Zyxel communications Zywall 2 wg User manual

www.zyxel.com

ZyWALL 2WG

Internet Security Appliance

User’s Guide

Version 4.03

12/2007

Edition 1

About This User's Guide

ZyWALL 2WG User’s Guide 3

About This User's Guide

Intended Audience

This manual is intended for people who want to configure the ZyWALL using the web

configurator or System Management Terminal (SMT). You should have at least a basic

knowledge of TCP/IP networking concepts and topology.

Related Documentation

• Quick Start Guide

The Quick Start Guide is designed to help you get up and running right away. It contains

information on setting up your network and configuring for Internet access.

• Web Configurator Online Help

Embedded web help for descriptions of individual screens and supplementary

information.

• Supporting Disk

Refer to the included CD for support documents.

• ZyXEL Web Site

Please refer to www.zyxel.com for additional support documentation and product

certifications.

User Guide Feedback

Help us help you. Send all User Guide-related comments, questions or suggestions for

improvement to the following address, or use e-mail instead. Thank you!

The Technical Writing Team,

ZyXEL Communications Corp.,

6 Innovation Road II,

Science-Based Industrial Park,

Hsinchu, 300, Taiwan.

E-mail: [email protected]

Document Conventions

ZyWALL 2WG User’s Guide

Document Conventions

Warnings and Notes

These are how warnings and notes are shown in this User’s Guide.

1Warnings tell you about things that could harm you or your device.

"Notes tell you other important information (for example, other things you may

need to configure or helpful tips) or recommendations.

Syntax Conventions

• The ZyWALL 2WG may be referred to as the “ZyWALL”, the “device” or the “system” in

this User’s Guide.

• Product labels, screen names, field labels and field choices are all in bold font.

• A key stroke is denoted by square brackets and uppercase text, for example, [ENTER]

means the “enter” or “return” key on your keyboard.

• “Enter” means for you to type one or more characters and then press the [ENTER] key.

“Select” or “choose” means for you to use one of the predefined choices.

• A right angle bracket ( > ) within a screen name denotes a mouse click. For example,

Maintenance > Log > Log Setting means you first click Maintenance in the navigation

panel, then the Log sub menu and finally the Log Setting tab to get to that screen.

• Units of measurement may denote the “metric” value or the “scientific” value. For

example, “k” for kilo may denote “1000” or “1024”, “M” for mega may denote “1000000”

or “1048576” and so on.

• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other words”.

Document Conventions

ZyWALL 2WG User’s Guide 5

Icons Used in Figures

Figures in this User’s Guide may use the following generic icons. The ZyWALL icon is not an

exact representation of your device.

ZyWALL Computer Notebook computer

Server DSLAM Firewall

Telephone Switch Router

Safety Warnings

ZyWALL 2WG User’s Guide

Safety Warnings

1For your safety, be sure to read and follow all warning notices and instructions.

• Do NOT use this product near water, for example, in a wet basement or near a swimming

pool.

• Do NOT expose your device to dampness, dust or corrosive liquids.

• Do NOT store things on the device.

• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk

of electric shock from lightning.

• Connect ONLY suitable accessories to the device.

• Do NOT open the device or unit. Opening or removing covers can expose you to

dangerous high voltage points or other risks. ONLY qualified service personnel should

service or disassemble this device. Please contact your vendor for further information.

• Make sure to connect the cables to the correct ports.

• Place connecting cables carefully so that no one will step on them or stumble over them.

• Always disconnect all cables from this device before servicing or disassembling.

• Use ONLY an appropriate power adaptor or cord for your device.

• Connect the power adaptor or cord to the right supply voltage (for example, 110V AC in

North America or 230V AC in Europe).

• Do NOT remove the plug and connect it to a power outlet by itself; always attach the plug

to the power adaptor first before connecting it to a power outlet.

• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the

product where anyone can walk on the power adaptor or cord.

• Do NOT use the device if the power adaptor or cord is damaged as it might cause

electrocution.

• If the power adaptor or cord is damaged, remove it from the power outlet.

• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a

new one.

• Do not use the device outside, and make sure all the connections are indoors. There is a

remote risk of electric shock from lightning.

• CAUTION: RISK OF EXPLOSION IF BATTERY (on the motherboard) IS REPLACED

BY AN INCORRECT TYPE. DISPOSE OF USED BATTERIES ACCORDING TO THE

INSTRUCTIONS. Dispose them at the applicable collection point for the recycling of

electrical and electronic equipment. For detailed information about recycling of this

product, please contact your local city office, your household waste disposal service or the

store where you purchased the product.

• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your

device.

Safety Warnings

ZyWALL 2WG User’s Guide 7

• Antenna Warning! This device meets ETSI and FCC certification requirements when

using the included antenna(s). Only use the included antenna(s).

• If you wall mount your device, make sure that no electrical lines, gas or water pipes will

be damaged.

This product is recyclable. Dispose of it properly.

Safety Warnings

ZyWALL 2WG User’s Guide

Contents Overview

ZyWALL 2WG User’s Guide 9

Contents Overview

Introduction ............................................................................................................................ 51

Getting to Know Your ZyWALL .................................................................................................. 53

Introducing the Web Configurator .............................................................................................. 57

Wizard Setup ............................................................................................................................. 81

Tutorial ..................................................................................................................................... 101

Registration ............................................................................................................................. 141

Network and Wireless ..........................................................................................................145

LAN Screens ........................................................................................................................... 147

Bridge Screens ........................................................................................................................ 159

WAN Screens .......................................................................................................................... 165

DMZ Screens ........................................................................................................................... 201

Wireless LAN ............................................................................................................................211

Security ................................................................................................................................. 237

Firewall .................................................................................................................................... 239

Content Filtering Screens ........................................................................................................ 271

Content Filtering Reports ......................................................................................................... 293

IPSec VPN ............................................................................................................................... 301

Certificates ............................................................................................................................... 349

Authentication Server .............................................................................................................. 379

Advanced .............................................................................................................................. 383

Network Address Translation (NAT) ........................................................................................ 385

Static Route ............................................................................................................................. 401

Policy Route ............................................................................................................................ 405

Bandwidth Management ...........................................................................................................411

DNS ......................................................................................................................................... 427

Remote Management ..............................................................................................................439

UPnP ....................................................................................................................................... 461

Custom Application .................................................................................................................. 471

ALG Screen ............................................................................................................................. 473

Logs and Maintenance ........................................................................................................ 479

Logs Screens ........................................................................................................................... 481

Maintenance .............................................................................................................................511

Contents Overview

ZyWALL 2WG User’s Guide

SMT ....................................................................................................................................... 529

Introducing the SMT ................................................................................................................ 531

SMT Menu 1 - General Setup .................................................................................................. 539

WAN and Dial Backup Setup ................................................................................................... 545

LAN Setup ............................................................................................................................... 559

Internet Access ........................................................................................................................ 565

DMZ Setup .............................................................................................................................. 571

Route Setup ............................................................................................................................. 575

Wireless Setup ........................................................................................................................ 579

Remote Node Setup ................................................................................................................ 583

IP Static Route Setup .............................................................................................................. 591

Network Address Translation (NAT) ........................................................................................ 595

Introducing the ZyWALL Firewall ............................................................................................. 615

Filter Configuration .................................................................................................................. 617

SNMP Configuration ................................................................................................................ 633

System Information & Diagnosis ............................................................................................. 635

Firmware and Configuration File Maintenance ........................................................................ 647

System Maintenance Menus 8 to 10 ....................................................................................... 661

Remote Management ..............................................................................................................669

IP Policy Routing ..................................................................................................................... 673

Call Scheduling ........................................................................................................................ 681

Troubleshooting and Specifications .................................................................................. 685

Troubleshooting ....................................................................................................................... 687

Product Specifications ............................................................................................................. 693

Appendices and Index ......................................................................................................... 703

Other manuals for ZYWALL 2 WG

This manual suits for next models

Table of contents

Other ZyXEL Communications Software manuals

ZyXEL Communications

ZyXEL Communications PLA-470 Instruction Manual

ZyXEL Communications

ZyXEL Communications ENTERPRISE NETWORK CENTER User manual

ZyXEL Communications

ZyXEL Communications ENTERPRISE NETWORK CENTER User manual

ZyXEL Communications

ZyXEL Communications Version 1.03 User manual

ZyXEL Communications

ZyXEL Communications PLA-470 Instruction Manual

ZyXEL Communications

ZyXEL Communications 1 User manual

ZyXEL Communications

ZyXEL Communications P-650R User manual

ZyXEL Communications

ZyXEL Communications VANTAGE REPORT 2.3 - User manual

ZyXEL Communications

ZyXEL Communications VANTAGE REPORT 2.3 - User manual

ZyXEL Communications

ZyXEL Communications Vantage CNM 2.3 User manual

ZyXEL Communications

ZyXEL Communications VANTAGE REPORT - User manual

ZyXEL Communications

ZyXEL Communications NetAtlas Workgroup User manual

ZyXEL Communications

ZyXEL Communications VANTAGE CNM User manual

ZyXEL Communications

ZyXEL Communications IPC-3605N User manual

ZyXEL Communications

ZyXEL Communications G-360 V2 Manual

ZyXEL Communications

ZyXEL Communications IPSEC VPN CLIENT User manual

ZyXEL Communications

ZyXEL Communications VANTAGE CNM QUICK START GUIDE - 1 User manual

ZyXEL Communications

ZyXEL Communications P-650R User manual

ZyXEL Communications

ZyXEL Communications NETATLAS ENTERPRISE - User manual

ZyXEL Communications

ZyXEL Communications Auto Configuration Server Vantage Access User manual

ZyXEL Communications

ZyXEL Communications P-650R Manual

ZyXEL Communications

ZyXEL Communications Dimension ES-3124 User manual

ZyXEL Communications

ZyXEL Communications VANTAGE REPORT - V3 User manual

ZyXEL Communications

ZyXEL Communications VANTAGE CNM 2.0 - User manual

Popular Software manuals by other brands

Garmin

Garmin 010-10844-00 - Mobile XT - GPS Software null

COMPRO

COMPRO COMPROFM manual

Muratec

Muratec OFFICEBRIDGE ONLINE user guide

Oracle

Oracle Contact Center Anywhere 8.1 installation guide

Adobe

Adobe 65007312 - Photoshop Lightroom Programmer's guide

Avaya

Avaya NULL One-X for RIM Blackberry user guide

HP ProLiant BL420c user guide

PS Audio

PS Audio PowerPlay Programming manual

Brady

Brady LOCKOUT PRO 3.0 Administrator's guide

Avaya

Avaya Interaction Center user guide

Texas Instruments

Texas Instruments TI-83 Plus Silver Edition Guide book

Novell

Novell GROUPWISE 8 - INTERNET AGENT manual

Oracle

Oracle Application 9i Configuration guide

Acer

Acer RDM user guide

Canon

Canon Vixia HF21 instruction manual

Canon

Canon ZR950 instruction manual

Samsung

Samsung Auto Backup user manual

Polycom

Polycom Vortex EF2201 Application note

ZyXEL Communications ZYWALL 2 WG User manual

Popular Software manuals by other brands