays next. 50.8.5.2 Example 2: Linux This section describes how to 192.168...
.... 1 Test whether the SSH service is the first time you are connecting to the ZyWALL using SSH, a message displays prompting you want to the list of the ZyWALL. Figure 571 SSH Example 2: Test $ telnet 192.168.1.1 22 Trying 192.168.1.1... ...authenticity of 192.168.1.1). A message displays indicating the SSH protocol version supported by the ZyWALL. [email protected]'s password: 3 The CLI screen displays next. 50.9 Telnet You can come. 862 ZyWALL USG 300 User's Guide The CLI screen displays next. 50.8.5.2 Example 2: Linux This section describes how to 192.168...
User Guide
Page 863
... a service if needed, however you typed. Note that subsequent entries move the rule to specify from which IP addresses the access can come. ZyWALL USG 300 User's Guide 863 Add Click this screen. Chapter 50 System 50.9.1 Configuring Telnet Click Configuration > System > TELNET to create a new entry .... Table 247 Configuration > System > TELNET LABEL DESCRIPTION Enable Select the check box to access the ZyWALL CLI using this action. Select an entry and click Add to configure your ZyWALL for remote Telnet access. Refer to move up by one when you want to put it and ...
... a service if needed, however you typed. Note that subsequent entries move the rule to specify from which IP addresses the access can come. ZyWALL USG 300 User's Guide 863 Add Click this screen. Chapter 50 System 50.9.1 Configuring Telnet Click Configuration > System > TELNET to create a new entry .... Table 247 Configuration > System > TELNET LABEL DESCRIPTION Enable Select the check box to access the ZyWALL CLI using this action. Select an entry and click Add to configure your ZyWALL for remote Telnet access. Refer to move up by one when you want to put it and ...
User Guide
Page 894
... line to run in Figure 586 on page 894 as a comment. 894 ZyWALL USG 300 User's Guide This is shown below . Table 260 Configuration Files and Shell Scripts in the ZyWALL Configuration Files (.conf) Shell Scripts (.zysh) • Resets to run CLI commands manually. Comments in case we want to open up remote management later...
... line to run in Figure 586 on page 894 as a comment. 894 ZyWALL USG 300 User's Guide This is shown below . Table 260 Configuration Files and Shell Scripts in the ZyWALL Configuration Files (.conf) Shell Scripts (.zysh) • Resets to run CLI commands manually. Comments in case we want to open up remote management later...
User Guide
Page 901
.... Find the firmware package at www.zyxel.com in progress! Do not turn off or reset the ZyWALL while the firmware update is the firmware version and the date created. Date File Path Type in the location of the firmware was created. ZyWALL USG 300 User's Guide 901 Figure 591 Maintenance ...want to two minutes. This process may take up to upload. See Section 33.2.1 on page 591 for example, "zywall.bin". You can upload them. See the CLI Reference Guide for uploading firmware. Remember that the version of the file you want to recover the firmware. Version Released...
.... Find the firmware package at www.zyxel.com in progress! Do not turn off or reset the ZyWALL while the firmware update is the firmware version and the date created. Date File Path Type in the location of the firmware was created. ZyWALL USG 300 User's Guide 901 Figure 591 Maintenance ...want to two minutes. This process may take up to upload. See Section 33.2.1 on page 591 for example, "zywall.bin". You can upload them. See the CLI Reference Guide for uploading firmware. Remember that the version of the file you want to recover the firmware. Version Released...
User Guide
Page 915
...reset; (see Section 56.1 on different ways to start and stop the ZyWALL. 54.1.1 What You Need To Know If you applied changes in the CLI, however, you have to use the CLI command reboot to restart the ZyWALL. If the login screen does not appear, type the IP address of... the Web configurator so that remote users can also use the write command to restart the ZyWALL. CHAPTER 54 Reboot 54.1 Overview Use this screen, click Maintenance > Reboot. ZyWALL USG 300 User's ...
...reset; (see Section 56.1 on different ways to start and stop the ZyWALL. 54.1.1 What You Need To Know If you applied changes in the CLI, however, you have to use the CLI command reboot to restart the ZyWALL. If the login screen does not appear, type the IP address of... the Web configurator so that remote users can also use the write command to restart the ZyWALL. CHAPTER 54 Reboot 54.1 Overview Use this screen, click Maintenance > Reboot. ZyWALL USG 300 User's ...
User Guide
Page 917
...for disconnecting the power. Always use the CLI command shutdown to shut down before you manually turn off or remove the power. Figure 607 Maintenance > Shutdown Click the Shutdown button to shutdown the ZyWALL. It does not turn off the power. ZyWALL USG 300 User's Guide 917 You can cause the...Shutdown Screen To access this to shutdown the device in preparation for information on different ways to shut down the ZyWALL. Wait for the device to start and stop the ZyWALL. Not doing so can also use Maintenance > Shutdown > Shutdown or the shutdown command before you turn off ...
...for disconnecting the power. Always use the CLI command shutdown to shut down before you manually turn off or remove the power. Figure 607 Maintenance > Shutdown Click the Shutdown button to shutdown the ZyWALL. It does not turn off the power. ZyWALL USG 300 User's Guide 917 You can cause the...Shutdown Screen To access this to shutdown the device in preparation for information on different ways to shut down the ZyWALL. Wait for the device to start and stop the ZyWALL. Not doing so can also use Maintenance > Shutdown > Shutdown or the shutdown command before you turn off ...
User Guide
Page 922
... • The names of virtual interfaces are derived from the interfaces on which they are called vlan2:1, vlan2:2, and so on . 922 ZyWALL USG 300 User's Guide For example, virtual interfaces created on top of a bridge. You cannot specify the number after the colon if you create a...that uses the object whenever the interface's IP address settings change LAN1's IP address, the ZyWALL automatically updates the corresponding interface-based, LAN1 subnet address object. For example, if you use the CLI to a particular interface no -where near the rates I cannot set up a PPP interface,...
... • The names of virtual interfaces are derived from the interfaces on which they are called vlan2:1, vlan2:2, and so on . 922 ZyWALL USG 300 User's Guide For example, virtual interfaces created on top of a bridge. You cannot specify the number after the colon if you create a...that uses the object whenever the interface's IP address settings change LAN1's IP address, the ZyWALL automatically updates the corresponding interface-based, LAN1 subnet address object. For example, if you use the CLI to a particular interface no -where near the rates I cannot set up a PPP interface,...
User Guide
Page 936
See the CLI Reference Guide for how to recover it by any new capture files you can reset the ZyWALL to set this size larger or delete existing capture files. Change the File Suffix field's setting to avoid this. 56.1 Resetting the ZyWALL If you need to recover the ... to use the command line interface if you may need to its factory-default settings. Note: This procedure removes the current configuration. 936 ZyWALL USG 300 User's Guide My packet capture captured less than I cannot get the firmware uploaded using the commands. Any configuration files or shell scripts that...
See the CLI Reference Guide for how to recover it by any new capture files you can reset the ZyWALL to set this size larger or delete existing capture files. Change the File Suffix field's setting to avoid this. 56.1 Resetting the ZyWALL If you need to recover the ... to use the command line interface if you may need to its factory-default settings. Note: This procedure removes the current configuration. 936 ZyWALL USG 300 User's Guide My packet capture captured less than I cannot get the firmware uploaded using the commands. Any configuration files or shell scripts that...