Zyxel VPN2S Service Manual
Default Login Details
User’s Guide
VPN2S
ZyWALL VPN Firewall
LAN IP Address http://192.168.1.1
User Name admin
Password 1234
Version 1.2 Edition 1, 03/2019
Copyright © 2019 Zyxel Communications Corporation
IMPORTANT!
READ CAREFULLY BEFORE USE.
KEEP THIS GUIDE FOR FUTURE REFERENCE.
This is a User’s Guide for a series of products. Not all products support all firmware features. Screenshots
and graphics in this book may differ slightly from your product due to differences in your product
firmware or your computer operating system. Every effort has been made to ensure that the information
in this manual is accurate.
Related Documentation
•Quick Start Guide
The Quick Start Guide shows how to connect the VPN2S and access the Web Configurator wizards. It
contains information on setting up your network and configuring for Internet access.
•More Information
Go to support.zyxel.com to find other information on the
VPN2S.
VPN2S User’s Guide
2
Document Conventions
VPN2S
Warnings and Notes
These are how warnings and notes are shown in this guide.
Warnings tell you about things that could harm you or your device.
Note: Notes tell you other important information (for example, other things you may need to
configure or helpful tips) or recommendations.
Syntax Conventions
• All models in this series may be referred to as the “VPN2S” in this guide.
• Product labels, screen names, field labels and field choices are all in bold font.
• A right angle bracket ( > ) within a screen name denotes a mouse click. For example, Configuration >
Log / Report > Log Settings means you first click Configuration in the navigation panel, then the Log
sub menu and finally the Log Settings tab to get to that screen.
Icons Used in Figures
Figures in this user guide may use the following generic icons. The VPN2S icon is not an exact
representation of your device.
VPN2S Generic Router Wireless Router / Access Point
Switch Firewall USB Storage Device
USB Dongle Cell Tower Printer
Server
VPN2S User’s Guide
3
Contents Overview
Contents Overview
User’s Guide ......................................................................................................................................13
Introducing the VPN2S ......................................................................................................................... 14
The Web Configurator ......................................................................................................................... 22
Wizard .................................................................................................................................................... 29
Technical Reference ........................................................................................................................47
Dashboard ............................................................................................................................................ 48
WAN/Internet ........................................................................................................................................ 51
LAN ......................................................................................................................................................... 78
Routing ................................................................................................................................................. 102
Network Address Translation (NAT) ................................................................................................... 116
Firewall ................................................................................................................................................. 132
Security Service ................................................................................................................................... 152
VPN ....................................................................................................................................................... 160
Bandwidth Management .................................................................................................................. 196
Network Management ...................................................................................................................... 214
System .................................................................................................................................................. 217
Log / Report ....................................................................................................................................... 219
Service / License ................................................................................................................................. 229
Device Name ...................................................................................................................................... 231
Host Name List ..................................................................................................................................... 233
Date / Time .......................................................................................................................................... 235
User Account ...................................................................................................................................... 238
USB Storage ......................................................................................................................................... 241
Diagnostic ........................................................................................................................................... 245
Firmware Upgrade .............................................................................................................................. 249
Backup / Restore ................................................................................................................................ 253
Language ............................................................................................................................................ 255
Restart / Shutdown ............................................................................................................................. 256
Troubleshooting .................................................................................................................................. 257
VPN2S User’s Guide
4
Table of Contents
Table of Contents
Document Conventions ......................................................................................................................3
Contents Overview .............................................................................................................................4
Table of Contents .................................................................................................................................5
Part I: User’s Guide.......................................................................................... 13
Chapter 1
Introducing the VPN2S.......................................................................................................................14
1.1 Overview ......................................................................................................................................... 14
1.2 Registration at myZyxel .................................................................................................................. 14
1.3 Ways to Manage the VPN2S ......................................................................................................... 15
1.4 Good Habits for Managing the VPN2S ........................................................................................ 16
1.5 Applications for the VPN2S ............................................................................................................ 16
1.5.1 Internet Access ...................................................................................................................... 16
1.5.2 VPN2S’s USB Support ............................................................................................................. 17
1.5.3 IPv6 Routing ........................................................................................................................... 18
1.5.4 VPN Connectivity .................................................................................................................. 18
1.5.5 Load Balancing ..................................................................................................................... 19
1.6 LEDs (Lights) ..................................................................................................................................... 19
1.7 The RESET Button ............................................................................................................................. 21
Chapter 2
The Web Configurator........................................................................................................................22
2.1 Overview ......................................................................................................................................... 22
2.1.1 Accessing the Web Configurator ....................................................................................... 22
2.2 Web Configurator Layout .............................................................................................................. 24
2.2.1 Title Bar ................................................................................................................................... 25
2.2.2 Navigation Panel .................................................................................................................. 25
2.2.3 Main Window ......................................................................................................................... 28
Chapter 3
Wizard .................................................................................................................................................29
3.1 Overview ......................................................................................................................................... 29
3.2 Wizard Basic Setup ......................................................................................................................... 30
3.3 Wizard IPsec VPN Setup ................................................................................................................. 35
3.3.1 VPN Express Settings ............................................................................................................. 36
VPN2S User’s Guide
5
Table of Contents
3.3.2 VPN Advanced Settings ....................................................................................................... 38
3.4 Wizard IPv6 Setup ........................................................................................................................... 43
Part II: Technical Reference........................................................................... 47
Chapter 4
Dashboard..........................................................................................................................................48
4.1 Overview ......................................................................................................................................... 48
4.2 The Dashboard Screen .................................................................................................................. 48
Chapter 5
WAN/Internet......................................................................................................................................51
5.1 Overview ......................................................................................................................................... 51
5.1.1 What You Can Do in this Chapter ....................................................................................... 52
5.1.2 What You Need to Know ..................................................................................................... 52
5.1.3 Before You Begin ................................................................................................................... 54
5.2 The WAN Status Screen .................................................................................................................. 55
5.3 The WAN Setup Screen .................................................................................................................. 55
5.3.1 Internet Connection: Add/Edit ............................................................................................56
5.4 The Mobile Screen .......................................................................................................................... 64
5.5 The Port Setting Screen .................................................................................................................. 68
5.6 The Multi-WAN Screen .................................................................................................................... 69
5.6.1 Multi-WAN: Edit ...................................................................................................................... 70
5.6.2 How to Configure Multi-WAN for Load Balancing and Failover ...................................... 71
5.7 The Dynamic DNS screen .............................................................................................................. 72
5.7.1 Dynamic DNS: Add/Edit ....................................................................................................... 73
5.8 Technical Reference ...................................................................................................................... 75
Chapter 6
LAN ......................................................................................................................................................78
6.1 Overview ......................................................................................................................................... 78
6.1.1 What You Can Do in this Chapter ....................................................................................... 78
6.1.2 What You Need To Know ..................................................................................................... 79
6.1.3 Before You Begin ................................................................................................................... 80
6.2 The LAN Status Screen ................................................................................................................... 80
6.3 The LAN Setup Screen .................................................................................................................... 81
6.3.1 LAN Setup: Edit ...................................................................................................................... 82
6.3.2 LAN Setup IPv6: Edit .............................................................................................................. 84
6.4 The Static DHCP Screen ................................................................................................................. 87
6.4.1 Static DHCP: Add/Edit .......................................................................................................... 87
6.5 The Additional Subnet Screen ....................................................................................................... 89
VPN2S User’s Guide
6
Table of Contents
6.6 The Wake on LAN Screen .............................................................................................................. 89
6.6.1 Wake On LAN: Add/Edit ....................................................................................................... 90
6.7 The VLAN / Interface Group Screen ............................................................................................ 91
6.7.1 VLAN / Interface Group: Add/Edit ...................................................................................... 92
6.8 The DNS Entry Screen ..................................................................................................................... 97
6.9 The DNS Forwarder Screen ............................................................................................................ 97
6.9.1 DNS Forwarder: Add/Edit ..................................................................................................... 98
6.10 Technical Reference .................................................................................................................... 99
6.10.1 LANs, WANs and the VPN2S ............................................................................................... 99
6.10.2 DHCP Setup ......................................................................................................................... 99
6.10.3 DNS Server Addresses ....................................................................................................... 100
6.10.4 LAN TCP/IP ......................................................................................................................... 100
Chapter 7
Routing ..............................................................................................................................................102
7.1 Overview ....................................................................................................................................... 102
7.1.1 What You Can Do in this Chapter ..................................................................................... 102
7.2 The Routing Status Screen ........................................................................................................... 103
7.3 The Policy Route Screen .............................................................................................................. 109
7.3.1 Policy Route: Add/Edit ....................................................................................................... 110
7.4 The Static Route Screen ............................................................................................................... 112
7.4.1 Static Route: Add/Edit ........................................................................................................ 113
7.5 The RIP Screen ............................................................................................................................... 114
Chapter 8
Network Address Translation (NAT)................................................................................................116
8.1 Overview ....................................................................................................................................... 116
8.1.1 What You Can Do in this Chapter ..................................................................................... 116
8.1.2 What You Need To Know ................................................................................................... 116
8.2 The Port Forwarding Screen ........................................................................................................ 117
8.2.1 Port Forwarding: Add/Edit .................................................................................................. 119
8.3 The Port Triggering Screen ........................................................................................................... 120
8.3.1 Port Triggering Rule: Add/Edit ............................................................................................ 122
8.4 The Address Mapping Screen ..................................................................................................... 123
8.4.1 Address Mapping Rule: Add/Edit ...................................................................................... 124
8.5 The Default Server Screen ........................................................................................................... 125
8.5.1 Default Server: Edit .............................................................................................................. 126
8.6 The ALG Screen ............................................................................................................................ 127
8.7 Technical Reference .................................................................................................................... 128
8.7.1 NAT Definitions ..................................................................................................................... 128
8.7.2 What NAT Does ................................................................................................................... 128
8.7.3 How NAT Works .................................................................................................................... 129
8.7.4 NAT Application .................................................................................................................. 129
VPN2S User’s Guide
7
Table of Contents
Chapter 9
Firewall ..............................................................................................................................................132
9.1 Overview ....................................................................................................................................... 132
9.1.1 What You Can Do in this Chapter ..................................................................................... 132
9.1.2 What You Need to Know ................................................................................................... 133
9.2 The Firewall Overview Screen ..................................................................................................... 134
9.3 The DoS Screen ............................................................................................................................. 134
9.4 The Firewall Rules Screen ............................................................................................................. 135
9.4.1 Firewall Rule: Add/Edit ........................................................................................................ 136
9.5 The Device Service Screen .......................................................................................................... 138
9.5.1 Device Service: Edit ............................................................................................................ 140
9.5.2 Trust Domain: Add/Edit ....................................................................................................... 140
9.6 The Zone Control Screen ............................................................................................................. 141
9.7 The Service Screen ....................................................................................................................... 142
9.7.1 Service: Add/Edit ................................................................................................................ 143
9.8 The MAC Filter Screen .................................................................................................................. 144
9.8.1 MAC Filter: Add/Edit ........................................................................................................... 145
9.9 The Certificate Screen ................................................................................................................. 146
9.10 The AAA Server ........................................................................................................................... 147
9.10.1 LDAP Server: Add/Edit ...................................................................................................... 148
9.10.2 RADIUS Server: Add/Edit ................................................................................................... 150
Chapter 10
Security Service................................................................................................................................152
10.1 Overview ..................................................................................................................................... 152
10.1.1 What You Can Do in This Chapter .................................................................................. 152
10.1.2 What You Need to Know ................................................................................................. 152
10.2 The Content Filter Screen .......................................................................................................... 153
10.2.1 Content Filter: Add/Edit .................................................................................................... 156
Chapter 11
VPN....................................................................................................................................................160
11.1 Overview ..................................................................................................................................... 160
11.2 What You Can Do in this Chapter ............................................................................................ 160
11.3 What You Need to Know ........................................................................................................... 160
11.4 The VPN Status Screen ............................................................................................................... 163
11.5 The IPsec VPN Screen ................................................................................................................ 164
11.5.1 VPN Gateway: Add/Edit .................................................................................................. 166
11.5.2 VPN Connection: Add/Edit .............................................................................................. 172
11.5.3 The Default_L2TP_VPN_GW IPsec VPN Rule ................................................................... 175
11.5.4 PPTP VPN Troubleshooting Tips ........................................................................................ 176
11.6 The PPTP VPN Screen ................................................................................................................. 177
11.6.1 PPTP VPN Troubleshooting Tips ........................................................................................ 179
VPN2S User’s Guide
8
Table of Contents
11.7 The L2TP VPN Screen .................................................................................................................. 180
11.7.1 L2TP Setup - Server ............................................................................................................ 180
11.7.2 L2TP Setup - Client ............................................................................................................. 182
11.7.3 L2TP VPN Troubleshooting Tips ......................................................................................... 183
11.8 The L2TP Client Status Screen .................................................................................................... 186
11.9 The GRE VPN Screen .................................................................................................................. 187
11.9.1 GRE VPN: Add/Edit ........................................................................................................... 188
11.10 Technical Reference ................................................................................................................ 189
11.10.1 IPsec Architecture ........................................................................................................... 189
11.10.2 Encapsulation .................................................................................................................. 190
11.10.3 IKE Phases ........................................................................................................................ 191
11.10.4 Negotiation Mode .......................................................................................................... 192
11.10.5 IPsec and NAT ................................................................................................................. 192
11.10.6 VPN, NAT, and NAT Traversal ......................................................................................... 193
11.10.7 ID Type and Content ...................................................................................................... 194
11.10.8 Pre-Shared Key ................................................................................................................ 195
11.10.9 Diffie-Hellman (DH) Key Groups .................................................................................... 195
Chapter 12
Bandwidth Management ................................................................................................................196
12.1 Overview ..................................................................................................................................... 196
12.1.1 What You Can Do in this Chapter ................................................................................... 196
12.1.2 What You Need to Know ................................................................................................. 196
12.2 The General Screen ................................................................................................................... 198
12.3 The Queue Setup Screen ........................................................................................................... 199
12.3.1 QoS Queue: Add/Edit ...................................................................................................... 201
12.4 The Classification Setup Screen ................................................................................................ 202
12.4.1 QoS Class: Add/Edit .......................................................................................................... 203
12.5 The Policer Setup Screen ........................................................................................................... 206
12.5.1 QoS Policer: Add/Edit ....................................................................................................... 207
12.6 The Shaper Setup Screen .......................................................................................................... 208
12.6.1 QoS Shaper: Add/Edit ...................................................................................................... 209
12.7 Technical Reference .................................................................................................................. 210
Chapter 13
Network Management ....................................................................................................................214
13.1 Overview ..................................................................................................................................... 214
13.1.1 What You Can Do in This Chapter .................................................................................. 214
13.2 The SNMP Screen ........................................................................................................................ 214
Chapter 14
System...............................................................................................................................................217
14.1 Overview ..................................................................................................................................... 217
VPN2S User’s Guide
9
Table of Contents
14.1.1 What You Can Do in This Chapter .................................................................................. 217
14.2 The Scheduler Rule Screen ........................................................................................................ 217
14.2.1 Scheduler Rule: Add/Edit ................................................................................................. 218
Chapter 15
Log / Report .....................................................................................................................................219
15.1 Overview ..................................................................................................................................... 219
15.1.1 What You Can Do in this Chapter ................................................................................... 219
15.1.2 What You Need To Know ................................................................................................. 219
15.2 The Log Viewer Screen .............................................................................................................. 220
15.3 Log Settings ................................................................................................................................. 221
15.3.1 Log on USB Settings: Edit ................................................................................................... 222
15.3.2 System and Email: Edit ...................................................................................................... 224
15.3.3 Remote Server Log Settings: Edit ..................................................................................... 226
Chapter 16
Service / License..............................................................................................................................229
16.1 Overview ..................................................................................................................................... 229
16.2 The License Screen ..................................................................................................................... 229
Chapter 17
Device Name ...................................................................................................................................231
17.1 Overview ..................................................................................................................................... 231
17.2 The Device Name Screen ......................................................................................................... 231
Chapter 18
Host Name List..................................................................................................................................233
18.1 Overview ..................................................................................................................................... 233
18.2 The Host Name List Screen ........................................................................................................ 233
18.2.1 Add Host Name ................................................................................................................. 233
Chapter 19
Date / Time .......................................................................................................................................235
19.1 Overview ..................................................................................................................................... 235
19.2 The Date / Time Screen ............................................................................................................. 235
Chapter 20
User Account....................................................................................................................................238
20.1 Overview ..................................................................................................................................... 238
20.2 What You Can Do in this Chapter ............................................................................................ 238
20.3 The User Account Screen .......................................................................................................... 238
20.3.1 Users Account: Add/Edit .................................................................................................. 239
VPN2S User’s Guide
10
Table of Contents
Chapter 21
USB Storage ......................................................................................................................................241
21.1 Overview ..................................................................................................................................... 241
21.1.1 What You Need To Know ................................................................................................. 241
21.1.2 Before You Begin ............................................................................................................... 242
21.2 The USB Storage Screen ............................................................................................................. 242
21.2.1 Add a USB Share ............................................................................................................... 244
Chapter 22
Diagnostic.........................................................................................................................................245
22.1 Overview ..................................................................................................................................... 245
22.1.1 What You Can Do in this Chapter ................................................................................... 245
22.2 The Network Tools Screen .......................................................................................................... 245
22.3 The Packet Capture Screen ...................................................................................................... 246
Chapter 23
Firmware Upgrade ...........................................................................................................................249
23.1 Overview ..................................................................................................................................... 249
23.2 The Firmware Screen .................................................................................................................. 249
23.3 The Mobile Profile Screen .......................................................................................................... 251
Chapter 24
Backup / Restore .............................................................................................................................253
24.1 Overview ..................................................................................................................................... 253
24.2 The Backup / Restore Screen .................................................................................................... 253
Chapter 25
Language .........................................................................................................................................255
25.1 Overview ..................................................................................................................................... 255
25.2 The Language Screen ................................................................................................................ 255
Chapter 26
Restart / Shutdown...........................................................................................................................256
26.1 Overview ..................................................................................................................................... 256
26.2 The Restart / Shutdown Screen ................................................................................................. 256
Chapter 27
Troubleshooting................................................................................................................................257
27.1 Power, Hardware Connections, and LEDs ............................................................................... 257
27.2 VPN2S Access and Login ........................................................................................................... 258
27.3 Internet Access ........................................................................................................................... 260
27.4 VPN2S Configuration .................................................................................................................. 261
VPN2S User’s Guide
11
Table of Contents
Appendix A Customer Support ..................................................................................................... 265
Appendix B Legal Information ....................................................................................................... 271
Index .................................................................................................................................................275
VPN2S User’s Guide
12
PART I
User’s Guide
13
1.1 Overview
The VPN2S is a VPN firewall with Gigabit Ethernet (GbE) gateway. It has two USB ports that can be used
for file sharing or using a 3G/4G dongle for cellular WAN (Internet) backup connections.
Features
• Four GbE Ports for LAN Connection
• Firewall with Secure Network Management
• Secure Access via VPN (IPsec, PPTP, L2TP)
Only use firmware for your VPN2S’s specific model. Refer to the label on
the bottom of your VPN2S.
CHAPTER 1
Introducing the VPN2S
1.2 Registration at myZyxel
myZyxel is Zyxel’s online services center where you can register your VPN2S and manage subscription
services available for your VPN2S (see Maintenance > Service / License for services available for your
VPN2S).
Note: You need to create a myZyxel account at http://portal.myZyxel.com before you can
register your device and activate the services at myZyxel.
You may need your VPN2S’s serial number and LAN MAC address to register it at
myZyxel. See the label at the back of the VPN2S’s for details.
VPN2S User’s Guide
14
Chapter 1 Introducing the VPN2S
Figure 1 myZyxel Login
1.3 Ways to Manage the VPN2S
Use any of the following methods to manage the VPN2S.
Web Configurator
The Web Configurator allows easy VPN2S setup and management using an Internet browser. This User’s
Guide provides information about the Web Configurator.
Figure 2 Managing the VPN2S: Web Configurator
FTP
Use File Transfer Protocol for firmware upgrades and configuration backup/restore.
VPN2S User’s Guide
15
Chapter 1 Introducing the VPN2S
SNMP
The device can be monitored and/or managed by an SNMP manager.
1.4 Good Habits for Managing the VPN2S
Do the following things regularly to make the VPN2S more secure and to manage the VPN2S more
effectively.
• Change the password. Use a password that’s not easy to guess and that consists of different types of
characters, such as numbers and letters. The password must have 6-64 printable characters [0-9][a-z]
[A-Z][!@#$%*].
• Write down the password and put it in a safe place.
• Back up the configuration (and make sure you know how to restore it). Restoring an earlier working
configuration may be useful if the device becomes unstable or even crashes. If you forget your
password, you will have to reset the VPN2S to its factory default settings. If you backed up an earlier
configuration file, you would not have to totally re-configure the VPN2S. You could simply restore your
last configuration.
1.5 Applications for the VPN2S
Here are some example uses for which the VPN2S is well suited.
1.5.1 Internet Access
As a VPN firewall your VPN2S has multiple WAN interfaces, including, 3G/4G and Gigabit Ethernet to
share the network traffic load. You can configure multiple WAN load balance and failover rules to
distribute traffic amongst the different interfaces.
If you prefer you can also use a 3G/4G dongle for cellular backup WAN (Internet) connections.
Note: If you connect all WAN ports the priority order will be Ethernet WAN port, and USB port.
VPN2S User’s Guide
16
Chapter 1 Introducing the VPN2S
VPN2S
VPN2S
Computers can connect to the VPN2S’s LAN ports.
Figure 3 VPN2S’s Internet Access Application
Figure 4 VPN2S’s Internet Access Application: 3G/4G WAN Backup
You can also configure IP filtering on the VPN2S for secure Internet access. When the IP filter is on, all
incoming traffic from the Internet to your network is blocked by default unless it is initiated from your
network. This means that probes from the outside to your network are not allowed, but you can safely
browse the Internet and download files.
1.5.2 VPN2S’s USB Support
Use the USB port for file sharing or insert a 3G/4G dongle for cellular backup WAN (Internet) connections.
VPN2S User’s Guide
17
Chapter 1 Introducing the VPN2S
VPN2S
File Sharing
Use the USB port (built-in USB 2.0) to share files on USB memory sticks or USB hard drives (B). Use FTP to
access the files on the USB device.
Figure 5 USB File Sharing Application
1.5.3 IPv6 Routing
The VPN2S supports IPv6 Ethernet and PPP. You may also create IPv6 policy routes.
Figure 6 Applications: IPv6 Routing
1.5.4 VPN Connectivity
Set up VPN tunnels with other companies, branch offices, telecommuters, and business travelers to
provide secure access to your network. AS is an Authentication Server in the below figure.
VPN2S User’s Guide
18
Figure 7 Applications: VPN Connectivity
1.5.5 Load Balancing
Set up multiple connections to the Internet on the same port, or different ports. In either case, you can
balance the traffic loads between them.
Figure 8 Applications: Multiple WAN Interfaces
Chapter 1 Introducing the VPN2S
1.6 LEDs (Lights)
This section describes the LEDs on the VPN2S.
The following figure shows the front and rear panels of the VPN2S.
VPN2S User’s Guide
19
Chapter 1 Introducing the VPN2S
Figure 9 VPN2S Front and Rear Panels
None of the LEDs are on if the VPN2S is not receiving power. The location of the LEDs are highlighted in
the figures above.
Table 1 LED Descriptions
LED COLOR STATUS DESCRIPTION
POWER Green On The VPN2S is receiving power and ready for use.
Blinking The VPN2S is self-testing.
Red On The VPN2S detected an error while self-testing, or there is a device
Off The VPN2S is not receiving power.
LAN Green On The VPN2S has a successful Ethernet connection with a device on the Local
Blinking The VPN2S is sending or receiving data to/from the LAN.
Off The VPN2S does not have an Ethernet connection with the LAN.
WAN Green On The VPN2S has a successful Ethernet connection on the WAN.
Blinking The VPN2S is sending or receiving data to/from the WAN.
Off There is no Ethernet connection on the WAN.
INTERNET Green On The VPN2S has an IP connection but no traffic.
Red On The Ethernet WAN port is connected to an Ethernet port but the VPN2S
Off There is no Internet connection or the gateway is in bridged mode.
MOBILE Green On The VPN2S recognizes a 3G/4G dongle connection in USB port 1/2.
Off The VPN2S does not detect a 3G/4G dongle connection in USB port 1/2.
USB Green On The VPN2S recognizes a USB connection in USB port 1/2.
Off The VPN2S does not detect a USB connection in USB port 1/2.
malfunction.
Area Network (LAN).
Your device has a WAN IP address (either static or assigned by a DHCP
server), PPP negotiation was successfully completed (if used).
cannot access the Internet. There is an Internet connection problem.
VPN2S User’s Guide
20
Table 1 LED Descriptions (continued)
LED COLOR STATUS DESCRIPTION
ETHERNET
LAN 1-4 (On
Connector)
Green
(Left LED)
1GM
Amber
(Right LED)
10-100M
On The VPN2S has a successful Ethernet connection with a device on the Local
Blinking The VPN2S is sending or receiving data to/from the LAN.
Off The VPN2S does not have an Ethernet connection with the LAN.
On The VPN2S has a successful Ethernet connection with a device on the Local
Blinking The VPN2S is sending or receiving data to/from the LAN.
Off The VPN2S does not have an Ethernet connection with the LAN.
1.7 The RESET Button
If you forget your password or cannot access the web configurator, you will need to use the RESET
button at the back of the device to reload the factory-default configuration file. This means that you will
lose all configurations that you had previously and the password will be reset to “1234”.
Chapter 1 Introducing the VPN2S
Area Network (LAN).
Area Network (LAN).
1 Make sure the POWER LED is on (not blinking).
2 To set the device back to the factory default settings, press the RESET button for five seconds or until the
POWER LED begins to blink and then release it. When the POWER LED begins to blink, the defaults have
been restored and the device restarts.
VPN2S User’s Guide
21
The Web Configurator
2.1 Overview
The web configurator is an HTML-based management interface that allows easy device setup and
management via Internet browser. Use Internet Explorer 10.0 and later versions, Mozilla Firefox 45 and
later versions, Google Chrome 45 and later versions, and Safari 9.0 and later versions. The
recommended screen resolution is 1024 by 768 pixels.
In order to use the web configurator you need to allow:
• Allow pop-up windows from your device (blocked by default in some Internet browsers).
• JavaScript (enabled by default).
• Java permissions (enabled by default).
2.1.1 Accessing the Web Configurator
CHAPTER 2
1 Make sure your VPN2S hardware is properly connected (refer to the Quick Start Guide).
2 Launch your web browser. If the VPN2S does not automatically re-direct you to the login screen, go to
http://192.168.1.1.
3 A password screen displays. To access the administrative web configurator and manage the VPN2S,
type the default username admin and password 1234 in the password screen and click Login. If
advanced account security is enabled (see Section 20.3 on page 238) the number of dots that appears
when you type the password changes randomly to prevent anyone watching the password field from
knowing the length of your password. If you have changed the password, enter your password and click
Login.
Figure 10 Password Screen
VPN2S User’s Guide
22
Chapter 2 The Web Configurator
4 The following screen displays if you have not yet changed your password from the default. Enter a new
password, retype it to confirm and click Apply. After changing the password your VPN2S will log out
automatically. so you can log in with your new password.
Figure 11 Change Password Screen
5 The Privacy Statement screen appears automatically after login. Click on the check box to agree to all
the terms and click Acknowledge.
Figure 12 Privacy Statement Screen
6 The Register screen appears after the Privacy Statement screen. Click OK in the Register screen to
register the VPN2S at myzyxel.com.
VPN2S User’s Guide
23
Chapter 2 The Web Configurator
B
A
C
Figure 13 Register Screen
7 The Wizard appears after the Register screen. Use the Wizard to configure VPN2S’s basic settings. See
Chapter 3 on page 29 for more information.
8 The Dashboard page appears after the Wizard set up, here you can view the VPN2S’s interface and
system information.
2.2 Web Configurator Layout
Figure 14 Screen Layout
As illustrated above, the main screen is divided into these parts:
• A - title bar
• B - navigation panel
• C - main window
VPN2S User’s Guide
24
2.2.1 Title Bar
The title bar provides some icons in the upper right corner.
The icons provide the following functions.
Table 2 Web Configurator Icons in the Title Bar
ICON DESCRIPTION
2.2.2 Navigation Panel
Chapter 2 The Web Configurator
Help: Click this icon to view a description of the screen you are currently using.
Logout: Click this icon to log out of the web configurator.
Click a color from the palette to change the color of your web configurator.
Use the menu items on the navigation panel to open screens to configure VPN2S features. The following
tables describe each menu item.
Table 3 Navigation Panel Summary
LINK TAB FUNCTION
Dashboard Click this to go to the main Web Configurator screen.
Wizard Use this screen to configure the VPN2S’s basic settings. For more
information see Chapter 3 on page 29.
Configuration
Configuration
Site Map
WAN / Internet
WAN Status Use this screen to view the WAN ports’ status.
WAN Setup Use this screen to view and configure ISP parameters, WAN IP address
Mobile Use this screen to configure the mobile 3G/4G connection.
Port Setting Use this screen to set flexible ports as part of LAN or WAN interfaces.
Multi-WAN Use this screen to configure the multiple WAN load balance and failover
Dynamic
DNS
LAN / Home Network
Click this to view a summary of all the available screens in the
Configuration menu.
assignment, and other advanced properties. You can also add new WAN
connections.
rules to distribute traffic among different interfaces.
Use this screen to allow a static hostname alias for a dynamic IP address.
VPN2S User’s Guide
25
Chapter 2 The Web Configurator
Table 3 Navigation Panel Summary (continued)
LINK TAB FUNCTION
LAN Status LAN Status Use this screen to view the status of all network traffic going through the
LAN ports of the VPN2S.
DHCP Client Use this screen to view the status of all devices connected to the VPN2S.
You can also set screen refresh time to see updates on new devices.
ARP Table Use this screen to view the ARP table. It displays the IP and MAC address
Multicast Status Use this screen to look at IGMP/MLD group status and traffic statistics.
LAN Setup Use this screen to configure LAN TCP/IP settings, and other advanced
Static DHCP Use this screen to assign specific IP addresses to individual MAC
Additional
Subnet
Wake on LAN Use this screen to remotely wake up a hibernating device on the local
VLAN /
Interface
Group
DNS Entry Use this screen to view and configure a domain name and DNS routes on
DNS
Forwarder
Routing
Routing
Status
Policy Route Use this screen to view and set up policy routes on the VPN2S.
Static Route Use this screen to view and set up static routes on the VPN2S.
RIP Use this screen to set up RIP (Routing Information Protocol) settings on the
NAT
Port
Forwarding
Port
Triggering
Address
Mapping
Default
Server
ALG Use this screen to enable or disable NAT ALG and SIP ALG.
Firewall / Security
Firewall
Overview
DoS Use this screen to activate protection against Denial of Service (DoS)
Firewall Rules Use this screen to add and view existing firewall rules to the VPN2S.
Device
Service
Zone Control Use this screen to set the firewall’s default actions based on the direction
of each DHCP connection.
properties.
addresses.
Use this screen to configure IP alias.
network.
Use this screen to create a new interface group, which is a new LAN
bridge interface (subnet).
the VPN2S.
Use this screen to view and configure domain zone forwarder on the
VPN2S.
Use this screen to view the IPv4 and IPv6 routing flow.
VPN2S.
Use this screen to make your local servers visible to the outside world.
Use this screen to change your VPN2S’s port triggering settings.
Use this screen to change your VPN2S’s address mapping settings.
Use this screen to configure a default server which receives packets from
ports that are not specified in the Port Forwarding screen.
Use this screen to enable the firewall.
attacks.
Use this screen to manage the services (such as HTTP and SSH) in the
VPN2S.
of travel of packets.
VPN2S User’s Guide
26
Chapter 2 The Web Configurator
Table 3 Navigation Panel Summary (continued)
LINK TAB FUNCTION
Service Use this screen to add Internet services.
MAC Filter Use this screen to block or allow traffic from devices of certain MAC
addresses to the VPN2S.
Certificate Use this screen to view a summary list of certificates and manage
certificates and certification requests.
AAA Server Use this screen to manage the list of LDAP and RADIUS servers the VPN2S
Security Service
Content Filter Use this screen to control access to specific websites or web content.
VPN
VPN Status Use this screen to look at the status of VPN tunnels that are currently
IPsec VPN Use this screen to display and manage IPsec VPN gateways and
PPTP VPN Use this screen to configure the PPTP VPN settings in the VPN2S.
L2TP VPN Use this screen to configure L2TP over IPsec tunnels.
L2TP Client
Status
GRE VPN Use this screen to configure the GRE VPN settings in the VPN2S.
Bandwidth Management
General Use this screen to enable QoS and traffic prioritizing. You can also
Queue Setup Use this screen to configure QoS queues.
Classification
Setup
Policer Setup Use these screens to configure QoS policers.
Shaper Setup Use this screen to limit outgoing traffic transmission rate on the selected
Network Management
SNMP Use this screen to configure SNMP communities and services.
System
Scheduler
Rule
Log/Report
Log Viewer Use this screen to view the system logs on the VPN2S.
Log Settings Use this screen to change specify settings to recording your logs on the
Maintenance
Maintenance
Site Map
Service / License Use this screen to view the status of your licenses and update any license
Device Name Use this screen to give your VPN2S a name.
Host Name List Use this screen to add connected devices to the VPN2S.
Date / Time Use this screen to change your VPN2S’s time and date.
can use in authenticating users.
established.
connections.
Use this screen to view details about the L2TP clients.
configure the QoS rules and actions.
Use this screen to define a classifier.
interface.
Use this screen to configure the days and times when a configured
restriction (such as User Access control) is enforced.
VPN2S.
Click this to view a summary of all the available screens in the
Maintenance menu.
information.
VPN2S User’s Guide
27
Table 3 Navigation Panel Summary (continued)
LINK TAB FUNCTION
User Account Use this screen to manage user accounts, which includes configuring the
USB Storage Use this screen to enable USB storage sharing.
Diagnostic Network Tools Use this screen to ping an IP address or trace the route packets take to a
Firmware Upgrade
Firmware Use this screen to upload firmware to your device.
Mobile Profile Use this screen to update the mobile profile on the VPN2S.
Backup / Restore Use this screen to backup and restore your device’s configuration
Language Use this screen to change the VPN2S web configurator’s language,
Restart /
Shutdown
2.2.3 Main Window
Chapter 2 The Web Configurator
username, password, retry times, file sharing, captive portal, and
customizing the login message.
host
Packet Capture Use this screen to capture packets going through the VPN2S.
(settings) or reset the factory default settings.
Use this screen to reboot the VPN2S without turning the power off.
The main window displays information and configuration fields. It is discussed in the rest of this
document.
If you click Dashboard a graphic shows the connection status of the VPN2S’s ports. The connected
interfaces are in color and disconnected interfaces are gray.
Figure 15 Dashboard Screen
VPN2S User’s Guide
28
3.1 Overview
The Web Configurator's quick setup Wizard helps you configure Internet and VPN connection settings.
This chapter provides information on configuring the Wizard screens in the Web Configurator. See the
feature-specific chapters in this User’s Guide for background information.
Before you begin configuring your VPN2S register your device at myZyxel portal and check your current
license status.
The Wizard consists of the following setups:
• Wizard Basic Setup - Use Basic Setup to set up a WAN (Internet) connection. This Wizard creates
matching ISP account settings in the VPN2S if you use PPPoE. See Section 3.2 on page 30.
• Wizard IPsec VPN Setup - Use IPsec VPN Setup to configure an IPsec VPN (Virtual Private Network) rule
for a secure connection to another computer or network. See Section 3.3 on page 35.
• Wizard IPv6 Setup - Use IPv6 Setup to configure the IPv6 settings on your VPN2S. See Section 3.4 on
page 43.
Figure 16 Wizard Setup
CHAPTER 3
Wizard
Note: See the technical reference chapters (starting on page 47) for background information
on the features in this chapter.
VPN2S User’s Guide
29
3.2 Wizard Basic Setup
The Wizard appears automatically after you log in the first time. Or you can go to the Wizard tab in the
navigation panel. Click the Welcome to Basic Setup down arrow to configure an interface to connect
to the Internet. Click Next to continue the Wizard, Back to return to the previous screen.
Figure 17 Wizard Basic Setup
Chapter 3 Wizard
1 Enter your Internet connection information in this screen. The screen and fields to enter may vary
depending on your current connection type and the Encapsulation you choose. You can also use this
screen to enable the VLAN tag in the VPN2S. Assign it a priority level (802.1p) and a VLAN ID for traffic
through this connection. Click Next.
VPN2S User’s Guide
30
Loading...