Resumen del contenido incluido en la página 1
ZyWALL 2 Plus
Internet Security Appliance
User’s Guide
Version 4.03
12/2007
Edition 1
www.zyxel.com���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 2
��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 3
About This User's Guide About This User's Guide Intended Audience This manual is intended for people who want to configure the ZyWALL using the web configurator or System Management Terminal (SMT). You should have at least a basic knowledge of TCP/IP networking concepts and topology. Related Documentation • Quick Start Guide The Quick Start Guide is designed to help you get up and running right away. It contains information on setting up your network and configuring for Internet access. • W
Resumen del contenido incluido en la página 4
Document Conventions Document Conventions Warnings and Notes These are how warnings and notes are shown in this User’s Guide. Warnings tell you about things that could harm you or your device. Notes tell you other important information (for example, other things you may need to configure or helpful tips) or recommendations. Syntax Conventions • The ZyWALL 2 Plus may be referred to as the “ZyWALL”, the “device” or the “system” in this User’s Guide. • Product labels, screen names, field label
Resumen del contenido incluido en la página 5
Document Conventions Icons Used in Figures Figures in this User’s Guide may use the following generic icons. The ZyWALL icon is not an exact representation of your device. ZyWALL Computer Notebook computer Server DSLAM Firewall Telephone Switch Router ZyWALL 2 Plus User’s Guide 5��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 6
Safety Warnings Safety Warnings For your safety, be sure to read and follow all warning notices and instructions. • Do NOT use this product near water, for example, in a wet basement or near a swimming pool. • Do NOT expose your device to dampness, dust or corrosive liquids. • Do NOT store things on the device. • Do NOT install, use, or service this device during a thunderstorm. There is a remote risk of electric shock from lightning. • Connect ONLY suitable accessories to the device. • Do NO
Resumen del contenido incluido en la página 7
Contents Overview Contents Overview Introduction and Registration ...............................................................................................45 Getting to Know Your ZyWALL .................................................................................................. 47 Introducing the Web Configurator .............................................................................................. 51 Wizard Setup .............................................................
Resumen del contenido incluido en la página 8
Contents Overview SMT .......................................................................................................................................465 Introducing the SMT ................................................................................................................ 467 SMT Menu 1 - General Setup .................................................................................................. 475 WAN and Dial Backup Setup ..............................................
Resumen del contenido incluido en la página 9
Table of Contents Table of Contents About This User's Guide ..........................................................................................................3 Document Conventions............................................................................................................4 Safety Warnings........................................................................................................................6 Contents Overview ..............................................
Resumen del contenido incluido en la página 10
Table of Contents 2.4.6 Port Statistics ........................................................................................................... 64 2.4.7 DHCP Table Screen ................................................................................................ 65 2.4.8 VPN Status ................................................................................................................. 66 2.4.9 Bandwidth Monitor .............................................................
Resumen del contenido incluido en la página 11
Table of Contents Chapter 5 Registration...........................................................................................................................127 5.1 myZyXEL.com overview .................................................................................................... 127 5.1.1 Content Filtering Subscription Service ..................................................................... 127 5.2 Registration .................................................................
Resumen del contenido incluido en la página 12
Table of Contents 8.5 DNS Server Address Assignment ................................................................................... 153 8.6 WAN MAC Address ........................................................................................................... 154 8.7 WAN ................................................................................................................................ 154 8.7.1 WAN Ethernet Encapsulation ..................................................
Resumen del contenido incluido en la página 13
Table of Contents 11.3.2 From VPN Packet Direction ................................................................................... 196 11.3.3 From VPN To VPN Packet Direction ...................................................................... 198 11.4 Security Considerations ...................................................................................................199 11.5 Firewall Rules Example .....................................................................................
Resumen del contenido incluido en la página 14
Table of Contents Chapter 14 IPSec VPN..............................................................................................................................253 14.1 IPSec VPN Overview ..................................................................................................... 253 14.1.1 IKE SA Overview .................................................................................................... 254 14.2 VPN Rules (IKE) ..................................................
Resumen del contenido incluido en la página 15
Table of Contents 15.3 Verifying a Certificate ....................................................................................................... 296 15.3.1 Checking the Fingerprint of a Certificate on Your Computer .................................. 296 15.4 Configuration Summary ................................................................................................... 297 15.5 My Certificates ......................................................................................
Resumen del contenido incluido en la página 16
Table of Contents 17.3 NAT Overview Screen ..................................................................................................... 336 17.4 NAT Address Mapping ................................................................................................... 337 17.4.1 What NAT Does ..................................................................................................... 337 17.4.2 NAT Address Mapping Edit ...........................................................
Resumen del contenido incluido en la página 17
Table of Contents 20.1 DNS Overview ............................................................................................................... 365 20.2 DNS Server Address Assignment ...................................................................................365 20.3 DNS Servers .................................................................................................................... 365 20.4 Address Record .................................................................
Resumen del contenido incluido en la página 18
Table of Contents 21.14.2 SNMP Traps ......................................................................................................... 393 21.14.3 REMOTE MANAGEMENT: SNMP ....................................................................... 393 21.15 DNS ............................................................................................................................. 395 21.16 Introducing Vantage CNM ........................................................................
Resumen del contenido incluido en la página 19
Table of Contents Part V: Logs and Maintenance............................................................ 417 Chapter 25 Logs Screens ........................................................................................................................419 25.1 Configuring View Log ...................................................................................................... 419 25.2 Log Description Example ............................................................................
Resumen del contenido incluido en la página 20
Table of Contents Chapter 27 Introducing the SMT .............................................................................................................467 27.1 Introduction to the SMT ...................................................................................................467 27.2 Accessing the SMT via the Console Port ........................................................................ 467 27.2.1 Initial Screen ..............................................................
