ZyXEL ZyWALL 110, ZyWALL 310, ZyWALL 1100 User’s Guide

Quick Start Guide

ZyWALL 110/310/1100 Series

VPN Firewall

Version 3.10 Edition 4, 01/2014

User’s Guide

Default Login Details

LAN Port IP Address https://192.168.1.1 User Name admin Password 1234

www.zyxel.com

IMPORTANT! READ CAREFULLY BEFORE USE. KEEP THIS GUIDE FOR FUTURE REFERENCE.

This is a User’s Guide for a series of products. Not all products support all firmware features. Screenshots and graphics in this book may differ slightly from your product due to differences in your product firmware or your computer operating system. Every effort has been made to ensure that the information in this manual is accurate.

Screen Identification Syntax Convention

The > symbol is used to identify a mouse click in a path to access a screen in the web configurator. For example, Configuration > Network > Interface > Ethernet means first you click the

Configuration icon in the navigation panel, then click the Network menu item, then the Interface submenu and finally the Ethernet tab in order to access the Ethernet interface screen.

Related Documentation

•Quick Start Guide The Quick Start Guide shows how to connect the ZyWALL and access the Web Configurator

wizards. (See the wizard real time help for i n formation on configuring each screen.) It also contains a connection diagram and package contents list.

• CLI Reference Guide The CLI Reference Guide explains how to use the Command-Line Interface (CLI) to configure the

ZyWALL.

Note: It is recommended you use the Web Configurator to configure the ZyWALL.

• Web Configurator Online Help Click the help icon in any screen for help in configuring that screen and supplementary

information.

ZyWALL 110/310/1100 Series User’s Guide2

Part I: User’s Guide .........................................................................................16

Chapter 1

Introduction.........................................................................................................................................18

1.1 Overview ...................................................... .......................................... .... ... ....................................18

1.2 Management Overview ....................................................... ... .... ... ... ... ... .... ... ... ... ..............................20

1.3 Web Configurator ................................................ ... .......................................... ... .... ..........................21

1.3.1 Web Configurator Access ........................................................................................................21

1.3.2 Web Configurator Screens Overview ......................................................................................22

1.3.3 Navigation Panel .......... ... ... .... ... ... ... ... .... .................................................................................26

1.3.4 Tables and Lists .. ... .... ... ... ... .......................................... .... .......................................................29

Chapter 2

Installation Setup Wizard...................................................................................................................33

2.1 Installation Setup Wizard Screens ...................................................................................................33

2.1.1 Internet Access Setup - WAN Interface ..................................................................................33

2.1.2 Internet Access: Ethernet .......................................................................................................34

2.1.3 Internet Access: PPPoE ............................ ... ... .... ... ... ... .... ... .......................................... ..........34

2.1.4 Internet Access: PPTP .......................................... ... .......................................... ... ... .... ..........35

2.1.5 ISP Parameters ............................... ... .... ... ... ... .... ... .......................................... ... ....................35

2.1.6 Internet Access - Finish ..........................................................................................................36

Chapter 3

Hardware Introduction .......................................................................................................................37

3.1 Default Zones, Interfaces, and Ports ............................. ... ... ... .... ... ... ... ... ...........................................37

3.2 Stopping the ZyWALL .......................................................................................................................38

3.3 Rack-mounting .......... .......................................... ... ... .... ... ... ..............................................................38

3.4 Wall-mounting .................................................. ... ... ... .... ... .......................................... .......................39

3.5 Front Panel LEDs ...... ... .......................................... ... .... ... ... ... ...........................................................39

3.5.1 Rear Panels ........................ .... .......................................... ... ... .................................................41

Chapter 4

Quick Setup Wizards..........................................................................................................................42

4.1 Quick Setup Overview ......................... ... ... ... .......................................... .... ... ... ... .... ..........................42

4.2 WAN Interface Quick Setup ..............................................................................................................42

4.2.1 Choose an Ethernet Interface .......... ... .... ... ... ... .... ... ... ... .... ... ... ... ... .... .......................................43

4.2.2 Select WAN Type .......................... ... ... .... ... ... ... .... .......................................... ... .......................43

4.2.3 Configure WAN Settings ..........................................................................................................44

4.2.4 WAN and ISP Connection Settings .........................................................................................44

4.2.5 Quick Setup Interface Wizard: Summary ................................................................................46

4.3 VPN Setup Wizard ............................................................................................................................47

4.3.1 Welcome ....... ... ... ... .... ... ... .......................................... ... .... .......................................................47

4.3.2 VPN Setup Wizard: Wizard Type .............................................................................................48

ZyWALL 110/310/1100 Series User’s Guide

4.3.3 VPN Express Wizard - Scenario .............................................................................................49

4.3.4 VPN Express Wizard - Configuration ....................... ... .... ... ... ... .......................................... ... .50

4.3.5 VPN Express Wizard - Summary ....................... .......................................... ..........................50

4.3.6 VPN Express Wizard - Finish .................................................................................................51

4.3.7 VPN Advanced Wizard - Scenario .........................................................................................52

4.3.8 VPN Advanced Wizard - Phase 1 Settings .............................................................................53

4.3.9 VPN Advanced Wizard - Phase 2 ...........................................................................................55

4.3.10 VPN Advanced Wizard - Summary ......................................................................................56

4.3.11 VPN Advanced Wizard - Finish ...................................... ... ... .................................................56

4.4 VPN Settings for Configuration Provisioning Wizard: Wizard Type .............................. ... .................57

4.4.1 Configuration Provisioning Express Wizard - VPN Settings ...................................................58

4.4.2 Configuration Provisioning VPN Express Wizard - Configuration ..........................................59

4.4.3 VPN Settings for Configuration Provisioning Express Wizard - Summary .............................60

4.4.4 VPN Settings for Configuration Provisioning Express Wizard - Finish ...................................61

4.4.5 VPN Settings for Configuration Provisioning Advanced Wizard - Scenario ...........................62

4.4.6 VPN Settings for Configuration Provisioning Advanced Wizard - Phase 1 Settings ..............63

4.4.7 VPN Settings for Configuration Provisioning Advanced Wizard - Phase 2 ............................64

4.4.8 VPN Settings for Configuration Provisioning Advanced Wizard - Summary ..........................65

4.4.9 VPN Settings for Configuration Provisioning Advanced Wizard- Finish .................................65

Chapter 5

Dashboard...........................................................................................................................................67

5.1 Overview ................ ... ... ... .......................................... .... ... .................................................................67

5.1.1 What Yo u Can Do in this Chapter ............................................................................................67

5.2 The Dashboard Screen .....................................................................................................................67

5.2.1 The CPU Usage Screen ..........................................................................................................72

5.2.2 The Memory Usage Screen ............... .... ... ... ... .... .......................................... ... ... ... ... .... ... .......73

5.2.3 The Active Sessions Screen ....................................................................................................73

5.2.4 The VPN Status Screen .......................................... ... ... .......................................... ... .... ..........74

5.2.5 The DHCP Table Screen .........................................................................................................75

5.2.6 The Number of Login Users Screen .......................................................................................76

Part II: Technical Reference............................................................................77

Chapter 6

Monitor.................................................................................................................................................79

6.1 Overview ................ ... ... ... .......................................... .... ... .................................................................79

6.1.1 What Yo u Can Do in this Chapter ............................................................................................79

6.2 The Port Statistics Screen ................................................................................................................80

6.2.1 The Port Statistics Graph Screen ....................... ... ... ... .... ... ... ... ... .... .......................................81

6.3 Interface Status Screen .....................................................................................................................82

ZyWALL 110/310/1100 Series User’s Guide4

6.4 The Traffic Statistics Screen ..............................................................................................................86

6.5 The Session Monitor Screen ........... ... ... ... ... .... ... ... ... .... ... ... ... ............................................. ..............89

6.6 The DDNS Status Screen .................................................................................................................91

6.7 IP/MAC Binding Monitor .. .... ... ... ... .... ... ... ... ... .......................................... .... ... ... ... .... ..........................91

6.8 The Login Users Screen ..................................................................................................................92

6.9 Cellular Status Screen ......................................................... .......................................... . ...................93

6.9.1 More Information ... .... ... ... ... .......................................... .... ... ... ... ... .... .......................................95

6.10 USB Storage Screen .......................................................................................................................96

6.11 The IPSec Monitor Screen ..............................................................................................................97

6.11.1 Regular Expressions in Searching IPSec SAs .......................................................................98

6.12 The SSL Connection Monitor Screen ................................ ....... ...... ...... ....... ...... ....... ...... ....... ..........99

6.13 The L2TP over IPSec Session Monitor Screen ...............................................................................99

6.14 Log Screen ....................................................................................................................................100

Chapter 7

Interfaces...........................................................................................................................................103

7.1 Interface Overview ................. ... ... .... ... ... ... ... .... ... ... .......................................... ... .... ... .....................103

7.1.1 What Yo u Can Do in this Chapter ..........................................................................................103

7.1.2 What You Need to Know .................................. .... ... ... ... .... ... ... ... ... .... .....................................103

7.1.3 What You Need to Do First ........................................................ ... .... ... ... ... .... ... ... ... ... ............108

7.2 Port Role Screen .............................................................................................................................108

7.3 Ethernet Summary Screen .. ... .......................................... ... ... .... ... ... ... ... .... ... ... ...............................109

7.3.1 Ethernet Edit ...................... .... ... .......................................... ... ... ............................................110

7.3.2 Object References .............. .... ... ... .......................................... ... ... .........................................122

7.3.3 Add/Edit DHCPv6 Request/Release Options ............ ... .... ... ... .......................................... ... ..123

7.3.4 Add/Edit DHCP Extended Options ................................... ... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ..124

7.4 PPP Interfaces ................................................................................................................................125

7.4.1 PPP Interface Summary ........................................................................................................126

7.4.2 PPP Interface Add or Edit .....................................................................................................127

7.5 Cellular Configuration Screen (3G) .................................................................................................132

7.5.1 Cellular Add/Edit Screen .......................................................................................................134

7.6 Tunnel Interfaces ...................... .......................................... ... .... .....................................................140

7.6.1 Configuring a Tunnel .............................. ... ... ... .... ... ... ... .... ... ..................................................142

7.6.2 Tunnel Add or Edit Screen .....................................................................................................143

7.7 VLAN Interfaces .............................................................................................................................147

7.7.1 VLAN Summary Screen ........................................................................................................148

7.7.2 VLAN Add/Edit ......................................................................................................................150

7.8 Bridge Interfaces ............................................................................................................................159

7.8.1 Bridge Summary ........................ ... ... ... .... .......................................... ... ... ... .... ... ... ..................160

7.8.2 Bridge Add/Edit .....................................................................................................................162

7.9 Virtual Interfaces ............................................................................................................................170

7.9.1 Virtual Interfaces Add/Edit ............... ... .... ... ... ... .... .......................................... ... ... ..................171

7.10 Interface Technical Reference .......................................................................................................172

ZyWALL 110/310/1100 Series User’s Guide

Chapter 8

Trunk..................................................................................................................................................176

8.1 Overview ................ ... ... ... .......................................... .... ... ...............................................................176

8.1.1 What Yo u Can Do in this Chapter ..........................................................................................176

8.1.2 What You Need to Know .................................. .... ... ... ... .... ... ... ... ... .... .....................................176

8.2 The Trunk Summary Screen ...........................................................................................................179

8.2.1 Configuring a User-Defined Trunk ............. ............................................................................180

8.2.2 Configuring the System Default Trunk ..................................................................................182

Chapter 9

Policy and Static Routes..................................................................................................................185

9.1 Policy and Static Routes Overview .................................................................................................185

9.1.1 What Yo u Can Do in this Chapter ..........................................................................................185

9.1.2 What You Need to Know ............................................................................... ... ... ... ... .... ........186

9.2 Policy Route Screen ........................................................................................................................187

9.2.1 Policy Route Edit Screen .......................................................................................................189

9.3 IP Static Route Screen ....................................................................................................................193

9.3.1 Static Route Add/Edit Screen ................................................................................................194

9.4 Policy Routing Technical Reference .................................................... ... .... ... ..................................195

Chapter 10

Routing Protocols.............................................................................................................................197

10.1 Routing Protocols Overview ..........................................................................................................197

10.1.1 What You Can Do in this Chapter ........................................................................................197

10.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............197

10.2 The RIP Screen ....................................... ... .... ... ... ... .... ... ... ... .........................................................197

10.3 The OSPF Screen ......... .... ... .......................................... ... ... .... ... ... ... ... .... ... ..................................199

10.3.1 Configuring the OSPF Screen .............................................................................................202

10.3.2 OSPF Area Add/Edit Screen ..............................................................................................204

10.3.3 Virtual Link Add/Edit Screen ...............................................................................................206

10.4 Routing Protocol Technical Reference ..........................................................................................206

Chapter 11

Zones.................................................................................................................................................208

11.1 Zones Overview ............................................................................................................................208

11.1.1 What You Can Do in this Chapter .. .......................................... ... .... .....................................208

11.1.2 What You Need to Know ......................................................................................................208

11.2 The Zone Screen ...........................................................................................................................209

11.3 Zone Edit .......................................................................................................................................210

Chapter 12

DDNS..................................................................................................................................................212

12.1 DDNS Overview ............................................................................................................................212

ZyWALL 110/310/1100 Series User’s Guide6

12.1.1 What You Can Do in this Chapter ........................................................................................212

12.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............212

12.2 The DDNS Screen ........................................................................................................................213

12.2.1 The Dynamic DNS Add/Edit Screen ....................................................................................214

Chapter 13

NAT.....................................................................................................................................................217

13.1 NAT Overview ...............................................................................................................................217

13.1.1 What You Can Do in this Chapter ........................................................................................217

13.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............217

13.2 The NAT Screen ............................. ... ... .......................................... ... ... .... ... ... ...............................218

13.2.1 The NAT Add/Edit Screen ....................................................................................................219

13.3 NAT Technical Reference ..............................................................................................................221

Chapter 14

HTTP Redirect...................................................................................................................................224

14.1 Overview .......................................................................................................................................224

14.1.1 What You Can Do in this Chapter ........................................................................................224

14.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............224

14.2 The HTTP Redirect Screen ...........................................................................................................225

14.2.1 The HTTP Redirect Edit Screen ..........................................................................................226

Chapter 15

ALG ....................................................................................................................................................228

15.1 ALG Overview ...............................................................................................................................228

15.1.1 What You Can Do in this Chapter ........................................................................................228

15.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............228

15.1.3 Before You Begin .................................................................................................................231

15.2 The ALG Screen ...........................................................................................................................231

15.3 ALG Technical Reference .............................................................................................................233

Chapter 16

IP/MAC Binding.................................................................................................................................235

16.1 IP/MAC Binding Overview .............................................................................................................235

16.1.1 What You Can Do in this Chapter ........................................................................................235

16.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............235

16.2 IP/MAC Binding Summary ............................................................................................................236

16.2.1 IP/MAC Binding Edit ............................................................................................................236

16.2.2 Static DHCP Edit .................................................................................................................237

16.3 IP/MAC Binding Exempt List .........................................................................................................238

Chapter 17

Inbound Load Balancing..................................................................................................................240

ZyWALL 110/310/1100 Series User’s Guide

17.1 Inbound Load Balancing Overview ...............................................................................................240

17.1.1 What You Can Do in this Chapter ........................................................................................240

17.2 The Inbound LB Screen ................................................................................................................241

17.2.1 The Inbound LB Add/Edit Screen ........................................................................................242

17.2.2 The Inbound LB Member Add/Edit Screen ..........................................................................244

Chapter 18

Authentication Policy.......................................................................................................................246

18.1 Overview .......................................................................................................................................246

18.1.1 What You Can Do in this Chapter ........................................................................................246

18.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............246

18.2 Authentication Policy Screen ........................................................................................................247

18.2.1 Creating/Editing an Authentication Policy ............................................................................249

18.3 User-aware Access Control Example ...........................................................................................251

18.3.1 Set Up User Accounts ... ... .... ... ... ... ... .... ...............................................................................251

18.3.2 Set Up User Groups ... .........................................................................................................252

18.3.3 Set Up User Authentication Using the RADIUS Server .......................................................252

18.3.4 User Group Authentication Using the RADIUS Server ........................................................254

Chapter 19

Firewall ..............................................................................................................................................256

19.1 Overview .......................................................................................................................................256

19.1.1 What You Can Do in this Chapter ........................................................................................256

19.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............256

19.2 The Firewall Screen ................... .... ... ... ... ... .... ... ... ... .... ... .......................................... ... ..................259

19.2.1 Configuring the Firewall Screen ..........................................................................................259

19.2.2 The Firewall Add/Edit Screen ..............................................................................................263

19.3 The Session Limit Screen .............................................................................................................264

19.3.1 The Session Limit Add/Edit Screen .....................................................................................266

19.4 Firewall Rule Configuration Example ............................................................................................267

19.5 Firewall Rule Example Applications ............................ ..................................................................269

Chapter 20

IPSec VPN..........................................................................................................................................272

20.1 Virtual Private Networks (VPN) Overview .....................................................................................272

20.1.1 What You Can Do in this Chapter ........................................................................................273

20.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............274

20.1.3 Before You Begin .................................................................................................................275

20.2 The VPN Connection Screen ........................................................................................................276

20.2.1 The VPN Connection Add/Edit (IKE) Screen .......................................................................277

20.2.2 The VPN Connection Add/Edit Manual Key Screen ............................................................283

20.3 The VPN Gateway Screen ............................................................................................................285

20.3.1 The VPN Gateway Add/Edit Screen ....................................................................................286

ZyWALL 110/310/1100 Series User’s Guide8

20.4 VPN Concentrator ........................................................................................................................292

20.4.1 VPN Concentrator Requirements and Suggestions ............................................................293

20.4.2 VPN Concentrator Screen ...................................................................................................293

20.4.3 The VPN Concentrator Add/Edit Screen .............................. ... ... .... ... ... ... .... ........................293

20.5 ZyWALL IPSec VPN Client Configuration Provisioning ................................. ... .... ... ... ... ... .... ... ... ..294

20.6 IPSec VPN Background Information ....................... ......................................................................296

Chapter 21

SSL VPN ............................................................................................................................................308

21.1 Overview .......................................................................................................................................308

21.1.1 What You Can Do in this Chapter ........................................................................................308

21.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............308

21.2 The SSL Access Privilege Screen ................................................................................................309

21.2.1 The SSL Access Policy Add/Edit Screen ...........................................................................310

21.3 The SSL Global Setting Screen ....................................................................................................313

21.3.1 How to Upload a Custom Logo ................................ ....................... ...................... ............... 314

21.4 SSL VPN Example ........................................................................................................................315

Chapter 22

SSL User Screens.............................................................................................................................318

22.1 Overview .......................................................................................................................................318

22.1.1 What You Need to Know ....................................... ............. ............. ............. ............ ............318

22.2 Remote SSL User Login ...............................................................................................................319

22.3 The SSL VPN User Screens ................ ... ... .... .......................................... ... ... ... .... ... ... ... ... .... ........322

22.4 Bookmarking the ZyWALL ............................................................................................................323

22.5 Logging Out of the SSL VPN User Screens ..................................................................................324

22.6 SSL User Application Screen ........................................................................................................324

22.7 SSL User File Sharing ...................................................................................................................325

22.7.1 The Main File Sharing Screen .............................................................................................325

22.7.2 Opening a File or Folder .................................... ...................................................... ............326

22.7.3 Downloading a File ..............................................................................................................327

22.7.4 Saving a File ........................................................................................................................327

22.7.5 Creating a New Folder .........................................................................................................328

22.7.6 Renaming a File or Folder ...................................................................................................328

22.7.7 Deleting a File or Folder ......................................................................................................329

22.7.8 Uploading a File ................................ ....................... ....................... ...................... ...............329

Chapter 23

ZyWALL SecuExtender ....................................................................................................................331

23.1 The ZyWALL SecuExtender Icon ..................................................................................................331

23.2 Status ............................................................................................................................................331

23.3 View Log .......................................................................................................................................332

23.4 Suspend and Resume the Connection .........................................................................................333

ZyWALL 110/310/1100 Series User’s Guide

23.5 Stop the Connection ......................................................................................................................333

23.6 Uninstalling the ZyWALL SecuExtender .......................................................................................333

Chapter 24

L2TP VPN...........................................................................................................................................335

24.1 Overview .......................................................................................................................................335

24.1.1 What You Can Do in this Chapter ........................................................................................335

24.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............335

24.2 L2TP VPN Screen ......... .... ... .......................................... ... ... .... ... ... ... ... .... ... ..................................337

Chapter 25

Bandwidth Management.................................................................................................................339

25.1 Overview .......................................................................................................................................339

25.1.1 What You Can Do in this Chapter ........................................................................................339

25.1.2 What You Need to Know .....................................................................................................339

25.2 The Bandwidth Management Screen ................................... ............................................. ............343

25.2.1 The Bandwidth Management Add/Edit Screen ..... ... ... .... ... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ..345

Chapter 26

Device HA..........................................................................................................................................349

26.1 Overview .......................................................................................................................................349

26.1.1 What You Can Do in this Chapter ........................................................................................349

26.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............349

26.1.3 Before You Begin .................................................................................................................350

26.2 Device HA General .......................................................................................................................350

26.3 The Active-Passive Mode Screen ..................... ................................................................ ............351

26.3.1 Configuring Active-Passive Mode Device HA ......................................................................353

26.4 Configuring an Active-Passive Mode Monitored Interface ............................................................355

26.5 Device HA Technical Reference ....................................................................................................356

Chapter 27

User/Group........................................................................................................................................361

27.1 Overview .......................................................................................................................................361

27.1.1 What You Can Do in this Chapter ........................................................................................361

27.1.2 What You Need To Know ............................................................ .........................................361

27.2 User Summary Screen ..................................................................................................................363

27.2.1 User Add/Edit Screen ..........................................................................................................364

27.3 User Group Summary Screen .......................................................................................................366

27.3.1 Group Add/Edit Screen ........................................................................................................367

27.4 The User/Group Setting Screen .......... ... ... .... ... ... ... .... ... ... ... .... ... ..................................................368

27.4.1 Default User Authentication Timeout Settings Edit Screens ................................................370

27.4.2 User Aware Login Example .................................................................................................371

27.5 User /Group Technical Reference .................................................................................................372

ZyWALL 110/310/1100 Series User’s Guide10

Chapter 28

Addresses .........................................................................................................................................374

28.1 Overview .......................................................................................................................................374

28.1.1 What You Can Do in this Chapter ........................................................................................374

28.1.2 What You Need To Know ............................................................ .........................................374

28.2 Address Summary Screen ...................... ... .... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ...............................374

28.2.1 IPv4 Address Add/Edit Screen ............................................................................................376

28.2.2 IPv6 Address Add/Edit Screen ............................................................................................377

28.3 Address Group Summary Screen .................................................................................................378

28.3.1 Address Group Add/Edit Screen ...... .... .......................................... ... ... ... .... ... .....................379

Chapter 29

Services.............................................................................................................................................380

29.1 Overview .......................................................................................................................................380

29.1.1 What You Can Do in this Chapter ........................................................................................380

29.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............380

29.2 The Service Summary Screen ......................................................................................................381

29.2.1 The Service Add/Edit Screen ..............................................................................................382

29.3 The Service Group Summary Screen ........................... ... ... .... ... ... ... ... .... ... ... ... .... ... ... ... ... .... ... .....383

29.3.1 The Service Group Add/Edit Screen ...................................................................................384

Chapter 30

Schedules..........................................................................................................................................386

30.1 Overview .......................................................................................................................................386

30.1.1 What You Can Do in this Chapter ........................................................................................386

30.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............386

30.2 The Schedule Summary Screen ...................................................................................................387

30.2.1 The One-Time Schedule Add/Edit Screen ...........................................................................388

30.2.2 The Recurring Schedule Add/Edit Screen .................. .........................................................389

Chapter 31

AAA Server........................................................................................................................................390

31.1 Overview .......................................................................................................................................390

31.1.1 Directory Service (AD/LDAP) ..............................................................................................390

31.1.2 RADIUS Server ...................................................................................................................390

31.1.3 ASAS ...................................................................................................................................391

31.1.4 What You Can Do in this Chapter ........................................................................................391

31.1.5 What You Need To Know ............................................................ .........................................391

31.2 Active Directory or LDAP Server Summary ..................................................................................393

31.2.1 Adding an Active Directory or LDAP Server ........................................................................ 393

31.3 RADIUS Server Summary .............................................................................................................396

31.3.1 Adding a RADIUS Server ...................................................................................................396

ZyWALL 110/310/1100 Series User’s Guide

Chapter 32

Authentication Method.....................................................................................................................399

32.1 Overview .......................................................................................................................................399

32.1.1 What You Can Do in this Chapter ........................................................................................399

32.1.2 Before You Begin .................................................................................................................399

32.1.3 Example: Selecting a VPN Authentication Method ..............................................................399

32.2 Authentication Method Objects .....................................................................................................400

32.2.1 Creating an Authentication Method Object .................................................. ... ... ... ... .... ... ... ..400

Chapter 33

Certificates........................................................................................................................................403

33.1 Overview .......................................................................................................................................403

33.1.1 What You Can Do in this Chapter ........................................................................................403

33.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............403

33.1.3 Verifying a Certificate ...........................................................................................................405

33.2 The My Certificates Screen .................. .................................... ................................ .....................406

33.2.1 The My Certificates Add Screen ..........................................................................................407

33.2.2 The My Certificates Edit Screen ................. ... .......................................... .... ... .....................409

33.2.3 The My Certificates Import Screen .....................................................................................412

33.3 The Trusted Certificates Screen ..................................................................................................413

33.3.1 The Trusted Certificates Edit Screen ..................................................................................414

33.3.2 The Trusted Certificates Import Screen ..............................................................................417

33.4 Certificates Technical Reference ...................................................................................................418

Chapter 34

ISP Accounts.....................................................................................................................................419

34.1 Overview .......................................................................................................................................419

34.1.1 What You Can Do in this Chapter ........................................................................................419

34.2 ISP Account Summary ..................................................................................................................419

34.2.1 ISP Account Edit .................................................................................................................420

Chapter 35

SSL Application................................................................................................................................422

35.1 Overview .......................................................................................................................................422

35.1.1 What You Can Do in this Chapter ........................................................................................422

35.1.2 What You Need to Know ....................................... ............. ............. ............. ............ ............422

35.1.3 Example: Specifying a Web Site for Access ............................................ ............................423

35.2 The SSL Application Screen ................................ ... .... ... ... ... .... ... ... ... ... .... ... ... ... .... ... ... ... ... ............424

35.2.1 Creating/Editing an SSL Application Object ........................................................................425

Chapter 36

DHCPv6..............................................................................................................................................428

36.1 Overview .......................................................................................................................................428

ZyWALL 110/310/1100 Series User’s Guide12

36.1.1 What You Can Do in this Chapter ........................................................................................428

36.2 The DHCPv6 Request Screen ................ ... .... ... ... ... .... ... ... ... .... ... ... ... ............................................428

36.2.1 DHCPv6 Request Add/Edit Screen .....................................................................................429

36.3 The DHCPv6 Lease Screen ........... ............................................. ... ... ... .... ... ..................................429

36.3.1 DHCPv6 Lease Add/Edit Screen .........................................................................................430

Chapter 37

System...............................................................................................................................................432

37.1 Overview .......................................................................................................................................432

37.1.1 What You Can Do in this Chapter ........................................................................................432

37.2 Host Name ....................................................................................................................................433

37.3 USB Storage .................................................................................................................................433

37.4 Date and Time ...............................................................................................................................434

37.4.1 Pre-defined NTP Time Servers List ......................................................... .... ... .....................437

37.4.2 Time Server Synchronization ............................................. ................ ................ ..................437

37.5 Console Port Speed ......................................................................................................................438

37.6 DNS Overview ...............................................................................................................................439

37.6.1 DNS Server Address Assignment .......................................................................................439

37.6.2 Configuring the DNS Screen ...............................................................................................439

37.6.3 Address Record ............................... ...................................................................................441

37.6.4 PTR Record .........................................................................................................................441

37.6.5 Adding an Address/PTR Record .........................................................................................442

37.6.6 Domain Zone Forwarder ......... .......................................... .......................................... ........442

37.6.7 Adding a Domain Zone Forwarder ......................................................................................442

37.6.8 MX Record ..........................................................................................................................443

37.6.9 Adding a MX Record ...........................................................................................................443

37.6.10 Adding a DNS Service Control Rule ................................ ... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ..444

37.7 WWW Overview ............................................................................................................................445

37.7.1 Service Access Limitations ..................................................................................................445

37.7.2 System Timeout ...................................................................................................................445

37.7.3 HTTPS .................................................................................................................................445

37.7.4 Configuring WWW Service Control .....................................................................................446

37.7.5 Service Control Rules ........................... ....................................................... ........................449

37.7.6 Customizing the WWW Login Page ....................................................................................450

37.7.7 HTTPS Example ..................................................................................................................454

37.8 SSH ............................................................................................................................................461

37.8.1 How SSH Works ......................... ... ... .......................................... .... ... ... ... .... ........................462

37.8.2 SSH Implementation on the ZyWALL ..................................................................................463

37.8.3 Requirements for Using SSH ................................... ... .... ... ... ... ... .........................................463

37.8.4 Configuring SSH ..................................................................................................................463

37.8.5 Secure Telnet Using SSH Examples ...................................................................................464

37.9 Telnet ............................................................................................................................................465

37.9.1 Configuring Telnet ................................................................................................................465

ZyWALL 110/310/1100 Series User’s Guide

37.10 FTP ............................................................................................................................................467

37.10.1 Configuring FTP ................................................................................................................467

37.11 SNMP ...... ... ... .... ... ... .......................................... ... .... .......................................... ........................468

37.11.1 Supported MIBs ..................... ... ... .......................................... ... .... ... ... ... ............................469

37.11.2 SNMP Traps .......................... ... ... ... .... .......................................... ... ... ... .... ... .....................470

37.11.3 Configuring SNMP ................. ... .......................................... ... ... .... ... ... ...............................470

37.12 Language Screen ........................................................................................................................472

37.13 IPv6 Screen ..................................... ... ... ... .... ... ... ... .... ... ... ... .... .....................................................472

Chapter 38

Log and Report .................................................................................................................................474

38.1 Overview .......................................................................................................................................474

38.1.1 What You Can Do In this Chapter ........................................................................................474

38.2 Email Daily Report ........................................................................................................................474

38.3 Log Setting Screens .....................................................................................................................476

38.3.1 Log Setting Summary ..........................................................................................................476

38.3.2 Edit System Log Settings ...................................................................................................478

38.3.3 Edit Log on USB Storage Setting . ... .......................................... .... ... ..................................480

38.3.4 Edit Remote Server Log Settings .......................................................................................482

38.3.5 Log Category Settings Screen .............................................................................................484

Chapter 39

File Manager......................................................................................................................................488

39.1 Overview .......................................................................................................................................488

39.1.1 What You Can Do in this Chapter ........................................................................................488

39.1.2 What you Need to Know ......................................................................................................488

39.2 The Configuration File Screen ......................................................................................................490

39.3 The Firmware Package Screen ....................................................................................................494

39.4 The Shell Script Screen ...............................................................................................................496

Chapter 40

Diagnostics ...................................................................................................................................... 499

40.1 Overview .......................................................................................................................................499

40.1.1 What You Can Do in this Chapter ........................................................................................499

40.2 The Diagnostic Screen ...... ... .......................................... ... ... .... ... ... ... ... .... ... ..................................499

40.2.1 The Diagnostics Files Screen ..............................................................................................500

40.3 The Packet Capture Screen ..........................................................................................................501

40.3.1 The Packet Capture Files Screen ........................................................................................503

40.4 Core Dump Screen .......................................................................................................................504

40.4.1 Core Dump Files Screen .....................................................................................................505

40.5 The System Log Screen ................................................................................................................505

Chapter 41

Packet Flow Explore.........................................................................................................................507

ZyWALL 110/310/1100 Series User’s Guide14

41.1 Overview .......................................................................................................................................507

41.1.1 What You Can Do in this Chapter ........................................................................................507

41.2 The Routing Status Screen ...........................................................................................................507

41.3 The SNAT Status Screen ..............................................................................................................511

Chapter 42

Reboot ...............................................................................................................................................514

42.1 Overview .......................................................................................................................................514

42.1.1 What You Need To Know ............................................................ .........................................514

42.2 The Reboot Screen .......................................................................................................................514

Chapter 43

Shutdown...........................................................................................................................................515

43.1 Overview .......................................................................................................................................515

43.1.1 What You Need To Know ............................................................ .........................................515

43.2 The Shutdown Screen ................................................................................................................. ..515

Chapter 44

Troubleshooting................................................................................................................................516

44.1 Resetting the ZyWALL ..................................................................................................................524

44.2 Getting More Troubleshooting Help ..............................................................................................525

Appendix A Legal Information..........................................................................................................526

Index ..................................................................................................................................................529

ZyWALL 110/310/1100 Series User’s Guide

PART I

User’s Guide

1.1 Overview

Note: This help covers the fo llowing ZyWALL models and refers to them all as “ZyWALL”.

Features and interface names vary by model. Ke y fe ature d iffe re nces be tw ee n ZyWALL models are as follows. Other features are common to all models although features may vary slightly by model. See the specific product’s datasheet for detailed specifications.

Table 1 Model-Specific Features

Port Role (see Section 7.2 on page 108) 110

Compact Flash Card Slot (not supported at the time of writing) 110

CHAPTER 1

Introduction

FEATURE ZYWALL

Rack-mounting 110, 310, 1100

Wall-mounting 110

Here are some ZyWALL application scenarios.

IPv6 Routing

The ZyWALL supports IPv6 Ethernet, PPP, VLAN, and bridge routing. You may also create IPv6 policy routes and IPv6 objects. The ZyWALL can also route IPv6 packets through IPv4 networks using different tunneling methods.

Figure 1 Applications: IPv6 Routing

VPN Connectivity

Set up VPN tunnels with other companies, branch offices, telecommuters, and business travelers to provide secure access to your network. You can also purchase the ZyWALL OTPv2 One-Time Password System for strong two-factor authentication for Web Configurator, Web access, SSL VPN, and ZyXEL IPSec VPN client user logins.

ZyWALL 110/310/1100 Series User’s Guide 18

Chapter 1 Introduction

OTP PIN

SafeWord 2008 Authentication Server

File

Web-based

Server

Application

*****

Web Mail File Share

Web-based Application

https://

Application Server

Non-Web

LAN (192.168.1.X)

Figure 2 Applications: VPN Connectivity

SSL VPN Network Access

SSL VPN lets remote users use their web browsers for a very easy-to-use VPN solution. A user just browses to the ZyWALL’s web address and enters his user name and password to securely connect to the ZyWALL’s network. Here full tunnel mode creates a virtual connection for a remote user and gives him a private IP address in the same subnet as the local network so he can access network resources in the same way as if he were part of the internal network.

Figure 3 SSL VPN With Full Tunnel Mode

User-Aware Access Control

Set up security policies to restrict access to sensitive information and shared resources based on the user who is trying to access it. In the following figure user A can access both the Internet and an internal file server. User B has a lower level of access and can only access the Internet. User C is not even logged in and cannot access either.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Figure 4 Applications: User-Aware Access Control

Load Balancing

Set up multiple connections to the Internet on the same port, or different ports, including cellular interfaces. In either case, you can balance the traffic loads between them.

Figure 5 Applications: Multiple WAN Interfaces

1.2 Management Overview

You can manage the ZyWALL in the following ways.

Web Configurator

The Web Configur ator allows easy ZyWALL setup and management using an Internet browser. This User’s Guide provides information about the Web Configurator.

Figure 6 Managing the ZyWALL: Web Configurator

ZyWALL 110/310/1100 Series User’s Guide

Command-Line Interface (CLI)

The CLI allows you to use text-based commands to configure the ZyWALL. Access it using remote management (for example, SSH or Telnet) or via the physical or Web Configurator console port. See the Command Reference Guide for CLI details. The default settings for the console port are:

Table 2 Console Port Default Settings

SETTING VALUE

Speed 115200 bps Data Bits 8 Parity None Stop Bit 1 Flow Control Off

1.3 Web Configurator

In order to use the Web Configurator, you must:

Chapter 1 Introduction

• Use one of the following web browser versions or later: Internet Explorer 7, Firefo x 3.5, Chr ome

9.0

• Allow pop-up windows (blocked by default in Windows XP Service Pack 2)

• Enable JavaScripts, Java permissions, and cookies

The recommended screen resolution is 1024 x 768 pixels.

1.3.1 Web Configurator Access

1 Make sure your ZyWALL hardware is properly connected. See the Quick Start Guide.

2 In your browser go to http://192.168.1.1. By default, the ZyWALL automatically routes this request

to its HTTPS server, and it is recommended to keep this setting. The Login screen appears.

3 Type the user name (default: “admin”) and password (default: “1234”).

If you have a OTP (One-Time Password) token generate a number and enter it in the One-Time Password field. The number is only good for one login. You must use the token to generate a new number the next time you log in.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

4 Click Login. If you logged in using the default user name and password, the Update Admin Info

screen appears. Otherwise, the dashboard appears.

5 Follow the directions in the Update Admin Info screen. If you change the default password, the

opens if the ZyWALL is using its default configuration; otherwise the dashboard appears.

1.3.2 Web Configurator Screens Overview

The Web Configurator screen is divided into these parts (as illustrated on page 22):

• A - title bar

• B - navigation panel

• C - main window

Title Bar

Figure 7 Title Bar

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

The title bar icons in the upper right corner provide the following functions.

Table 3 Title Bar: Web Configurator Icons

LABEL DESCRIPTION

Logout Click this to log out of the Web Configurator. Help Click this to open the help page for the current screen. About Click this to display basic information about the ZyWALL. Site Map Click this to see an overview of links to the Web Config urator screens. Object Reference Click this to check which configuration items reference an object. Console Click this to open a Java-based console window from which you can run command line

CLI Click this to open a popup window that displays the CLI commands sent by the Web

interface (CLI) commands. You will be prompted to enter your user name and password. See the Command Reference Guide for information about the commands.

Configurator to the ZyWALL.

About

Click About to display basic information about the ZyWALL.

Figure 8 About

Table 4 About

LABEL DESCRIPTION

Boot Module This shows the version number of the software that handles the booting process of the

ZyWALL. Current Version This shows the firmware version of the ZyWALL. Released Date This shows the date (yyyy-mm-dd) and time (hh:mm:ss) when the firmware is released. OK Click this to close the screen.

Site Map

Click Site MAP to see an overview of links to the Web Configurator screens. Click a screen’ s link to go to that screen.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Figure 9 Site Map

Object Reference

Click Object Reference to open the Object Reference screen. Select the type of object and the individual object and click Refresh to show which configuration settings reference the object.

Figure 10 Object Reference

The fields vary with the type of object. This table describes labels that can appear in this screen.

Table 5 Object References

LABEL DESCRIPTION

Object Name This identifies the object for which the configuration settings t hat use it are disp layed. Clic k the

# This field is a sequential value, and it is not associated with any entry. Service This is the type of setting that references the selected object. Click a service’s name to display

Priority If it is applicable, this field lists the refe rencing configuration item’s position in its list,

object’s name to display the object’s configuration screen in the main window.

the service’s configuration screen in the main window.

otherwise N/A displays.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Table 5 Object References (continued)

LABEL DESCRIPTION

Name This field identifies the configuration item that references the object. Description If the referencing configuration item has a description configured, it displays here. Refresh Click this to update the information in this screen. Cancel Click Cancel to close the screen.

Console

Click Console to open a Java-based console window from which you can run CLI commands. You will be prompted to enter your user name and password. See the Command Reference Guide for information about the commands.

Figure 11 Console Window

CLI Messages

Click CLI to look at the CLI commands sent by the W eb Configurator. Open the pop-up window and then click some menus in the web configurator to dislay the corresponding commands.

Figure 12 CLI Messages

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

1.3.3 Navigation Panel

Use the navigation panel menu items to open status and configuration screens. Click the arrow in the middle of the right edge of the navigation panel to hide the panel or drag to resize it. The following sections introduce the ZyWALL’s navigation panel menus and their screens.

Figure 13 Navigation Panel

Dashboard

The dashboard displays general device information, system status, system resource usage,, and interface status in widgets that you can re-arr ange to suit your needs. See the W eb Help for details on the dashboard.

Monitor Menu

The monitor menu screens display status and statistics information.

Table 6 Monitor Menu Screens Summary

FOLDER OR LINK TAB FUNCTION

System Status

Port Statistics Displays packet statistics for each physical port. Interface

Status Traffic

Statistics Session

Monitor DDNS Status Displays the status of the ZyWALL’s DDNS domain names. IP/MAC Binding Lists the devices that have received an IP address from ZyWALL interfaces

Displays general interface information and packet statistics.

Collect and display traffic statistics.

Displays the status of all current sessions.

using IP/MAC binding.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Table 6 Monitor Menu Screens Summary (continued)

FOLDER OR LINK TAB FUNCTION

Cellular Status Displays details about the ZyWALL’s 3G connection status. USB Storage Displays details about USB device connected to the ZyWALL.

VPN Monitor

IPSec Displays and manages the active IPSec SAs. SSL Lists users currently logged into the VPN SSL client portal. You can also log

out individual users and delete related session information.

L2TP over IPSec

Log Lists log entries.

Displays details about current L2TP sessions.

Configuration Menu

Use the configuration menu screens to configure the ZyWALL’s features.

Table 7 Configuration Menu Screens Summary

FOLDER OR LINK TAB FUNCTION

Quick Setup Quickly configure WAN interfaces or VPN connections. Network

Interface Port Role Use this screen to set the ZyWALL’s flexible ports as LAN1, WLAN,

or DMZ. Ethernet Manage Ethernet interfaces and virtual Ethernet interfaces. PPP Create and manage PPPoE and PPTP interfaces. Cellular Configure a cellular Internet connection for an installed 3G card. Tunnel Configure tunneling between IPv4 and IPv6 networks. VLAN Create and manage VLAN interfaces and virtual VLAN interfaces. Bridge Create and manage bridges and virtual bridge interfaces. Trunk Create and manage trunks (groups of interfaces) for load

balancing.

Routing Policy Route Create and manage routing policies.

Static Route Create and manage IP static routing information. RIP Configure device-level RIP settings. OSPF Configure device-level OSPF settings, including areas and virtual

Zone Configure zones used to define various policies. DDNS DDNS Define and manage the ZyWALL’s DDNS domain names. NAT Set up and manage port forwarding rules. HTTP Redirect Set up and manage HTTP redirection rules. ALG Configure SIP, H.323, and FTP pass-th rough settings. IP/MAC

Binding

DNS Inbound LBDNS Load

Auth. Policy Define rules to force user authentication.

Summary Configure IP to MAC address bindings for devices connected to

Exempt List Configure ranges of IP addresses to which th e ZyWALL does not

Balancing

links.

each supported interface.

apply IP/MAC binding.

Configure DNS Load Balancing.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Table 7 Configuration Menu Screens Summary (continued)

FOLDER OR LINK TAB FUNCTION

Firewall Firewall Create and manage level-3 traffic rules.

VPN

IPSec VPN VPN Connection Configure IPSec tunnels.

SSL VPN Access Privilege Configure SSL VPN access rights for users and groups.

L2TP VPN L2TP VPN Configure L2TP over IPSec tunnels. BWM BWM Enable and configure bandwidth management rules. Device HA General Configure device HA global settings, and see the status of each

Object

User/Group User Create and manage users.

Address Address Create and manage host, range, and network (subnet) addresses.

Service Service Create and manage TCP and UDP services.

Schedule Schedule Create one-time and recurring schedules.

AAA Server Active Directory Configure the Active Directory settings.

Auth. Method Authentication

Certificate My Cer tificates Create and manage the ZyWALL’s certifica tes.

ISP Account ISP Account Create and manage ISP account information for PPPoE/PPTP

SSL Application Create SSL web application objects.

DHCPv6 Request Configure IPv6 DHCP request type and interface information.

System

Host Name Configure the system and domain name for the ZyWALL.

USB Storage Settings Configure the settings for the connected USB devices.

Date/Time Configure the current date, time, and time zone in the ZyWALL.

Session Control Limit the number of concurrent client NAT/firewall sessions.

VPN Gateway Configure IKE tunnels. Concentrator Combine IPSec VPN con nections into a single secure network Configuration

Provisioning

Global Setting Configure the ZyWALL’s SSL VPN settings that apply to all

Active-Passive Mode

Group Create and manage groups of users. Setting Manage default settings for all users, general settings for user

Address Group Create and manage groups of addresses.

Service Group Create and manage groups of services.

LDAP Configure the LDAP settings. RADIUS Configure the RADIUS settings.

Method

Trusted Certificates Import and manage certificates from trusted sources.

Lease Configu r e IPv6 DHCP lease type and interface information.

Set who can retrieve VPN rule settings from the ZyWALL using the ZyWALL IPSec VPN Client.

connections.

interface monitored by device HA. Configure active-passive mode device HA.

sessions, and rules to force user authentication.

Create and manage ways of authenticating users.

interfaces.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Table 7 Configuration Menu Screens Summary (continued)

FOLDER OR LINK TAB FUNCTION

Console Speed Set the console speed.

DNS Configure the DNS server and address records for the ZyWALL.

WWW Service Control Configure HTTP, HTTPS, and general authentication.

Login Page Configure how the login and access user screens look. SSH Configure SSH server and SSH service settings. TELNET Configure telnet server settings for the ZyWALL. FTP Configure FTP server settings. SNMP Configure SNMP communities and services. Language Select the Web Configurator language. IPv6 Enable IPv6 globally on the ZyWALL here.

Log & Report

Email Daily Report

Log Settings Configure the system log, e-mail logs, and remote syslog servers.

Configure where and how to send daily reports and what reports to send.

Maintenance Menu

Use the maintenance menu screens to manage configuration and firmware files, run diagnostics, and reboot or shut down the ZyWALL.

Table 8 Maintenance Menu Screens Summary

FOLDER OR LINK

File Manager

Diagnostics Diagnostic Collect diagnostic information.

Packet Flow Explore

Reboot Restart the ZyWALL. Shutdown Turn off the ZyWALL.

TAB FUNCTION

Configuration File Manage and upload configuration files for the ZyWALL. Firmware Package View the current firmware version and to upload firmware. Shell Script Manage and run shell script files for the ZyWALL.

Packet Capture Capture packets for analysis. Core Dump Connect a USB device to the ZyWALL and save the ZyWALL operating

System Log Connect a USB device to the ZyWALL and archive the ZyWALL system logs

Routing Status Check how the ZyWALL determines where to route a packet. SNAT Status View a clear picture on how the ZyWALL converts a packet’s source IP

1.3.4 Tables and Lists

system kernel to it here.

to it here.

address and check the related settings.

Web Configurator tables and lists are flexible with several options for how to display their entries.

Click a column heading to sort the table’s entries according to that column’s criteria.

ZyWALL 110/310/1100 Series User’s Guide

Chapter 1 Introduction

Figure 14 Sorting Table Entries by a Column’s Criteria

Click the down arrow next to a column heading for more options about how to display the entries. The options available vary depending on the type of fields in the column. Here are some examples of what you can do:

• Sort in ascending or descending (reverse) alphabetical order

• Select which columns to display

• Group entries by field

• Show entries in groups

• Filter by mathematical operators (<, >, or =) or searching for text

Figure 15 Common Table Column Options

Select a column heading cell’s right border and drag to re-size the column.

Figure 16 Resizing a Table Column

Select a column heading and drag and drop it to change the column order. A green check mark displays next to the column’s title when you drag the column to a valid new location.

ZyWALL 110/310/1100 Series User’s Guide

+ 515 hidden pages