Zyxel communications Zywall usg 100 series User manual

Network Security in a Single Box for

Offices of up to 50 People

ŁICSA-certified Firewall

ŁAnti-Virus:

- ICSA-certified ZyXEL Anti-Virus

- Kaspersky

ŁIDP

ŁVPN:

- ICSA-certified IPSec

- SSL

- L2TP

ŁIM/P2P Management

ŁAnti-Spam

ŁUser-aware Configuration

ŁBandwidth Management

ŁMultiple ISP Links

ŁZyWALL OTP Support

Ł3G Support

Benefits

Unified Security Gateway

ZyWALL

USG 100/200

SERIES

Ł

The ICSA-certified, stateful inspection firewall protects the network and vital Internet services like

e-mail,Web browsing, servers, and file transfers.

Ł

For protection against viruses and spyware, choose the ICSA-certified ZyXEL Anti-Virus or one

Ł

The IDP engine protects your network from intrusions such as Trojans and worms.

Ł

Use IPSec VPN to secure connections to branch offices,partners, and headquarters. Road warriors

and telecommuters can use SSL or L2TP VPN to securely access the company network without

having to install VPN software.

Ł

Application Patrol controls who can use what IM and P2P applications like MSN and BitTorrent,

and even who can use specific features within an application.

Ł

The anti-spam feature can tag or discard unsolicited commercial or junk e-mail.

Ł

User-aware configuration lets you control access to applications or resources and apply security

scans by user or user group.

Ł

Bandwidth management lets you prioritize time-sensitive applications like VoIP and video

conferencing.

Ł

Multiple WAN ports let you use multiple ISP links and load balancing to enhance traffic.

throughput, optimize bandwidth usage, and help ensure continuous uptime if a link goes down.

Ł

Along with your regular user name and password, use the ZyWALL OTP (One Time Password).

hardware token* to generate a new PIN code each time you log in.

Ł

Use the extension card slot and USB ports for multiple 3G wireless WAN connections.

The ZyWALL USG 100/200 series is a high performance, deep packet inspection security

platform for small to medium sized offices. It embodies a firewall, Intrusion Detection and

Prevention (IDP), content filtering, anti-virus, anti-spam,and VPN in one box.This multi-layered

security safeguards your organization’s customer and company records, intellectual property,

and critical resources from external and internal threats. Its fanless design allows noiseless heat

dissipation, making it perfect for your desk.

*: Sold separately

cover

Network Security

ZyWALL USG 200 Front ZyWALL USG 100/200 Rear

Network Connectivity

The seven Gigabit Ethernet ports include two WAN ports.The ZyWALL USG 200 OPT port can be used as another WAN, LAN,WLAN, or DMZ port.

The extension card slot lets you add an IEEE 802.11b/g wireless LAN or a 3G wireless WAN connection.There are also two USB ports you can use for 3G

wireless WAN connections.

Internet

WAN13G3G WAN2 OPT Port

LAN1 LAN1LAN2

WAN

DMZ

SSL VPN

L2TP VPN

IPSec VPN

WAN2

Internet

WAN

Internet

IEEE 802.11b/g

USB 3G

PCMCIA Card

ZyWALLUSG200

LAN1/LAN2/DMX

WAN1

USB

WAN2OPT

PWR

SYS

AUX

RESET

CARD

P1 P2P3P4P5 P6P7

WAN1

ZyWALLUSG200

LAN/WLAN/DMX

WAN1

USB

WAN2OPT

PWR

SYS

AUX

RESET

CARD

P1P2P3P4P5P6P7

UNIFIEDSECURITYGATEWAY

File ShareFile Share

IM/P2P

Model Comparison

Features Common to Both Models

ICSA-certified Firewall

• Zone-Based Access Control List

• Security Zones

• Stateful Packet Inspection

• DoS/DDoS Protection

• User-Aware Policy Enforcement

• ALG Supports Custom Ports

Intrusion Detection and Prevention

• In-line Mode (Routing/Bridge)

• Zone-Based IDP Inspection

• Customizable Protection Profile

• Signature-based Deep Packet Inspection

• Automatic Signature Updates**

• Custom Signatures

• Traffic Anomaly Detection and Protection

• Flooding Detection and Protection

• Protocol Anomaly Detection and Protection:

HTTP/ICMP/TCP/UDP

Anti-Virus

• ICSA-Certified ZyXEL Anti-Virus or Kaspersky

Anti-Virus

• Stream-Based Anti-Virus

• Covers Top Active Viruses in the Wild List

• Scans HTTP/FTP/SMTP/POP3/IMAP4

• Automatic Signature Updates**

• No File Size Limitation

• Blacklist/Whitelist Support

Hybrid VPN

ICSA-certified IPSec VPN

• Encryption: AES/3DES/DES

• Authentication: SHA-1/MD5

• Key Management: Manual Key/IKE

• Perfect Forward Secrecy: DH Group 1/2/5

• NAT over IPSec VPN

• Dead peer Detection/Relay Detection

• PKI (X.509) Certificate Support

• Certificate Enrollment (CMP/SCEP)

• Xauth Authentication

• L2TP over IPSec Support

SSL VPN

• Clientless Secure Remote Access

(Reverse Proxy Mode)

• SecuExtender (Full Tunnel Mode)

• Unified Policy Enforcement

• Supports Two-factor Authentication

• Customizable User Portal

Application Patrol

• IM/P2P Granular Access Control

• Apply Schedules, Bandwidth Management

• User-Aware

• IM/P2P Up-to-Date Support (based on IDP

signatures)**

• Real-Time Statistical Reports

Bandwidth Management

• Bandwidth Priority

• Policy-Based Traffic Shaping

• Maximum/Guaranteed Bandwidth

• Bandwidth Borrowing

Anti-Spam

• Zone to Zone Protection

• Transparently intercept mail via SMTP/POP3

protocols

• Blacklist/Whitelist support

• Support DNSBL checking

• Statistics report

High Availability

• Device HA (Active-Passive Mode)

• Device Failure Detection

• Link Monitoring

• Auto-Sync Configurations

• Multiple WAN Load Balancing

• VPN HA (Redundant Remote VPN Gateways)

Content Filtering

• URL Blocking, Keyword Blocking

• Exempt List (Blacklist and Whitelist)

• Blocks Java Applet,Cookies and Active X

• Dynamic URL Filtering Database (Powered by

BlueCoat)**

User Licenses

• Unlimited

Networking

• Routing Mode/Bridge Mode/Mixed Mode

• Layer 2 Port Grouping

• Ethernet/PPPoE/PPTP

• Tagged VLAN (802.1Q)

• Virtual Interface (Alias Interface)

• Policy-Based Routing (User-Aware)

• Policy-Based NAT (SNAT/DNAT)

• RIP v1/v2

• OSPF

• IP Multicasting (IGMP v1/v2)

• DHCP Client/Server/Relay

• Built-in DNS Server

• Dynamic DNS

Authentication

• Internal User Database

• Microsoft Windows Active Directory

• External LDAP/RADIUS User Database

• ZyWALL OTP (One Time Password)***

• Forced User Authentication (Transparent

Authentication)

System Management

• Role-Based Administration

• Multiple Administrator Login

• Multi-Lingual Web GUI (HTTPS/HTTP)

• Object-Based Configuration

• Command Line Interface (Console/Web

Console/SSH/TELNET)

• Comprehensive Local Logging

• Syslog (send to up to 4 servers)

• E-mail Alert (send to up to 2 servers)

• SNMP v2c (MIB-II)

• Real-Time Traffic Monitoring

• System Configuration Rollback

• Text-Based Configuration File

• Firmware upgrade via FTP/FTP-TLS/Web GUI

• Advanced Reporting (Vantage Report)

• Centralized Network Management (Vantage CNM)

3G Support

• Advanced Wireless Security Transmission with WEP

Encryption and WPA/WPA2 Support

• PCMCIA: Sierra Wireless AC850*

• USB: Huawei E220*

Model Name ZyWALL USG 100 ZyWALL USG 200

p to 25

p to 50

00 M

50 M

0 Mbps

5 Mbps

4 Mbps

0 Mbps

000

, up

radeable to 5**

, up

radeable to 10**

WAN

WAN2

AN1,WAN2

LAN

WLAN

DMZ

PT Port

(

Use as WAN/LAN1/LAN2/DMZ

)

LAN

WLAN

DMZ Ports

*: Not included.

**: Requires a valid subscription.

***: Sold separately.

inside

Specifications

Certifications

• ICSA Certified Firewall

• ICSA Certified IPSec VPN

• ICSA Certified Anti-Virus

Standards Compliance

• HSF (Hazardous Substance Free): RoHS and WEEE

• EMC: FCC Part 15 Class B, CE-EMC Class B, C-Tick

Class B,VCCI Class B

• Safety: CSA International (ANS/UL60950-1,

CSA60950-1, EN60950-1, IEC60950-1)

Hardware Specifications

• Memory size: 256 MB DDR2 RAM/256 MB Flash

• Interface: GbE x 7 (RJ-45 with LED)

• Interface: Auto-negotiation and Auto MDI/MDI-X

• Console: RS-232 (DB9F)

• AUX: RS-232 (DB9M)

• LED Indicator: PWR, SYS, AUX, CARD

• Reset Button

• Expansion Card Slot

• 2 USB Ports

Physical Specifications

• Rack Mountable (rack-mount kit included)

• Dimensions: 242 (W) x 175 (D) x 35.5 (H) mm/

9.5 (W) x 6.9 (D) x 1.4 (H) inch

• Weight:1.2 Kg/2.6 lbs

Environmental Specifications

• Operating temperature: 0ºC ~ 50ºC/32ºF ~ 122ºF

• Storage temperature: -30ºC ~ 60ºC/-22ºF ~ 140ºF

• Operating humidity: 5% ~ 90% (non-

condensing)

Power Requirements

• Input: 100 ~ 240 V; 1.2 A,50 ~ 60 Hz

• Output: 12 V; 3.5 A

For more product information, visit us on the web at www.ZyXEL.com

65-100-010011B 05/08

trademarks of ZyXEL Communications Corp. All other brands, product names, or trademarks mentioned

are the property of their respective owners. All specifications are subject to change without notice.

ZyXEL is a top-ranked green enterprise whose care

for the environment is internationally recognized.

ZyXEL products use toxin-free,energy-efficient and

easily-recyclable materials.

back

Other manuals for ZyWALL USG 100 Series

This manual suits for next models

Table of contents

Other ZyXEL Communications Gateway manuals

ZyXEL Communications

ZyXEL Communications VMG3927-T50K User manual

ZyXEL Communications

ZyXEL Communications C1000Z User manual

ZyXEL Communications

ZyXEL Communications P-870HW-51A V2 User manual

ZyXEL Communications

ZyXEL Communications ZyXEL Vantage VSG-1000 User manual

ZyXEL Communications

ZyXEL Communications P-661H-D Series User manual

ZyXEL Communications

ZyXEL Communications P-660HW-Tx v3 Series User manual

ZyXEL Communications

ZyXEL Communications P-660H-61 User manual

ZyXEL Communications

ZyXEL Communications Internet Security Gateway 10~100 Series User manual

ZyXEL Communications

ZyXEL Communications P-660HW-DX V2 - V3.40 User manual

ZyXEL Communications

ZyXEL Communications AMG1001-T Series User manual

ZyXEL Communications

ZyXEL Communications P-660HN-51 - User manual

ZyXEL Communications

ZyXEL Communications CNA100 User manual

ZyXEL Communications

ZyXEL Communications ZYWALL 1050 - V2.00 EDITION 1 User manual

ZyXEL Communications

ZyXEL Communications VMG3625-T20A User manual

ZyXEL Communications

ZyXEL Communications PX7511-B0 User manual

ZyXEL Communications

ZyXEL Communications P-663HN-51 User manual

ZyXEL Communications

ZyXEL Communications VSG1435 User manual

ZyXEL Communications

ZyXEL Communications EMG8726-B10A User manual

ZyXEL Communications

ZyXEL Communications NSG Series User manual

ZyXEL Communications

ZyXEL Communications ZyWALL USG 2000 User manual

ZyXEL Communications

ZyXEL Communications P-324 User manual

ZyXEL Communications

ZyXEL Communications P-660HW-Tx v3 Series User manual

ZyXEL Communications

ZyXEL Communications ZyWALL USG 20/20W Series User manual

ZyXEL Communications

ZyXEL Communications ZyXEL ZyWALL 2WE User manual

Popular Gateway manuals by other brands

Milesight

Milesight Urbana GO03 quick start guide

IPCOMM

IPCOMM IPC191X1 General Operating, Maintenance, and Installation Manual

SETECNA

SETECNA MB-OTG Technical manual

EPH Controls

EPH Controls EMBER GW01 instructions

Crestron

Crestron AM-100 AirMedia Quick start guides

Patton

Patton SmartNode 4110 Series user manual

TEKTELIC Communications

TEKTELIC Communications T0007915 user guide

Grandstream Networks

Grandstream Networks BroadWorks BroadSoft GXW-400X supplementary guide

Psion Teklogix

Psion Teklogix 9160 G2 user manual

CTI Products

CTI Products RadioPro installation guide

Gingerway

Gingerway GW-9323 instruction manual

turck

turck BL67-PG-EN-IP user manual

Lantronix

Lantronix G520 Series quick start

Dynamix

Dynamix DW-01 Plus H user manual

Arris

Arris Touchstone TG3492LG-LIB user guide

D-Link

D-Link DFL-M510 quick guide

Alcatel-Lucent

Alcatel-Lucent OmniAccess 5740 user guide

Accton Technology

Accton Technology CheetahAccess AC-IG1004 user guide

ZyXEL Communications ZyWALL USG 100 Series User manual

Popular Gateway manuals by other brands