ZyWALL USG 50
Unified Security Gateway
Default Login Details
LAN Port P3, P4
IP Address https://192.168.1.1
User Name admin
Password 1234
www.zyxel.com
Version 2.21
Edition 4, 4/2011
www.zyxel.com
Copyright © 2011
ZyXEL Communications Corporation
About This User's Guide
About This User's Guide
Intended Audience
This manual is intended for people who want to want to configure the ZyWALL
using the Web Configurator.
How To Use This Guide
•Read Chapter 1 on page 31 chapter for an overview of features available on the
ZyWALL.
•Read Chapter 3 on page 45 for web browser requirements and an introduction
to the main components, icons and menus in the ZyWALL Web Configurator.
•Read Chapter 4 on page 61 if you’re using the installation wizard for first time
setup and you want more detailed information than what the real time online
help provides.
•Read Chapter 5 on page 71 if you’re using the quick setup wizards and you want
more detailed information than what the real time online help provides.
• It is highly recommended you read Chapter 6 on page 89 for detailed
information on essential terms used in the ZyWALL, what prerequisites are
needed to configure a feature and how to use that feature.
• It is highly recommended you read Chapter 7 on page 111 for ZyWALL
application examples.
• Subsequent chapters are arranged by menu item as defined in the Web
Configurator. Read each chapter carefully for detailed information on that menu
item.
• To find specific information in this guide, use the Contents Overview, the
Table of Contents , the Index , or search the PDF file. E-mail
techwriters@zyxel.com.tw if you cannot find the information you require.
Related Documentation
•Quick Start Guide
The Quick Start Guide is designed to show you how to make the ZyWALL
hardware connections and access the Web Configurator wizards. (See the
wizard real time help for information on configuring each screen.) It also
contains a connection diagram and package contents list.
•CLI Reference Guide
The CLI Reference Guide explains how to use the Command-Line Interface (CLI)
to configure the ZyWALL.
Note: It is recommended you use the Web Configurator to configure the ZyWALL.
ZyWALL USG 50 User’s Guide
3
About This User's Guide
• Web Configurator Online Help
Click the help icon in any screen for help in configuring that screen and
supplementary information.
• ZyXEL Web Site
Please refer to www.zyxel.com
product certifications.
for additional support documentation and
User Guide Feedback
Help us help you. Send all User Guide-related comments, questions or suggestions
for improvement to the following address, or use e-mail instead. Thank you!
The Technical Writing Team,
ZyXEL Communications Corp.,
6 Innovation Road II,
Science-Based Industrial Park,
Hsinchu, 300, Taiwan.
E-mail: techwriters@zyxel.com.tw
Need More Help?
More help is available at www.zyxel.com.
4
• Download Library
Search for the latest product updates and documentation from this link. Read
the Tech Doc Overview to find out how to efficiently use the User Guide, Quick
Start Guide and Command Line Interface Reference Guide in order to better
understand how to use your product.
• Knowledge Base
If you have a specific question about your product, the answer may be here.
This is a collection of answers to previously asked questions about ZyXEL
products.
ZyWALL USG 50 User’s Guide
About This User's Guide
•Forum
This contains discussions on ZyXEL products. Learn from others who use ZyXEL
products and share your experiences as well.
Customer Support
Should problems arise that cannot be solved by the methods listed above, you
should contact your vendor. If you cannot contact your vendor, then contact a
ZyXEL office for the region in which you bought the device.
See http://www.zyxel.com/web/contact_us.php for contact information. Please
have the following information ready when you contact an office.
• Product model and serial number.
•Warranty Information.
• Date that you received your device.
• Brief description of the problem and the steps you took to solve it.
Disclaimer
Graphics in this book may differ slightly from the product due to differences in
operating systems, operating system versions, or if you installed updated
firmware/software for your device. Every effort has been made to ensure that the
information in this manual is accurate.
ZyWALL USG 50 User’s Guide
5
Document Conventions
Warnings and Notes
These are how warnings and notes are shown in this User’s Guide.
Warnings tell you about things that could harm you or your device.
Note: Notes tell you other important information (for example, other things you may
need to configure or helpful tips) or recommendations.
Syntax Conventions
• The ZyWALL may be referred to as the “ZyWALL”, the “device”, the “system” or
the “product” in this User’s Guide.
• Product labels, screen names, field labels and field choices are all in bold font.
Document Conventions
• A key stroke is denoted by square brackets and uppercase text, for example,
[ENTER] means the “enter” or “return” key on your keyboard.
• “Enter” means for you to type one or more characters and then press the
[ENTER] key. “Select” or “choose” means for you to use one of the predefined
choices.
• A right angle bracket ( > ) within a screen name denotes a mouse click. For
example, Maintenance > Log > Log Setting means you first click
Maintenance in the navigation panel, then the Log sub menu and finally the
Log Setting tab to get to that screen.
• Units of measurement may denote the “metric” value or the “scientific” value.
For example, “k” for kilo may denote “1000” or “1024”, “M” for mega may
denote “1000000” or “1048576” and so on.
• “e.g.,” is a shorthand for “for instance”, and “i.e.,” means “that is” or “in other
words”.
6
ZyWALL USG 50 User’s Guide
Document Conventions
Icons Used in Figures
Figures in this User’s Guide may use the following generic icons. The ZyWALL icon
is not an exact representation of your device.
ZyWALL Computer Notebook computer
Server Firewall Telep h o n e
Switch Router
ZyWALL USG 50 User’s Guide
7
Safety Warnings
• Do NOT use this product near water, for example, in a wet basement or near a swimming
pool.
• Do NOT expose your device to dampness, dust or corrosive liquids.
• Do NOT store things on the device.
• Do NOT install, use, or service this device during a thunderstorm. There is a remote risk
of electric shock from lightning.
• Connect ONLY suitable accessories to the device.
• Do NOT open the device or unit. Opening or removing covers can expose you to
dangerous high voltage points or other risks. ONLY qualified service personnel should
service or disassemble this device. Please contact your vendor for further information.
• Make sure to connect the cables to the correct ports.
• Place connecting cables carefully so that no one will step on them or stumble over them.
• Always disconnect all cables from this device before servicing or disassembling.
• Use ONLY an appropriate power adaptor or cord for your device. Connect it to the right
supply voltage (for example, 110V AC in North America or 230V AC in Europe).
• Do NOT remove the plug and connect it to a power outlet by itself; always attach the plug
to the power adaptor first before connecting it to a power outlet.
• Do NOT allow anything to rest on the power adaptor or cord and do NOT place the
product where anyone can walk on the power adaptor or cord.
• Do NOT use the device if the power adaptor or cord is damaged as it might cause
electrocution.
• If the power adaptor or cord is damaged, remove it from the device and the power
source.
• Do NOT attempt to repair the power adaptor or cord. Contact your local vendor to order a
new one.
• Do not use the device outside, and make sure all the connections are indoors. There is a
remote risk of electric shock from lightning.
• CAUTION: RISK OF EXPLOSION IF BATTERY (on the motherboard) IS REPLACED BY AN
INCORRECT TYPE. DISPOSE OF USED BATTERIES ACCORDING TO THE INSTRUCTIONS.
Dispose them at the applicable collection point for the recycling of electrical and
electronic equipment. For detailed information about recycling of this product, please
contact your local city office, your household waste disposal service or the store where
you purchased the product.
• Do NOT obstruct the device ventilation slots, as insufficient airflow may harm your
device.
Safety Warnings
8
Your product is marked with this symbol, which is known as the WEEE mark. WEEE
stands for Waste Electronics and Electrical Equipment. It means that used electrical
and electronic products should not be mixed with general waste. Used electrical and
electronic equipment should be treated separately.
ZyWALL USG 50 User’s Guide
Contents Overview
Contents Overview
User’s Guide .............................................................................................. .......... ...................29
Introducing the ZyWALL ............................................................................................................ 31
Features and Applications ......................................................................................................... 37
Web Configurator ......................................... .... ... ... ... .... ... ... ............................................. .......... 45
Installation Setup Wizard .................................... ............................................................. ..........61
Quick Setup ............................................................................................................................... 71
Configuration Basics .............. ............................................. ... .... ................................................ 89
Tutorials ................................................................................................. ...................................111
Technical Reference ............................................................................................................157
Dashboard ............................................................................................................................... 159
Monitor ...................................... ....................... ................... ....................... .............................. 171
Registration ............................................................................................................................. 213
Interfaces ..................................... .................................................... ........................................ 221
Trunks .................................................... .......................................... ........................................ 277
Policy and Static Routes ..........................................................................................................287
Routing Protocols .................................................................................................................... 303
Zones .............................. .................... ................... .................... ................... ........................... 317
DDNS ......................................................................................................................................321
NAT ................................. ............................. .............................. ............................. ................. 327
HTTP Redirect ......................................................................................................................... 337
ALG ......................................................................................................................................... 341
IP/MAC Binding ....................................................................................................................... 349
Authentication Policy ............. ... ... .... ............................................. ... ... ..................................... 355
Firewall .................................................................................................................................... 363
IPSec VPN ................... ............................................. .... ... ............................................. ........... 381
SSL VPN ................................................................................................................................. 417
SSL User Screens .................................................................................................................. 427
SSL User Application Screens ................................................................................................437
ZyWALL SecuExtender ...... ... ... ... .... ... ... ... ............................................. .... ... ... ........................ 439
Application Patrol .....................................................................................................................443
Anti-Virus ................................................................................................................................. 469
IDP ............................... .................... ................... ................... .................... ..............................485
ADP ......................................................................................................................................... 519
Content Filtering .......... ... .... ... ............................................. ... .... .............................................. 539
Content Filter Reports ............................................................................................................. 565
Anti-Spam ................................................................................................................................ 573
User/Group .............................................................................................................................. 591
ZyWALL USG 50 User’s Guide
9
Contents Overview
Addresses ........................... ................... ................... .................... ................... ........................ 607
Services .............................. ....................................................... .............................................. 613
Schedules .............................. ................................................ .................................................. 619
AAA Server .............................................................................................................................. 625
Authentication Method .............................. ... .... ... ............................................. ... .... ... ..............635
Certificates ................................... ....................... ................... ....................... ........................... 641
ISP Accounts ............................................ ... .... ... ............................................. ... .... .................663
SSL Application ....................................................................................................................... 667
Endpoint Security .................................................................................................................... 673
System ................................ ...................... ....................... ...................... .................................. 681
Log and Report ........................................................................................................................ 731
File Manager ............................................................................................................................745
Diagnostics ............................................................................................................................ 757
Packet Flow Explore ................................................................................................................ 767
Reboot ..................................................................................................................................... 775
Shutdown ......................................... ............................. ......................... .................................. 777
Troubleshooting .................................................. ..................................................................... 779
Product Specifications ............................................................................................................. 795
10
ZyWALL USG 50 User’s Guide
Table of Contents
Table of Contents
About This User's Guide..........................................................................................................3
Document Conventions............................................................................................................6
Safety Warnings ........................................................................................................................8
Contents Overview ...................................................................................................................9
Table of Contents....................................................................................................................11
Part I: User’s Guide................................................................................ 29
Chapter 1
Introducing the ZyWALL ........................................................................................................31
1.1 Overview and Key Default Settings .....................................................................................31
1.2 Rack-mounted Installation ...................................................................................................32
1.2.1 Rack-Mounted Installation Procedure ........................................................................ 32
1.3 Front Panel ............................................ .... ... ... ............................................. .... ... ................33
1.3.1 Front Panel LEDs ...................................... .... ... ... ............................................. ... .... ... 33
1.4 Management Overview .......... .............................................. ... ... ..........................................34
1.5 Starting and Stopping the ZyWALL ............................ ... ... .... ... ... ... ....................................... 35
Chapter 2
Features and Applications.....................................................................................................37
2.1 Features ............................................. ............................................. .... ... ............................. 37
2.2 Applications ........... ... .............................................. ... ... ... .................................................... 39
2.2.1 VPN Connectivity ................ ... ............................................. ... .... ... ............................. 40
2.2.2 SSL VPN Network Access ............... ............................................. ... ... ....................... 40
2.2.3 User-Aware Access Control ....................................................................................... 42
2.2.4 Multiple WAN Interfaces ................... ... ... ... .............................................. ... ... ............. 43
Chapter 3
Web Configurator....................................................................................................................45
3.1 Web Configurator Requirements ......................................................................................... 45
3.2 Web Configurator Access ....................................................................................................45
3.3 Web Configurator Screens Overview .................................................................................. 47
3.3.1 Title Bar .................................. ... ... .............................................. ... ... .......................... 48
3.3.2 Navigation Panel .......... .... ... ... ... ... .... .......................................................................... 49
ZyWALL USG 50 User’s Guide
11
Table of Contents
3.3.3 Main Window .......................... ............................................. ... .... ................................55
3.3.4 Tables and Lists ........ ... .... ... ... ... ... .............................................. ... ... ..........................57
Chapter 4
Installation Setup Wizard.......................................................................................................61
4.1 Installation Setup Wizard Screens ...................................................................................... 61
4.1.1 Internet Access Setup - WAN Interface ..................................................................... 61
4.1.2 Internet Access: Ethernet .......................................................................................... 62
4.1.3 Internet Access: PPPoE ............................................................................................. 64
4.1.4 Internet Access: PPTP .............................................................................................. 65
4.1.5 ISP Parameters ................................... ... ... .............................................. ... ... .............66
4.1.6 Internet Access Setup - Second WAN Interface ........................................................ 67
4.1.7 Internet Access - Finish .............................................................................................68
4.2 Device Registration ........................................................................................................... 68
Chapter 5
Quick Setup.............................................................................................................................71
5.1 Quick Setup Overview ..................................... ............................................. .... ... ................71
5.2 WAN Interface Quick Setup .................................................................................................72
5.2.1 Choose an Ethernet Interface ....................... ... ... ... .... ... ... .......................................... 72
5.2.2 Select WAN Type ................................... ... .... ... ... ... .... ... ............................................. 72
5.2.3 Configure WAN Settings ............................................................................................ 73
5.2.4 WAN and ISP Connection Settings ............................................................................ 74
5.2.5 Quick Setup Interface Wizard: Summary ................................................................... 76
5.3 VPN Quick Setup .......... ... ... ............................................. .... ... ............................................. 77
5.4 VPN Setup Wizard: Wizard Type ......................................................................................... 78
5.5 VPN Express Wizard - Scenario ......................................................................................... 79
5.5.1 VPN Express Wizard - Configuration ................................. ....................................... 80
5.5.2 VPN Express Wizard - Summary ................................. ... ... ....................................... 81
5.5.3 VPN Express Wizard - Finish .................................................................................... 82
5.5.4 VPN Advanced Wizard - Scenario ............................................................................ 83
5.5.5 VPN Advanced Wizard - Phase 1 Settings ...............................................................84
5.5.6 VPN Advanced Wizard - Phase 2 ............................................................................. 86
5.5.7 VPN Advanced Wizard - Summary ........................................................................... 87
5.5.8 VPN Advanced Wizard - Finish ................................................................................. 88
Chapter 6
Configuration Basics..............................................................................................................89
12
6.1 Object-based Configuration .......................... ... ... .... ............................................. ... ... ... .......89
6.2 Zones, Interfaces, and Physical Ports ................................................................................. 90
6.2.1 Interface Types .................................................... ... .... ... ............................................. 91
6.2.2 Default Interface and Zone Configuration .................................................................. 91
6.3 Terminology in the ZyWALL ....................... ... ... ... .... ............................................. ... ... ... .......93
ZyWALL USG 50 User’s Guide
Table of Contents
6.4 Packet Flow ........................................... .............................................. ... ... .......................... 93
6.4.1 Routing Table Checking Flow ..................................................................................... 95
6.4.2 NAT Table Checking Flow .......................................................................... ... ... ... .... ... 96
6.5 Feature Configuration Overview ......................................................................................... 97
6.5.1 Feature ...................................... ... .... ... ............................................. ... .... ... ................97
6.5.2 Licensing Registration ............................ ... .... ... ............................................. ... ... .... ... 98
6.5.3 Licensing Update ................................................... .... ............................................. ... 98
6.5.4 Interface ....................... .... ... ... ............................................. ... .... ................................ 98
6.5.5 Trunks ................. ... ... ... .... ... ... ............................................. ... .... ................................ 99
6.5.6 Policy Routes ...................... ... ............................................. ... .... ... ............................. 99
6.5.7 Static Routes .................................... ... ............................................. ... .... .................100
6.5.8 Zones ..................... ... ............................................. .... ... ... ........................................ 100
6.5.9 DDNS ..... ... ............................................. ... .... ............................................. ... ... ... ..... 101
6.5.10 NAT ........................................................................................................................ 101
6.5.11 HTTP Redirect ........................................................................................................ 101
6.5.12 ALG ........................................................................................................................ 102
6.5.13 Auth. Policy ............................................................................................................102
6.5.14 Firewall ................................................................................................................... 103
6.5.15 IPSec VPN ............................................................................................................. 104
6.5.16 SSL VPN ................................................................................................................ 104
6.5.17 Application Patrol ................................................................................................... 104
6.5.18 Anti-Virus ................................................................................................................105
6.5.19 IDP ......................................................................................................................... 105
6.5.20 ADP ........................................................................................................................ 105
6.5.21 Content Filter ..........................................................................................................105
6.5.22 Anti-Spam ...............................................................................................................106
6.6 Objects ............................................ ............................................. ... .... .............................. 107
6.6.1 User/Group ....................... ............................................. ... ... .....................................107
6.7 System ............. ............................................. ... ... .............................................. ... ..............108
6.7.1 DNS, WWW, SSH, TELNET, FTP, SNMP, Vantage CNM ........................................108
6.7.2 Logs and Reports ..................................................................................................... 109
6.7.3 File Manager .......................... ... ... .... ............................................. ... ... ..................... 109
6.7.4 Diagnostics ................ ... .... ... ... ... ... .............................................. ... ... ........................ 109
6.7.5 Shutdown ..................... .... ... ... ............................................. ... .... ..............................109
Chapter 7
Tutorials.................................................................................................................................111
7.1 How to Configure Interfaces, Port Roles, and Zones .........................................................111
7.1.1 Configure a WAN Ethernet Interface ................................ ... ... .... ... ... ... .... ... ... ... ....... ..112
7.1.2 Configure Port Roles .................................................................................................113
7.1.3 Configure the DMZ Interface for a Local Network ............... ......................................113
7.1.4 Configure Zones ........................... .............................................. ... ... .........................114
7.2 How to Configure a Cellular Interface . ... .............................................. ... ... .........................115
ZyWALL USG 50 User’s Guide
13
Table of Contents
7.3 How to Configure Load Balancing ......................................................................................117
7.3.1 Set Up Available Bandwidth on Ethernet Interfaces .................................................117
7.3.2 Configure the WAN Trunk .........................................................................................118
7.4 How to Set Up an IPSec VPN Tunnel ................................................................................ 120
7.4.1 Set Up the VPN Gateway ......................................................................................... 121
7.4.2 Set Up the VPN Connection ..................................................................................... 122
7.4.3 Configure Security Policies for the VPN Tunnel .................................. ..................... 123
7.5 How to Configure User-aware Access Control .................................................................. 124
7.5.1 Set Up User Accounts .............................................................................................. 124
7.5.2 Set Up User Groups ................................................................................................. 125
7.5.3 Set Up User Authentication Using the RADIUS Server .......................... ... ... ... ... .... . 126
7.5.4 Web Surfing Policies With Bandwidth Restrictions .................................................. 128
7.5.5 Set Up MSN Policies ................................................................................................ 131
7.5.6 Set Up Firewall Rules ............................................................................................... 132
7.6 How to Use a RADIUS Server to Authenticate User Accounts based on Groups ............. 133
7.7 How to Use Endpoint Security and Authentication Policies ............................................... 135
7.7.1 Configure the Endpoint Security Objects ................................................................. 135
7.7.2 Configure the Authentication Policy ......................................................................... 137
7.8 How to Configure Service Control ..................................................................................... 138
7.8.1 Allow HTTPS Administrator Access Only From the LAN ......................................... 139
7.9 How to Allow Incoming H.323 Peer-to-peer Calls ............................................... ... ... ... .... . 141
7.9.1 Turn On the ALG .............................. ... ............................................. ... .... ................. 142
7.9.2 Set Up a NAT Policy For H.323 ................................................................................142
7.9.3 Set Up a Firewall Rule For H.323 ............................................................................ 144
7.10 How to Allow Public Access to a Web Server .......................... ...... ....... ...... ....... ...... ....... . 145
7.10.1 Create the Address Objects ...................................................................................146
7.10.2 Configure NAT ........................................................................................................ 146
7.10.3 Set Up a Firewall Rule ........................................................................................... 147
7.11 How to Use an IPPBX on the DMZ .................................................................................. 148
7.11.1 Turn On the ALG .................................................................................................... 150
7.11.2 Create the Address Objects ................................................................................... 150
7.11.3 Setup a NAT Policy for the IPPBX .......................................................................... 151
7.11.4 Set Up a WAN to DMZ Firewall Rule for SIP .......................................................... 152
7.11.5 Set Up a DMZ to LAN Firewall Rule for SIP ......... .... ... ........................................... 153
7.12 How to Use Multiple Static Public WAN IP Addresses for LAN to WAN Traffic ............... 154
7.12.1 Create the Public IP Address Range Object ............ .............................................. 1 54
7.12.2 Configure the Policy Route .................................................................................... 155
Part II: Technical Reference................................................................ 157
Chapter 8
Dashboard.............................................................................................................................159
14
ZyWALL USG 50 User’s Guide
Table of Contents
8.1 Overview .......... ... ... ... .... ... ... ... .............................................. ... ... ... ..................................... 159
8.1.1 What Y ou Can Do in this Chapter ............................................................................159
8.2 The Dashboard Screen ..................................................................................................... 159
8.2.1 The CPU Usage Screen ........................................................................................... 165
8.2.2 The Memory Usage Screen ...................... .... ... ... ............................................. ... .... . 166
8.2.3 The Active Sessions Screen .................................................................................... 167
8.2.4 The VPN Status Screen ................................................ ... ... ... .................................. 168
8.2.5 The DHCP Table Screen ..........................................................................................168
8.2.6 The Number of Login Users Screen ................................. ... ... .... ... ... ... .... ... ... ... ....... . 169
Chapter 9
Monitor...................................................................................................................................171
9.1 Overview .......... ... ... ... .... ... ... ... .............................................. ... ... ... ..................................... 171
9.1.1 What Y ou Can Do in this Chapter ............................................................................171
9.2 The Port Statistics Screen ................................................................................................172
9.2.1 The Port Statistics Graph Screen ................. ... ... ... .... ... ... ... ..................................... 174
9.3 Interface Status Screen ..................................................................................................... 175
9.4 The Traffic Statistics Screen ..............................................................................................177
9.5 The Session Monitor Screen .................... ... ... ... .............................................. ... ... ........... 180
9.6 The DDNS Status Screen .................................................................................................. 183
9.7 IP/MAC Binding Monitor ............ ... ............................................. ... ... .... .............................. 183
9.8 The Login Users Screen ................................................................................................... 184
9.9 Cellular Status Screen .................. ... ... ... .... ... ... ............................................. .... ... ... ...........185
9.9.1 More Information . ... ... ... .... ... ... ............................................. ... .... ... ........................... 187
9.10 USB Storage Screen ....................................................................................................... 188
9.11 Application Patrol Statistics .............................................................................................. 189
9.11.1 Application Patrol Statistics: General Setup ........................................................... 190
9.11.2 Application Patrol Statistics: Bandwidth Statistics ..................................................191
9.11.3 Application Patrol Statistics: Protocol Statistics ..................................................... 192
9.11.4 Application Patrol Statistics: Individual Protocol Statistics by Rule ........................ 193
9.12 The IPSec Monitor Screen .............................................................................................. 194
9.12.1 Regular Expressions in Searching IPSec SAs ....................................................... 195
9.13 The SSL Connection Monitor Screen ..............................................................................196
9.14 The Anti-Virus Statistics Screen ...................................................................................... 197
9.15 The IDP Statistics Screen ........... ...... ............................................................................... 199
9.16 The Content Filter Statistics Screen ................................................................................ 201
9.17 Content Filter Cache Screen ........................................................................................... 203
9.18 The Anti-Spam Statistics Screen ..................................................................................... 206
9.19 The Anti-Spam Status Screen .........................................................................................208
9.20 Log Screen ...................................................................................................................... 209
Chapter 10
Registration...........................................................................................................................213
ZyWALL USG 50 User’s Guide
15
Table of Contents
10.1 Overview .......................................................................................................................... 213
10.1.1 What You Can Do in this Chapter .......................................................................... 213
10.1.2 What you Need to Know ........................................................................................ 213
10.2 The Registration Screen .................................................................................................. 215
10.3 The Service Screen ......................................................................................................... 218
Chapter 11
Interfaces...............................................................................................................................221
11.1 Interface Overview ........................................................................................................... 221
11.1.1 What You Can Do in this Chapter ................................ ... ... ... .... .............................. 221
11.1.2 What You Need to Know ........................................................................................ 222
11.2 Port Role .................................................................... ... .... ..............................................224
11.3 Ethernet Summary Screen ............................................................................................... 225
11.3.1 Ethernet Edit ..........................................................................................................227
11.3.2 Object References .................................................................................................. 236
11.4 PPP Interfaces ................................................................................................................237
11.4.1 PPP Interface Summary ......................................................................................... 238
11.4.2 PPP Interface Add or Edit ..................................................................................... 2 39
11.5 Cellular Configuration Screen (3G) .................................................................................. 243
11.5.1 Cellular Add/Edit Screen ........................................................................................ 245
11.6 VLAN Interfaces .............................................................................................................. 252
11.6.1 VLAN Summary Screen ......................................................................................... 254
11.6.2 VLAN Add/Edit ...................................................................................................... 255
11.7 Bridge Interfaces ............................................................................................................. 262
11.7.1 Bridge Summary .....................................................................................................264
11.7.2 Bridge Add/Edit ................................................... .... ... ... ... ... .... .............................. 265
11.7.3 Virtual Interfaces Add/Edit ...................................................................................... 270
11.8 Interface Technical Reference ......................................................................................... 272
Chapter 12
Trunks....................................................................................................................................277
12.1 Overview .......................................................................................................................... 277
12.1.1 What You Can Do in this Chapter .......................................................................... 277
12.1.2 What You Need to Know ........................................................................................ 278
12.2 The Trunk Summary Screen .............................................. ... ... ... ... .................................. 282
12.3 Configuring a Trunk ........................................................................................................ 283
12.4 Trunk Technical Reference .............................................................................................. 285
Chapter 13
Policy and Static Routes......................................................................................................287
13.1 Policy and Static Routes Overview .................................................................................. 287
13.1.1 What You Can Do in this Chapter .......................................................................... 287
13.1.2 What You Need to Know ....................................................................................... 288
16
ZyWALL USG 50 User’s Guide
Table of Contents
13.2 Policy Route Screen ........................................................................................................ 290
13.2.1 Policy Route Edit Screen ....................................................................................... 293
13.3 IP Static Route Screen ....................................................................................................297
13.3.1 Static Route Add/Edit Screen ................................................................................. 298
13.4 Policy Routing Technical Reference ................................................................................ 299
Chapter 14
Routing Protocols .................................................................................................................303
14.1 Routing Protocols Overview ............................................................................................ 303
14.1.1 What You Can Do in this Chapter .......................................................................... 303
14.1.2 What You Need to Know ........................................................................................ 303
14.2 The RIP Screen ... ... .... ............................................. ... ... ............................................. ..... 304
14.3 The OSPF Screen ................... ... ... ... ............................................. .... ... ...........................305
14.3.1 Configuring the OSPF Screen .................................. ......... .......... .......... ......... ........ 309
14.3.2 OSPF Area Add/Edit Screen ................................................................................. 312
14.3.3 Virtual Link Add/Edit Screen ................................................................................. 313
14.4 Routing Protocol Technical Reference ............................................................................ 314
Chapter 15
Zones .....................................................................................................................................317
15.1 Zones Overview ............................................................................................................... 317
15.1.1 What You Can Do in this Chapter .......................................................................... 317
15.1.2 What You Need to Know ........................................................................................ 318
15.2 The Zone Screen ................................. .... ... ... ............................................. .... ... ... ...........319
15.3 Zone Edit ........................................................................................................................ 320
Chapter 16
DDNS......................................................................................................................................321
16.1 DDNS Overview .............................................................................................................. 321
16.1.1 What You Can Do in this Chapter .......................................................................... 321
16.1.2 What You Need to Know ........................................................................................ 321
16.2 The DDNS Screen ...........................................................................................................322
16.2.1 The Dynamic DNS Add/Edit Screen ...................................................................... 324
Chapter 17
NAT.........................................................................................................................................327
17.1 NAT Overview .................................................................................................................. 327
17.1.1 What You Can Do in this Chapter .......................................................................... 327
17.1.2 What You Need to Know ........................................................................................ 328
17.2 The NAT Screen ......................................... ............................................. ... .... .................328
17.2.1 The NAT Add/Edit Screen .... ... ... .... ........................................................................ 330
17.3 NAT Technical Reference ................................................................................................ 333
ZyWALL USG 50 User’s Guide
17
Table of Contents
Chapter 18
HTTP Redirect.......................................................................................................................337
18.1 Overview .......................................................................................................................... 337
18.1.1 What You Can Do in this Chapter .......................................................................... 337
18.1.2 What You Need to Know ........................................................................................ 338
18.2 The HTTP Redirect Screen ............................................................................................. 339
18.2.1 The HTTP Redirect Edit Screen ............................................................................. 340
Chapter 19
ALG ........................................................................................................................................341
19.1 ALG Overview ................................................................................................................. 341
19.1.1 What You Can Do in this Chapter .......................................................................... 341
19.1.2 What You Need to Know ........................................................................................ 342
19.1.3 Before You Begin ...................................................................................................345
19.2 The ALG Screen ..............................................................................................................345
19.3 ALG Technical Reference ................................................................................................ 347
Chapter 20
IP/MAC Binding.....................................................................................................................349
20.1 IP/MAC Binding Overview ............................................................................................... 349
20.1.1 What You Can Do in this Chapter .......................................................................... 349
20.1.2 What You Need to Know ........................................................................................ 350
20.2 IP/MAC Binding Summary ............................................................................................... 350
20.2.1 IP/MAC Binding Edit ............................................................................................... 351
20.2.2 Static DHCP Edit .................................................................................................... 352
20.3 IP/MAC Binding Exempt List ........................................................................................... 353
Chapter 21
Authentication Policy...........................................................................................................355
21.1 Overview .......................................................................................................................... 355
21.1.1 What You Can Do in this Chapter .......................................................................... 355
21.1.2 What You Need to Know ........................................................................................ 356
21.2 Authentication Policy Screen ........................................................................................... 356
21.2.1 Creating/Editing an Authentication Policy .............................................................. 359
Chapter 22
Firewall...................................................................................................................................363
18
22.1 Overview .......................................................................................................................... 363
22.1.1 What You Can Do in this Chapter .......................................................................... 363
22.1.2 What You Need to Know ........................................................................................ 364
22.1.3 Firewall Rule Example Applications .................................. .....................................366
22.1.4 Firewall Rule Configuration Example ..................................................................... 369
22.2 The Firewall Screen ................. ... ............................................. ... ... .... .............................. 371
ZyWALL USG 50 User’s Guide
Table of Contents
22.2.1 Configuring the Firewall Screen ............................... .............................................. 3 72
22.2.2 The Firewall Add/Edit Screen ................................................................................. 375
22.3 The Session Limit Screen ................................................................................................ 376
22.3.1 The Session Limit Add/Edit Screen ........................................................................ 378
Chapter 23
IPSec VPN..............................................................................................................................381
23.1 IPSec VPN Overview .......................................................................................................381
23.1.1 What You Can Do in this Chapter .......................................................................... 381
23.1.2 What You Need to Know ........................................................................................ 382
23.1.3 Before You Begin ...................................................................................................384
23.2 The VPN Connection Screen .......................................................................................... 384
23.2.1 The VPN Connection Add/Edit (IKE) Screen ......................................................... 386
23.2.2 The VPN Connection Add/Edit Manual Key Screen .............................................. 393
23.3 The VPN Gateway Screen .............................................................................................. 396
23.3.1 The VPN Gateway Add/Edit Screen ...................................................................... 397
23.4 IPSec VPN Background Information ............................................................................... 405
Chapter 24
SSL VPN.................................................................................................................................417
24.1 Overview .......................................................................................................................... 417
24.1.1 What You Can Do in this Chapter .......................................................................... 417
24.1.2 What You Need to Know ........................................................................................ 417
24.2 The SSL Access Privilege Screen ................................................................................... 419
24.2.1 The SSL Access Policy Add/Edit Screen .............................................................. 420
24.3 The SSL Global Setting Screen ............... ... ... ... .... ... ... ............................................. ... .... . 423
24.3.1 How to Upload a Custom Logo .............................................................................. 424
24.4 Establishing an SSL VPN Connection ............................................................................. 425
Chapter 25
SSL User Screens................................................................................................................427
25.1 Overview .......................................................................................................................... 427
25.1.1 What You Need to Know ........................................................................................ 427
25.2 Remote User Login ..........................................................................................................428
25.3 The SSL VPN User Screens ................................................ ........................................... 433
25.4 Bookmarking the ZyWALL ............................................................................................... 434
25.5 Logging Out of the SSL VPN User Screens ....................................................................434
Chapter 26
SSL User Application Screens ............................................................................................437
26.1 SSL User Application Screens Overview ........................................................................ 437
26.2 The Application Screen ...................................................................................................437
ZyWALL USG 50 User’s Guide
19
Table of Contents
Chapter 27
ZyWALL SecuExtender.........................................................................................................439
27.1 The ZyWALL SecuExtender Icon .................................................................................... 439
27.2 Statistics .......................................................................................................................... 440
27.3 View Log ..........................................................................................................................441
27.4 Suspend and Resume the Connection ....................... ..................................................... 441
27.5 Stop the Connection ........................................................................................................442
27.6 Uninstalling the ZyWALL SecuExtender .......................................................................... 442
Chapter 28
Application Patrol.................................................................................................................443
28.1 Overview .......................................................................................................................... 443
28.1.1 What You Can Do in this Chapter .......................................................................... 443
28.1.2 What You Need to Know ....................................................................................... 444
28.1.3 Application Patrol Bandwidth Management Examples ........................................... 449
28.2 Application Patrol General Screen ..................................................................................453
28.3 Application Patrol Applications ........................................................................................ 454
28.3.1 The Application Patrol Edit Screen ........................................................................ 455
28.3.2 The Application Patrol Policy Edit Screen ............................................................. 459
28.4 The Other Applications Screen ........................................................................................ 462
28.4.1 The Other Applications Add/Edit Screen ................................................................465
Chapter 29
Anti-Virus ...............................................................................................................................469
29.1 Overview .......................................................................................................................... 469
29.1.1 What You Can Do in this Chapter .......................................................................... 469
29.1.2 What You Need to Know ........................................................................................ 470
29.1.3 Before You Begin ...................................................................................................471
29.2 Anti-Virus Summary Screen ................ ....... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ... ....... ... ... ... .... . 472
29.2.1 Anti-Virus Policy Add or Edit Screen ...................................................................... 475
29.3 Anti-Virus Black List .........................................................................................................477
29.4 Anti-Virus Black List or White List Add/Edit ..................................................................... 478
29.5 Anti-Virus White List ............ .............................................. ... ... ........................................ 479
29.6 Signature Searching ........................................................................................................480
29.7 Anti-Virus Technical Reference ........................................................................................ 483
Chapter 30
IDP..........................................................................................................................................485
30.1 Overview .......................................................................................................................... 485
30.1.1 What You Can Do in this Chapter .......................................................................... 485
30.1.2 What You Need To Know ....................................................................................... 485
30.1.3 Before You Begin ...................................................................................................486
30.2 The IDP General Screen ................................................................................................. 487
20
ZyWALL USG 50 User’s Guide
Table of Contents
30.3 Introducing IDP Profiles ................................................................................................. 489
30.3.1 Base Profiles ..........................................................................................................490
30.4 The Profile Summary Screen .......................................................................................... 491
30.5 Creating New Profiles ...................................................................................................... 492
30.5.1 Procedure To Create a New Profile ........................................................................ 492
30.6 Profiles: Packet Inspection ............................................................................................. 493
30.6.1 Profile > Group View Screen ..................................................................................493
30.6.2 Policy Types ........................................................................................................... 496
30.6.3 IDP Service Groups ............................................................................................... 497
30.6.4 Profile > Query View Screen .................................................................................. 499
30.6.5 Query Example ...................................................................................................... 501
30.7 Introducing IDP Custom Signatures ............................................................................... 503
30.7.1 IP Packet Header ...................................................................................................503
30.8 Configuring Custom Signatures ..................... ....................... ...................... .................... . 504
30.8.1 Creating or Editing a Custom Signature ................................................................506
30.8.2 Custom Signature Example ........................................ ... ... ... .... ... ........................... 512
30.8.3 Applying Custom Signatures .................................................................................. 514
30.8.4 Verifying Custom Signatures .................................................................................. 515
30.9 IDP Technical Reference .................................................................................................516
Chapter 31
ADP ........................................................................................................................................519
31.1 Overview .......................................................................................................................... 519
31.1.1 ADP and IDP Comparison ..................................................................................... 519
31.1.2 What You Can Do in this Chapter ......................................................................... 519
31.1.3 What You Need To Know ....................................................................................... 519
31.1.4 Before You Begin ...................................................................................................520
31.2 The ADP General Screen ........................ ................................................... ..................... 521
31.3 The Profile Summary Screen .......................................................................................... 522
31.3.1 Base Profiles ..........................................................................................................523
31.3.2 Configuring The ADP Profile Summary Screen ..................................................... 523
31.3.3 Creating New ADP Profiles ............................ ........................................................ 524
31.3.4 Traffic Anomaly Profiles ........................................................................................ 524
31.3.5 Protocol Anomaly Profiles .................................................................................... . 527
31.3.6 Protocol Anomaly Configuration ............................................................................. 527
31.4 ADP Technical Reference ................................................................................................ 531
Chapter 32
Content Filtering...................................................................................................................539
32.1 Overview .......................................................................................................................... 539
32.1.1 What You Can Do in this Chapter .......................................................................... 539
32.1.2 What You Need to Know ........................................................................................ 539
32.1.3 Before You Begin ...................................................................................................541
ZyWALL USG 50 User’s Guide
21
Table of Contents
32.2 Content Filter General Screen .................... ....................................................... ..............541
32.3 Content Filter Policy Add or Edit Screen ......................................................................... 544
32.4 Content Filter Profile Screen .......................................................................................... 546
32.5 Content Filter Categories Screen ................................................................................... 546
32.5.1 Content Filter Blocked and Warning Messages ..................................................... 560
32.6 Content Filter Customization Screen .............................................................................. 560
32.7 Content Filter Technical Reference ................................................................................. 563
Chapter 33
Content Filter Reports..........................................................................................................565
33.1 Overview .......................................................................................................................... 565
33.2 Viewing Content Filter Reports ............................................. ........................................... 5 65
Chapter 34
Anti-Spam..............................................................................................................................573
34.1 Overview .......................................................................................................................... 573
34.1.1 What You Can Do in this Chapter .......................................................................... 573
34.1.2 What You Need to Know ........................................................................................ 573
34.2 Before You Begin ............................................................................................................. 575
34.3 The Anti-Spam General Screen ....................................................................................... 575
34.3.1 The Anti-Spam Policy Add or Edit Screen ................................................ .............. 577
34.4 The Anti-Spam Black List Screen .................................................................................... 579
34.4.1 The Anti-Spam Black or White List Add/Edit Screen ...................................... ... .... . 581
34.4.2 Regular Expressions in Black or White List Entries ...............................................582
34.5 The Anti-Spam White List Screen .................................................................................... 583
34.6 The DNSBL Screen ......................................................................................................... 584
34.7 Anti-Spam Technical Reference ...................................................................................... 586
Chapter 35
User/Group............................................................................................................................591
35.1 Overview .......................................................................................................................... 591
35.1.1 What You Can Do in this Chapter .......................................................................... 591
35.1.2 What You Need To Know ....................................................................................... 591
35.2 User Summary Screen .................................................................................................... 594
35.2.1 User Add/Edit Screen ........................... .......... .......... ......... ....... ......... .......... .......... . 594
35.3 User Group Summary Screen ......................................................................................... 597
35.3.1 Group Add/Edit Screen .......................................................................................... 598
35.4 Setting Screen ................................................................................................................ 599
35.4.1 Default User Authentication Timeout Settings Edit Screens .................................. 602
35.4.2 User Aware Login Example ............... ... ... .............................................. ... ... ... ........604
35.5 User /Group Technical Reference ................................................................................... 605
Chapter 36
Addresses..............................................................................................................................607
22
ZyWALL USG 50 User’s Guide
Table of Contents
36.1 Overview .......................................................................................................................... 607
36.1.1 What You Can Do in this Chapter .......................................................................... 607
36.1.2 What You Need To Know ....................................................................................... 607
36.2 Address Summary Screen ....................... ........................................................................ 607
36.2.1 Address Add/Edit Screen ....................................................................................... 609
36.3 Address Group Summary Screen ............................... ....................... ...................... ........ 610
36.3.1 Address Group Add/Edit Screen .............................................................................611
Chapter 37
Services.................................................................................................................................613
37.1 Overview .......................................................................................................................... 613
37.1.1 What You Can Do in this Chapter .......................................................................... 613
37.1.2 What You Need to Know ........................................................................................ 613
37.2 The Service Summary Screen ....................... .......................... .......................... .............. 614
37.2.1 The Service Add/Edit Screen ............................ ..................................................... 616
37.3 The Service Group Summary Screen ........................ ....... ... ... ... ... .... ... ... ... .... ... ... ... ... .... . 616
37.3.1 The Service Group Add/Edit Screen ...................................................................... 618
Chapter 38
Schedules..............................................................................................................................619
38.1 Overview .......................................................................................................................... 619
38.1.1 What You Can Do in this Chapter .......................................................................... 619
38.1.2 What You Need to Know ........................................................................................ 619
38.2 The Schedule Summary Screen ...................................................................................... 620
38.2.1 The One-Time Schedule Add/Edit Screen ............................................................. 621
38.2.2 The Recurring Schedule Add/Edit Screen ............................................ ... ... ... ... .... . 622
Chapter 39
AAA Server............................................................................................................................625
39.1 Overview .......................................................................................................................... 625
39.1.1 Directory Service (AD/LDAP) ................................................................ ................. 625
39.1.2 RADIUS Server ...................................................................................................... 626
39.1.3 ASAS ......................................................................................................................626
39.1.4 What You Can Do in this Chapter .......................................................................... 626
39.1.5 What You Need To Know ....................................................................................... 627
39.2 Active Directory or LDAP Server Summary ..................................................................... 629
39.2.1 Adding an Active Directory or LDAP Server ............. ............ ............. ............. ........ 629
39.3 RADIUS Server Summary ............................................................................................... 631
39.3.1 Adding a RADIUS Server ...................................................................................... 633
Chapter 40
Authentication Method.........................................................................................................635
40.1 Overview .......................................................................................................................... 635
ZyWALL USG 50 User’s Guide
23
Table of Contents
40.1.1 What You Can Do in this Chapter .......................................................................... 635
40.1.2 Before You Begin ...................................................................................................635
40.1.3 Example: Selecting a VPN Authentication Method ................................................ 635
40.2 Authentication Method Objects ...................................... ................................. ................. 636
40.2.1 Creating an Authentication Method Object ........................................... ................. 637
Chapter 41
Certificates ............................................................................................................................641
41.1 Overview .......................................................................................................................... 641
41.1.1 What You Can Do in this Chapter .......................................................................... 641
41.1.2 What You Need to Know ........................................................................................ 641
41.1.3 Verifying a Certificate ............................................................................................. 643
41.2 The My Certificates Screen ............................................................................................. 645
41.2.1 The My Certificates Add Screen ............................................................................ 646
41.2.2 The My Certificates Edit Screen ..................................................... ... .... ... .............. 651
41.2.3 The My Certificates Import Screen ........................................................................ 654
41.3 The Trusted Certificates Screen ..................................................................................... 655
41.3.1 The Trusted Certificates Edit Screen .................................................................... 656
41.3.2 The Trusted Certificates Import Screen ................................................................ 660
41.4 Certificates Technical Reference ..................................................................................... 661
Chapter 42
ISP Accounts.........................................................................................................................663
42.1 Overview .......................................................................................................................... 663
42.1.1 What You Can Do in this Chapter .......................................................................... 663
42.2 ISP Account Summary .................................................................................................... 663
42.2.1 ISP Account Edit ................................................................................................... 664
Chapter 43
SSL Application ....................................................................................................................667
43.1 Overview .......................................................................................................................... 667
43.1.1 What You Can Do in this Chapter .......................................................................... 667
43.1.2 What You Need to Know ........................................................................................ 667
43.1.3 Example: Specifying a Web Site for Access .......................................................... 668
43.2 The SSL Application Screen ............................. .... ... ... ... .... ... ...... ... .... ... ... ... .... ... ... ... ... .... . 669
43.2.1 Creating/Editing a Web-based SSL Application Object ......................................... 670
Chapter 44
Endpoint Security.................................................................................................................673
44.1 Overview .......................................................................................................................... 673
44.1.1 What You Can Do in this Chapter .......................................................................... 674
44.1.2 What You Need to Know ........................................................................................ 674
44.2 Endpoint Security Screen ........ ... ... ... ... .... ... ... ... .... ... ... ... .... ... ... ...... .... ... ... ... .... ... ... ... ... .... . 675
24
ZyWALL USG 50 User’s Guide
Table of Contents
44.3 Endpoint Security Add/Edit .............................................................................................. 676
Chapter 45
System...................................................................................................................................681
45.1 Overview .......................................................................................................................... 681
45.1.1 What You Can Do in this Chapter .......................................................................... 681
45.2 Host Name ....................................................................................................................... 682
45.3 USB Storage .................................................................................................................... 683
45.4 Date and Time ................................................................................................................. 683
45.4.1 Pre-defined NTP Time Servers List ............................................. ... ... .... ... ... ........... 686
45.4.2 Time Server Synchronization ................................................................................. 687
45.5 Console Port Speed ......................................................................................................... 688
45.6 DNS Overview ................................................................................................................. 688
45.6.1 DNS Server Address Assignment .......................................................................... 689
45.6.2 Configuring the DNS Screen ................................ .......................................... ........ 689
45.6.3 Address Record .................................................................................................... 692
45.6.4 PTR Record ........................................................................................................... 692
45.6.5 Adding an Address/PTR Record ............................................................................ 692
45.6.6 Domain Zone Forwarder .................. ... ... .... ... ............................................. ... ... .....693
45.6.7 Adding a Domain Zone Forwarder .............................. ........................................... 693
45.6.8 MX Record ............................................................................................................694
45.6.9 Adding a MX Record ..............................................................................................695
45.6.10 Adding a DNS Service Control Rule .................................................................... 695
45.7 WWW Overview ..............................................................................................................696
45.7.1 Service Access Limitations .................................................................................... 696
45.7.2 System Timeout ..................................................................................................... 697
45.7.3 HTTPS ...................................................................................................................697
45.7.4 Configuring WWW Service Control ........................................................................ 698
45.7.5 Service Control Rules ............................................................................................ 702
45.7.6 Customizing the WWW Login Page ....................................................................... 702
45.7.7 HTTPS Example ....................................................................................................706
45.8 SSH .............................................................................................................................. 713
45.8.1 How SSH Works ...................................................... ... ... ... ... .... ... ... ........................ 714
45.8.2 SSH Implementation on the ZyWALL ..................................................................... 715
45.8.3 Requirements for Using SSH ................................................................................. 715
45.8.4 Configuring SSH ....................................................................................................715
45.8.5 Secure Telnet Using SSH Examples ...................................................................... 717
45.9 Telnet .............................................................................................................................. 718
45.9.1 Configuring Telnet .................................................................................................. 719
45.10 FTP ...............................................................................................................................720
45.10.1 Configuring FTP ................................................................................................... 720
45.11 SNMP ....................................... ... ... ... .............................................. ... ... ........................ 722
45.11.1 Supported MIBs ............... ... ... ... .............................................. ... ... ........................ 724
ZyWALL USG 50 User’s Guide
25
Table of Contents
45.11.2 SNMP Traps .......................... ... .... ... ............................................. ... .... ... .............. 724
45.11.3 Configuring SNMP .............. ... ... .... ............................................. ... ... ..................... 724
45.12 Vantage CNM ...............................................................................................................726
45.12.1 Configuring Vantage CNM ................................................................................... 727
45.13 Language Screen .........................................................................................................729
Chapter 46
Log and Report .....................................................................................................................731
46.1 Overview .......................................................................................................................... 731
46.1.1 What You Can Do In this Chapter .......................................................................... 731
46.2 Email Daily Report ..........................................................................................................731
46.3 Log Setting Screens .......................................................................................................733
46.3.1 Log Setting Summary ............................................................................................. 734
46.3.2 Edit System Log Settings ......................................................................................735
46.3.3 Edit Remote Server Log Settings ..........................................................................740
46.3.4 Active Log Summary Screen ............................. ............. ............. ............. ............. . 742
Chapter 47
File Manager..........................................................................................................................745
47.1 Overview .......................................................................................................................... 745
47.1.1 What You Can Do in this Chapter .......................................................................... 745
47.1.2 What you Need to Know ........................................................................................ 745
47.2 The Configuration File Screen .............................. ...................................................... .....748
47.3 The Firmware Package Screen ...................................................................................... 752
47.4 The Shell Script Screen .......................... ....................................................... .................754
Chapter 48
Diagnostics..........................................................................................................................757
48.1 Overview .......................................................................................................................... 757
48.1.1 What You Can Do in this Chapter .......................................................................... 757
48.2 The Diagnostic Screen ....................................................................................................757
48.2.1 The Diagnostics Files Screen ................................................................................ 758
48.3 The Packet Capture Screen ............................................................................................ 759
48.3.1 The Packet Capture Files Screen .......................................................................... 762
48.3.2 Example of Viewing a Packet Capture File ................................. ... ... .... ... ... ... ... .....763
48.4 Core Dump Screen ..........................................................................................................764
48.4.1 Core Dump Files Screen ......................... .......................................... ..................... 765
48.5 The System Log Screen .................................................................................................. 766
Chapter 49
Packet Flow Explore.............................................................................................................767
49.1 Overview .......................................................................................................................... 767
49.1.1 What You Can Do in this Chapter .......................................................................... 767
26
ZyWALL USG 50 User’s Guide
Table of Contents
49.2 The Routing Status Screen ............................................................ ....................... ........... 767
49.3 The SNAT Status Screen ................................................................................................. 771
Chapter 50
Reboot....................................................................................................................................775
50.1 Overview .......................................................................................................................... 775
50.1.1 What You Need To Know ....................................................................................... 775
50.2 The Reboot Screen .........................................................................................................775
Chapter 51
Shutdown...............................................................................................................................777
51.1 Overview .......................................................................................................................... 777
51.1.1 What You Need To Know ....................................................................................... 777
51.2 The Shutdown Screen ..................................................................................................... 777
Chapter 52
Troubleshooting....................................................................................................................779
52.1 Resetting the ZyWALL .....................................................................................................793
52.2 Getting More Troubleshooting Help ................................................................................. 794
Chapter 53
Product Specifications.........................................................................................................795
53.1 Power Adaptor Specifications ..........................................................................................800
Appendix A Log Descriptions...............................................................................................803
Appendix B Common Services.............................................................................................861
Appendix C Displaying Anti-Virus Alert Messages in Windows............................................865
Appendix D Importing Certificates........................................................................................871
Appendix E Open Software Announcements.......................................................................897
Appendix F Legal Information ..............................................................................................943
Index.......................................................................................................................................947
ZyWALL USG 50 User’s Guide
27
Table of Contents
28
ZyWALL USG 50 User’s Guide
PART I
User’s Guide
29
30