User Manual
Page 15
...The Active Sessions Screen 164 8.2.4 The VPN Status Screen 165 8.2.5 The DHCP Table Screen 165 8.2.6 The Number of Login Users Screen 166 Chapter 9 Monitor...169 9.1 Overview ...169 9.1.1 What You Can Do in this Chapter 169 9.2 ...Screen 175 9.5 The Session Monitor Screen 178 9.6 The DDNS Status Screen 181 9.7 IP/MAC Binding Monitor ...181 9.8 The Login Users Screen 182 9.9 Cellular Status Screen ...183 9.9.1 More Information ...185 9.10 Application Patrol Statistics 186 9.10.1 Application Patrol... ...206 Chapter 10 Registration ...209 10.1 Overview ...209 ZyWALL USG 50 User's Guide 15
...The Active Sessions Screen 164 8.2.4 The VPN Status Screen 165 8.2.5 The DHCP Table Screen 165 8.2.6 The Number of Login Users Screen 166 Chapter 9 Monitor...169 9.1 Overview ...169 9.1.1 What You Can Do in this Chapter 169 9.2 ...Screen 175 9.5 The Session Monitor Screen 178 9.6 The DDNS Status Screen 181 9.7 IP/MAC Binding Monitor ...181 9.8 The Login Users Screen 182 9.9 Cellular Status Screen ...183 9.9.1 More Information ...185 9.10 Application Patrol Statistics 186 9.10.1 Application Patrol... ...206 Chapter 10 Registration ...209 10.1 Overview ...209 ZyWALL USG 50 User's Guide 15
User Manual
Page 19
... 25.2 Remote User Login ...422 25.3 The SSL VPN User Screens 427 25.4 Bookmarking the ZyWALL 428 25.5 Logging Out of the SSL VPN User Screens 428 Chapter 26 SSL User Application Screens 431 26.1 SSL User Application Screens Overview 431 26.2 The Application Screen 431 Chapter 27 ZyWALL SecuExtender...433 ZyWALL USG 50 User's Guide...
... 25.2 Remote User Login ...422 25.3 The SSL VPN User Screens 427 25.4 Bookmarking the ZyWALL 428 25.5 Logging Out of the SSL VPN User Screens 428 Chapter 26 SSL User Application Screens 431 26.1 SSL User Application Screens Overview 431 26.2 The Application Screen 431 Chapter 27 ZyWALL SecuExtender...433 ZyWALL USG 50 User's Guide...
User Manual
Page 22
... Summary Screen 589 35.3.1 Group Add/Edit Screen 590 35.4 Setting Screen ...591 35.4.1 Default User Authentication Timeout Settings Edit Screens 594 35.4.2 User Aware Login Example 596 35.5 User /Group Technical Reference 597 Chapter 36 Addresses...599 36.1 Overview ...599 22 ZyWALL USG 50 User's Guide
... Summary Screen 589 35.3.1 Group Add/Edit Screen 590 35.4 Setting Screen ...591 35.4.1 Default User Authentication Timeout Settings Edit Screens 594 35.4.2 User Aware Login Example 596 35.5 User /Group Technical Reference 597 Chapter 36 Addresses...599 36.1 Overview ...599 22 ZyWALL USG 50 User's Guide
User Manual
Page 25
... ...690 45.6.4 Configuring WWW Service Control 691 45.6.5 Service Control Rules 695 45.6.6 Customizing the WWW Login Page 695 45.6.7 HTTPS Example ...699 45.7 SSH ...706 45.7.1 How SSH Works ...707 45.7.2 SSH Implementation on the ZyWALL 708 45.7.3 Requirements for Using SSH 708 45.7.4 Configuring SSH ...708 45.7.5 Secure Telnet Using... ...713 45.10 SNMP ...715 45.10.1 Supported MIBs 717 45.10.2 SNMP Traps ...717 45.10.3 Configuring SNMP 717 45.11 Vantage CNM ...719 ZyWALL USG 50 User's Guide 25
... ...690 45.6.4 Configuring WWW Service Control 691 45.6.5 Service Control Rules 695 45.6.6 Customizing the WWW Login Page 695 45.6.7 HTTPS Example ...699 45.7 SSH ...706 45.7.1 How SSH Works ...707 45.7.2 SSH Implementation on the ZyWALL 708 45.7.3 Requirements for Using SSH 708 45.7.4 Configuring SSH ...708 45.7.5 Secure Telnet Using... ...713 45.10 SNMP ...715 45.10.1 Supported MIBs 717 45.10.2 SNMP Traps ...717 45.10.3 Configuring SNMP 717 45.11 Vantage CNM ...719 ZyWALL USG 50 User's Guide 25
User Manual
Page 44
... You must use the OTP (One-Time Password) token to generate a number. Figure 10 Update Admin Info Screen 44 ZyWALL USG 50 User's Guide Enter it is only good for one login. If you log in the One-Time Password field. If your web browser, and go to http://192.168.1.1. By... default, the ZyWALL automatically routes this request to its HTTPS server, and it in . 4 Click Login. Otherwise, the dashboard (Figure 11 on page 44) appears. Chapter 3 Web Configurator 2 Open your account is configured...
... You must use the OTP (One-Time Password) token to generate a number. Figure 10 Update Admin Info Screen 44 ZyWALL USG 50 User's Guide Enter it is only good for one login. If you log in the One-Time Password field. If your web browser, and go to http://192.168.1.1. By... default, the ZyWALL automatically routes this request to its HTTPS server, and it in . 4 Click Login. Otherwise, the dashboard (Figure 11 on page 44) appears. Chapter 3 Web Configurator 2 Open your account is configured...
User Manual
Page 45
... user account, this screen. title bar • B - If you change the default password, the Login screen (Figure 9 on page 44) appears after you log in Figure 11 on page 59); navigation panel • C - Figure 12 Title Bar ZyWALL USG 50 User's Guide 45 otherwise the dashboard appears as illustrated in using its default configuration...
... user account, this screen. title bar • B - If you change the default password, the Login screen (Figure 9 on page 44) appears after you log in Figure 11 on page 59); navigation panel • C - Figure 12 Title Bar ZyWALL USG 50 User's Guide 45 otherwise the dashboard appears as illustrated in using its default configuration...
User Manual
Page 47
...packet statistics. Session Monitor Displays the status of the ZyWALL's DDNS domain names. Login Users Lists the users currently logged into the ZyWALL. IP/MAC Binding Lists the devices that you can re-arrange to configure ZyWALL features. See Chapter 8 on the navigation panel ... for each physical port. Click the arrow in widgets that have received an IP address from ZyWALL interfaces using IP/MAC binding. Traffic Statistics Collect and display traffic statistics. Cellular Status Displays details about the ZyWALL's 3G connection status. ZyWALL USG 50 User's Guide 47
...packet statistics. Session Monitor Displays the status of the ZyWALL's DDNS domain names. Login Users Lists the users currently logged into the ZyWALL. IP/MAC Binding Lists the devices that you can re-arrange to configure ZyWALL features. See Chapter 8 on the navigation panel ... for each physical port. Click the arrow in widgets that have received an IP address from ZyWALL interfaces using IP/MAC binding. Traffic Statistics Collect and display traffic statistics. Cellular Status Displays details about the ZyWALL's 3G connection status. ZyWALL USG 50 User's Guide 47
User Manual
Page 51
... and manage groups of RADIUS servers. RADIUS-Group Create and manage groups of Active Directory Group servers. Login Page Configure how the login and access user screens look. Language Select the Web Configurator language. Schedule Create one-time and recurring ... LDAP settings. Trusted Certificates Import and manage certificates from trusted sources. TELNET Configure telnet server settings for the ZyWALL. Log & Report ZyWALL USG 50 User's Guide 51 RADIUS-Default Configure the default RADIUS settings. Method Create and manage ways of authenticating users....
... and manage groups of RADIUS servers. RADIUS-Group Create and manage groups of Active Directory Group servers. Login Page Configure how the login and access user screens look. Language Select the Web Configurator language. Schedule Create one-time and recurring ... LDAP settings. Trusted Certificates Import and manage certificates from trusted sources. TELNET Configure telnet server settings for the ZyWALL. Log & Report ZyWALL USG 50 User's Guide 51 RADIUS-Default Configure the default RADIUS settings. Method Create and manage ways of authenticating users....
User Manual
Page 126
They have already subscribed for the application patrol service. You can use any HTTP/HTTPS application), the Login screen appears. Figure 75 Configuration > Object > User/Group > Setting > Add (Force User Authentication Policy) When the users try to browse the web (or... must have to log in using the user name and password in using the Web Configurator login screen before they can subscribe using the Configuration > Licensing > Registration screens or using one of the wizards. 126 ZyWALL USG 50 User's Guide Chapter 7 Tutorials Note: The users will have to log in the RADIUS server....
They have already subscribed for the application patrol service. You can use any HTTP/HTTPS application), the Login screen appears. Figure 75 Configuration > Object > User/Group > Setting > Add (Force User Authentication Policy) When the users try to browse the web (or... must have to log in using the user name and password in using the Web Configurator login screen before they can subscribe using the Configuration > Licensing > Registration screens or using one of the wizards. 126 ZyWALL USG 50 User's Guide Chapter 7 Tutorials Note: The users will have to log in the RADIUS server....
User Manual
Page 135
... the ZyWALL's login screen. • Enable EPS checking and move the EPS objects you created to create endpoint security objects for other Windows operating system versions. 7.7.2 Configure the Authentication Policy Click Configuration > Auth. Figure 87 Configuration > Auth. Chapter 7 Tutorials Repeat as needed to the selected list. • Click OK. Policy > Add ZyWALL USG 50 User...
... the ZyWALL's login screen. • Enable EPS checking and move the EPS objects you created to create endpoint security objects for other Windows operating system versions. 7.7.2 Configure the Authentication Policy Click Configuration > Auth. Figure 87 Configuration > Auth. Chapter 7 Tutorials Repeat as needed to the selected list. • Click OK. Policy > Add ZyWALL USG 50 User...
User Manual
Page 136
Policy The following figure shows an error message example when a user's computer does not meet an endpoint security object's requirements. Figure 88 Configuration > Auth. Click Close to return to the Web Configurator) and separate rules that control HTTP and HTTPS 136 ZyWALL USG 50 User's Guide Figure 89 Example: Endpoint Security Error Message 7.8 How to Configure Service Control Service control lets you configure rules that control HTTP and HTTPS management access (to the login screen. Chapter 7 Tutorials 4 Turn on authentication policy and click Apply.
Policy The following figure shows an error message example when a user's computer does not meet an endpoint security object's requirements. Figure 88 Configuration > Auth. Click Close to return to the Web Configurator) and separate rules that control HTTP and HTTPS 136 ZyWALL USG 50 User's Guide Figure 89 Example: Endpoint Security Error Message 7.8 How to Configure Service Control Service control lets you configure rules that control HTTP and HTTPS management access (to the login screen. Chapter 7 Tutorials 4 Turn on authentication policy and click Apply.
User Manual
Page 161
... Section 8.2.6 on page 165. Fallback to lastgood configuration - See Section 8.2.5 on page 166. See Section 8.2.1 on page 583. Current Login User This field displays the user name used to log in to look at the VPN tunnels that can appear. Firmware update OK - ... in progress - The application of lease time remaining. Licensed Service Status # Status Name Version Booting in the ZyWALL. Number of This field displays the number of the users who are . The ZyWALL successfully applied the system default configuration. ZyWALL USG 50 User's Guide 161
... Section 8.2.6 on page 165. Fallback to lastgood configuration - See Section 8.2.5 on page 166. See Section 8.2.1 on page 583. Current Login User This field displays the user name used to log in to look at the VPN tunnels that can appear. Firmware update OK - ... in progress - The application of lease time remaining. Licensed Service Status # Status Name Version Booting in the ZyWALL. Number of This field displays the number of the users who are . The ZyWALL successfully applied the system default configuration. ZyWALL USG 50 User's Guide 161
User Manual
Page 166
... or for dynamic DHCP entries. Chapter 8 Dashboard The following table describes the labels in this screen, click the dashboard's Number of Login Users icon. Interface This field identifies the interface that assigned an IP address to a DHCP client. MAC Address This field displays the... This field displays the IP address currently assigned to sort the table entries by IP address. Figure 120 Dashboard > Number of Login Users 166 ZyWALL USG 50 User's Guide Host Name This field displays the name used to identify this entry is assigned to a DHCP client. The IP...
... or for dynamic DHCP entries. Chapter 8 Dashboard The following table describes the labels in this screen, click the dashboard's Number of Login Users icon. Interface This field identifies the interface that assigned an IP address to a DHCP client. MAC Address This field displays the... This field displays the IP address currently assigned to sort the table entries by IP address. Figure 120 Dashboard > Number of Login Users 166 ZyWALL USG 50 User's Guide Host Name This field displays the name used to identify this entry is assigned to a DHCP client. The IP...
User Manual
Page 167
...field displays the IP address of lease time remaining for each user who is not associated with any entry. Force Logout Click this screen. ZyWALL USG 50 User's Guide 167 See Chapter 35 on page 583. Chapter 8 Dashboard The following table describes the labels in this icon to end ...session. Reauth Lease T. Type This field displays the way the user logged in to the ZyWALL. Table 25 Dashboard > Number of each user. User ID This field displays the user name of Login Users LABEL DESCRIPTION # This field is a sequential value and is currently logged in to ...
...field displays the IP address of lease time remaining for each user who is not associated with any entry. Force Logout Click this screen. ZyWALL USG 50 User's Guide 167 See Chapter 35 on page 583. Chapter 8 Dashboard The following table describes the labels in this icon to end ...session. Reauth Lease T. Type This field displays the way the user logged in to the ZyWALL. Table 25 Dashboard > Number of each user. User ID This field displays the user name of Login Users LABEL DESCRIPTION # This field is a sequential value and is currently logged in to ...
User Manual
Page 169
... System Status > IP/MAC Binding screen (Section 9.7 on page 181) to view a list of devices that have received an IP address from ZyWALL interfaces with IP/MAC binding enabled. • Use the System Status > Login Users screen (Section 9.8 on page 182) to look at a list of the users currently logged into the.... • Use the VPN Monitor > SSL screen (see Section 9.12 on page 193) to list the users currently logged into the VPN SSL client portal. ZyWALL USG 50 User's Guide 169 You can also log out individual users and delete related session information.
... System Status > IP/MAC Binding screen (Section 9.7 on page 181) to view a list of devices that have received an IP address from ZyWALL interfaces with IP/MAC binding enabled. • Use the System Status > Login Users screen (Section 9.8 on page 182) to look at a list of the users currently logged into the.... • Use the VPN Monitor > SSL screen (see Section 9.12 on page 193) to list the users currently logged into the VPN SSL client portal. ZyWALL USG 50 User's Guide 169 You can also log out individual users and delete related session information.
User Manual
Page 182
... the IP address is the index number of the users currently logged into the ZyWALL. Figure 128 Monitor > System Status > Login Users 182 ZyWALL USG 50 User's Guide The ZyWALL learns these from the DHCP client requests. Chapter 9 Monitor established a session with the ZyWALL through this interface. Refresh Click this screen. To access this device on the...
... the IP address is the index number of the users currently logged into the ZyWALL. Figure 128 Monitor > System Status > Login Users 182 ZyWALL USG 50 User's Guide The ZyWALL learns these from the DHCP client requests. Chapter 9 Monitor established a session with the ZyWALL through this interface. Refresh Click this screen. To access this device on the...
User Manual
Page 183
...583. More Information Click this to update the information in the screen. 9.9 Cellular Status Screen This screen displays your 3G connection status. ZyWALL USG 50 User's Guide 183 Refresh Click this button to Section 9.9.1 on your 3G, such as the signal strength, IMEA/ESN and IMSI.... labels in this screen. Chapter 9 Monitor The following table describes the labels in this screen. Table 34 Monitor > System Status > Login Users LABEL DESCRIPTION # This field is a sequential value and is not associated with any interface. This field displays the amount of reauthentication...
...583. More Information Click this to update the information in the screen. 9.9 Cellular Status Screen This screen displays your 3G connection status. ZyWALL USG 50 User's Guide 183 Refresh Click this button to Section 9.9.1 on your 3G, such as the signal strength, IMEA/ESN and IMSI.... labels in this screen. Chapter 9 Monitor The following table describes the labels in this screen. Table 34 Monitor > System Status > Login Users LABEL DESCRIPTION # This field is a sequential value and is not associated with any interface. This field displays the amount of reauthentication...
User Manual
Page 194
...(Bytes) This field displays the number of bytes received by the ZyWALL on this connection. Outbound (Bytes) This field displays the number ...this connection was established. Figure 137 Monitor > Anti-X Statistics > Anti-Virus: Virus Name 194 ZyWALL USG 50 User's Guide Connected Time This field displays the time this SSL VPN connection. Access This field displays... the name of bytes transmitted by the ZyWALL on this connection. Refresh Click Refresh to update this screen. 9.13 The Anti-Virus Statistics Screen ...
...(Bytes) This field displays the number of bytes received by the ZyWALL on this connection. Outbound (Bytes) This field displays the number ...this connection was established. Figure 137 Monitor > Anti-X Statistics > Anti-Virus: Virus Name 194 ZyWALL USG 50 User's Guide Connected Time This field displays the time this SSL VPN connection. Access This field displays... the name of bytes transmitted by the ZyWALL on this connection. Refresh Click Refresh to update this screen. 9.13 The Anti-Virus Statistics Screen ...
User Manual
Page 322
... > NAT LABEL DESCRIPTION Add Click this screen, login to open a screen where you to Know NAT is also known as virtual server, port forwarding, or port translation. The following table describes the labels in this screen allows you can modify the entry's settings. 322 ZyWALL USG 50 User's Guide Figure 192 Configuration > Network > NAT...
... > NAT LABEL DESCRIPTION Add Click this screen, login to open a screen where you to Know NAT is also known as virtual server, port forwarding, or port translation. The following table describes the labels in this screen allows you can modify the entry's settings. 322 ZyWALL USG 50 User's Guide Figure 192 Configuration > Network > NAT...
User Manual
Page 350
... settings. Multiple Endpoint Security Objects You can configure the ZyWALL to send other kinds of computers with HTTP traffic only. The ZyWALL does display the Login screen when users attempt to display the Login screen automatically whenever it routes HTTP traffic for which user... Authentication Policy 21.1.2 What You Need to use multiple endpoint security objects. The ZyWALL does not automatically route the request that prompted the login, however, so users have configured on the ZyWALL. 350 ZyWALL USG 50 User's Guide Finding Out More See Section 7.7 on a traffic flow's source...
... settings. Multiple Endpoint Security Objects You can configure the ZyWALL to send other kinds of computers with HTTP traffic only. The ZyWALL does display the Login screen when users attempt to display the Login screen automatically whenever it routes HTTP traffic for which user... Authentication Policy 21.1.2 What You Need to use multiple endpoint security objects. The ZyWALL does not automatically route the request that prompted the login, however, so users have configured on the ZyWALL. 350 ZyWALL USG 50 User's Guide Finding Out More See Section 7.7 on a traffic flow's source...