ZyXEL Communications ATP100W Users manual

Default Login Details

User’s Guide

ZyWALL ATP Series

LAN Port IP Address https://192.168.1.1 User Name admin Password 1234

Version 4.35 Edition 4, 11/2019

IMPORTANT! READ CAREFULLY BEFORE USE. KEEP THIS GUIDE FOR FUTURE REFERENCE.

This is a User’s Guide for a series of products. Not all products support all firmware features. Screenshots and graphics in this book may differ slightly from your product due to differences in product features or web configurator brand style. Every effort has been made to ensure that the information in this manual is accurate.

Note: The version number on the cover page refers to the Zyxel Device’s latest firmware

version to which this User’s Guide applies.

Related Documentation

•Quick Start Guide The Quick Start Guide shows how to connect the Zyxel Device and access the Web Configurator

wizards. (See the wizard real time help for information on configuring each screen.) It also contains a connection diagram and package contents list.

•CLI Reference Guide The CLI Reference Guide explains how to use the Command-Line Interface (CLI) to configure the

Zyxel Device.

Note: It is recommended you use the Web Configurator to configure the Zyxel Device.

• Web Configurator Online Help Click the help icon in any screen for help in configuring that screen and supplementary information.

•More Information Go to support.zyxel.com to find other information on

Zyxel Device.

ZyWALL ATP Series User’s Guide

Document Conventions

Warnings and Notes

These are how warnings and notes are shown in this guide.

Warnings tell you about things that could harm you or your device.

Note: Notes tell you other important information (for example, other things you may need to

configure or helpful tips) or recommendations.

Syntax Conventions

• All models in this series may be referred to as the “Zyxel Device” in this guide.

• Product labels, screen names, field labels and field choices are all in bold font.

• A right angle bracket ( > ) within a screen name denotes a mouse click. For example, Configuration >

Network > Interface > Ethernet means you first click Configuration in the navigation panel, then Network, then the Interface sub menu and finally the Ethernet tab to get to that screen.

Icons Used in Figures

Figures in this user guide may use the following generic icons. The Zyxel Device icon is not an exact representation of your device.

Zyxel Device Generic Router Wireless Router / Access Point

Switch Firewall Server

Internet Network Cloud Smartphone

USB Dongle

ZyWALL ATP Series User’s Guide

Contents Overview

Introduction ........................................................................................................................................... 24

Initial Setup Wizard ............................................................................................................................... 48

Hardware, Interfaces and Zones ........................................................................................................ 67

Quick Setup Wizards ............................................................................................................................. 75

Dashboard .......................................................................................................................................... 109

Monitor ................................................................................................................................................. 119

Licensing .............................................................................................................................................. 186

Wireless ................................................................................................................................................. 192

Interfaces ............................................................................................................................................. 213

Routing ................................................................................................................................................. 310

DDNS ................................................................................................................................................... 337

NAT ....................................................................................................................................................... 343

Redirect Service .................................................................................................................................. 351

ALG ....................................................................................................................................................... 357

UPnP ..................................................................................................................................................... 364

IP/MAC Binding ................................................................................................................................... 379

Layer 2 Isolation .................................................................................................................................. 384

DNS Inbound LB .................................................................................................................................. 388

IPnP ....................................................................................................................................................... 394

IPSec VPN ............................................................................................................................................ 396

SSL VPN ................................................................................................................................................ 432

L2TP VPN .............................................................................................................................................. 438

BWM (Bandwidth Management) ..................................................................................................444

Web Authentication .......................................................................................................................... 460

Security Policy ..................................................................................................................................... 489

Application Patrol ............................................................................................................................... 515

Content Filter ....................................................................................................................................... 524

Anti-Malware ....................................................................................................................................... 543

Reputation Filter .................................................................................................................................. 556

IDP ........................................................................................................................................................ 566

Sandboxing ......................................................................................................................................... 584

Email Security ...................................................................................................................................... 588

SSL Inspection ...................................................................................................................................... 599

IP Exception ......................................................................................................................................... 611

Object .................................................................................................................................................. 614

Device HA ........................................................................................................................................... 717

Cloud CNM ........................................................................................................................................ 724

System .................................................................................................................................................. 732

Log and Report ................................................................................................................................... 793

ZyWALL ATP Series User’s Guide

Contents Overview

File Manager ....................................................................................................................................... 806

Diagnostics ......................................................................................................................................... 821

Packet Flow Explore ........................................................................................................................... 842

Shutdown ............................................................................................................................................. 849

Troubleshooting .................................................................................................................................. 851

ZyWALL ATP Series User’s Guide

Table of Contents

Document Conventions ............................................ ............................................ .... ... .... ...................3

Contents Overview .............................................................................................................................4

Table of Contents.................................................................................................................................6

Part I: User’s Guide.......................................................................................... 23

Chapter 1

Introduction ........................................................................................................................................24

1.1 Overview ......................................................................................................................................... 24

1.2 Registration at myZyxel .................................................................................................................. 24

1.2.1 Grace Period ......................................................................................................................... 25

1.2.2 Applications ........................................................................................................................... 25

1.3 Management Overview ................................................................................................................ 28

1.4 Web Configurator ........................................................................................................................... 29

1.4.1 Web Configurator Access .................................................................................................... 29

1.4.2 Web Configurator Screens Overview ................................................................................. 32

1.4.3 Navigation Panel .................................................................................................................. 37

1.4.4 Tables and Lists ...................................................................................................................... 44

Chapter 2

Initial Setup Wizard.............................................................................................................................48

2.1 Initial Setup Wizard Screens .......................................................................................................... 48

2.1.1 Internet Access Setup - WAN Interface ............................................................................. 48

2.1.2 Internet Access: Ethernet .................................................................................................... 49

2.1.3 Internet Access: PPPoE ......................................................................................................... 50

2.1.4 Internet Access: PPTP ........................................................................................................... 52

2.1.5 Internet Access: L2TP ............................................................................................................ 54

2.1.6 Internet Access Setup - Second WAN Interface ............................................................... 56

2.1.7 Internet Access: Congratulations ....................................................................................... 57

2.1.8 Date and Time Settings ........................................................................................................ 58

2.1.9 Register Device ..................................................................................................................... 58

2.1.10 Activate Service .................................................................................................................. 60

2.1.11 Service Settings .................................................................................................................... 61

2.1.12 Service Settings: SecuReporter ..........................................................................................62

2.1.13 Wireless Settings: AP Controller ......................................................................................... 64

2.1.14 Wireless Settings: SSID & Security ...................................................................................... 64

ZyWALL ATP Series User’s Guide

Table of Contents

2.1.15 Remote Management ......................................................................................................65

Chapter 3

Hardware, Interfaces and Zones......................................................................................................67

3.1 Hardware Overview ....................................................................................................................... 67

3.1.1 Front Panels ............................................................................................................................ 67

3.1.2 Rear Panels ............................................................................................................................ 69

3.2 Mounting ......................................................................................................................................... 70

3.2.1 Rack-mounting ...................................................................................................................... 70

3.2.2 Wall-mounting ....................................................................................................................... 71

3.3 Default Zones, Interfaces, and Ports ............................................................................................ 73

3.4 Stopping the Zyxel Device ............................................................................................................ 74

Chapter 4

Quick Setup Wizards..........................................................................................................................75

4.1 Quick Setup Overview ................................................................................................................... 75

4.2 WAN Interface Quick Setup .......................................................................................................... 76

4.2.1 Choose an Ethernet Interface .............................................................................................76

4.2.2 Select WAN Type ................................................................................................................... 77

4.2.3 Configure WAN IP Settings ................................................................................................... 77

4.2.4 ISP and WAN and ISP Connection Settings ........................................................................ 78

4.2.5 Quick Setup Interface Wizard: Summary ........................................................................... 81

4.3 VPN Setup Wizard ........................................................................................................................... 82

4.3.1 Welcome ................................................................................................................................ 82

4.3.2 VPN Setup Wizard: Wizard Type .......................................................................................... 83

4.3.3 VPN Express Wizard - Scenario ............................................................................................ 84

4.3.4 VPN Express Wizard - Configuration ................................................................................... 85

4.3.5 VPN Express Wizard - Summary ........................................................................................... 85

4.3.6 VPN Express Wizard - Finish .................................................................................................. 86

4.3.7 VPN Advanced Wizard - Scenario ..................................................................................... 87

4.3.8 VPN Advanced Wizard - Phase 1 Settings ........................................................................ 88

4.3.9 VPN Advanced Wizard - Phase 2 ....................................................................................... 90

4.3.10 VPN Advanced Wizard - Summary .................................................................................. 91

4.3.11 VPN Advanced Wizard - Finish ......................................................................................... 93

4.4 VPN Settings for Configuration Provisioning Wizard: Wizard Type ............................................. 94

4.4.1 Configuration Provisioning Express Wizard - VPN Settings ............................................... 94

4.4.2 Configuration Provisioning VPN Express Wizard - Configuration .................................... 95

4.4.3 VPN Settings for Configuration Provisioning Express Wizard - Summary ........................ 96

4.4.4 VPN Settings for Configuration Provisioning Express Wizard - Finish ................................ 97

4.4.5 VPN Settings for Configuration Provisioning Advanced Wizard - Scenario ................... 98

4.4.6 VPN Settings for Configuration Provisioning Advanced Wizard - Phase 1 Settings ...... 99

4.4.7 VPN Settings for Configuration Provisioning Advanced Wizard - Phase 2 .................. 101

4.4.8 VPN Settings for Configuration Provisioning Advanced Wizard - Summary ................ 101

ZyWALL ATP Series User’s Guide

Table of Contents

4.4.9 VPN Settings for Configuration Provisioning Advanced Wizard- Finish ........................ 104

4.5 VPN Settings for L2TP VPN Settings Wizard ................................................................................. 104

4.5.1 L2TP VPN Settings ................................................................................................................ 105

4.5.2 L2TP VPN Settings ................................................................................................................ 106

4.5.3 VPN Settings for L2TP VPN Setting Wizard - Summary .................................................... 106

4.5.4 VPN Settings for L2TP VPN Setting Wizard Completed ................................................... 108

Chapter 5

Dashboard........................................................................................................................................109

5.1 Overview ....................................................................................................................................... 109

5.1.1 What You Can Do in this Chapter ..................................................................................... 109

5.2 The General Screen ..................................................................................................................... 109

5.2.1 Device Information Screen ................................................................................................111

5.2.2 System Status Screen .......................................................................................................... 112

5.2.3 Tx/Rx Statistics ...................................................................................................................... 112

5.2.4 The Latest Logs Screen ....................................................................................................... 113

5.2.5 System Resources Screen ................................................................................................... 113

5.2.6 DHCP Table Screen ............................................................................................................. 114

5.2.7 Number of Login Users Screen ........................................................................................... 115

5.2.8 Current Login User ............................................................................................................... 116

5.2.9 VPN Status ............................................................................................................................ 116

5.2.10 SSL VPN Status .................................................................................................................... 116

5.3 The Advanced Threat Protection Screen .................................................................................. 117

Part II: Technical Reference.........................................................................118

Chapter 6

Monitor..............................................................................................................................................119

6.1 Overview ....................................................................................................................................... 119

6.1.1 What You Can Do in this Chapter ..................................................................................... 119

6.2 The Port Statistics Screen ............................................................................................................ 121

6.2.1 The Port Statistics Graph Screen ....................................................................................... 122

6.3 Interface Status Screen ................................................................................................................ 123

6.4 The Traffic Statistics Screen .......................................................................................................... 127

6.5 The Session Monitor Screen ........................................................................................................ 129

6.6 The Login Users Screen ................................................................................................................ 131

6.7 IGMP Statistics ............................................................................................................................... 133

6.8 The DDNS Status Screen ............................................................................................................... 134

6.9 IP/MAC Binding ............................................................................................................................. 134

6.10 Cellular Status Screen ................................................................................................................ 135

6.10.1 More Information .............................................................................................................. 138

ZyWALL ATP Series User’s Guide

Table of Contents

6.11 The UPnP Port Status Screen ..................................................................................................... 139

6.12 USB Storage Screen .................................................................................................................... 140

6.13 Ethernet Neighbor Screen ........................................................................................................ 141

6.14 FQDN Object Screen ................................................................................................................ 142

6.15 AP Information: AP List ............................................................................................................... 144

6.15.1 AP List: More Information ................................................................................................ 146

6.15.2 AP List: Config AP ............................................................................................................. 149

6.16 AP Information: Radio List .......................................................................................................... 151

6.16.1 Radio List: More Information ............................................................................................153

6.17 AP Information: Top N APs ........................................................................................................ 154

6.18 AP Information: Single AP .......................................................................................................... 156

6.19 ZyMesh ......................................................................................................................................... 157

6.20 SSID Info ....................................................................................................................................... 158

6.21 Station Info: Station List .............................................................................................................. 158

6.22 Station Info: Top N Stations ........................................................................................................ 159

6.23 Station Info: Single Station ......................................................................................................... 160

6.24 Detected Device ....................................................................................................................... 161

6.25 The IPSec Screen ........................................................................................................................ 162

6.26 The SSL Screen ............................................................................................................................. 164

6.27 The L2TP over IPSec Screen ....................................................................................................... 164

6.28 The Content Filter Screen .......................................................................................................... 165

6.29 The App Patrol Screen ............................................................................................................... 167

6.30 The Anti-Malware Screen .......................................................................................................... 168

6.31 The Reputation Filter Screen ...................................................................................................... 170

6.32 The IDP Screen ............................................................................................................................ 172

6.33 The Email Security Screens ......................................................................................................... 174

6.33.1 Email Security Summary ................................................................................................... 174

6.33.2 The Email Security Status Screen ..................................................................................... 176

6.34 The Sandboxing Screen ............................................................................................................. 178

6.35 The SSL Inspection Screens ........................................................................................................ 179

6.35.1 Certificate Cache List ....................................................................................................... 180

6.36 Log Screens ................................................................................................................................. 181

6.36.1 View Log ............................................................................................................................ 181

6.36.2 View AP Log ....................................................................................................................... 183

Chapter 7

Licensing...........................................................................................................................................186

7.1 Registration Overview .................................................................................................................. 186

7.1.1 What you Need to Know ....................................................................................................186

7.1.2 Registration Screen ............................................................................................................. 187

7.1.3 Service Screen ..................................................................................................................... 187

7.2 Signature Update ......................................................................................................................... 189

7.2.1 What you Need to Know ....................................................................................................189

ZyWALL ATP Series User’s Guide

Table of Contents

7.2.2 The Signature Screen .......................................................................................................... 190

7.2.3 Auto Update ........................................................................................................................ 190

Chapter 8

Wireless.............................................................................................................................................192

8.1 Overview ....................................................................................................................................... 192

8.1.1 What You Can Do in this Chapter ..................................................................................... 192

8.2 Controller Screen ......................................................................................................................... 192

8.3 AP Management Screens ........................................................................................................... 193

8.3.1 Mgnt. AP List ....................................................................................................................... 193

8.3.2 AP Policy .............................................................................................................................. 197

8.3.3 AP Group ............................................................................................................................. 198

8.3.4 Firmware ............................................................................................................................... 204

8.4 Rogue AP ....................................................................................................................................... 205

8.4.1 Add/Edit Rogue/Friendly List .............................................................................................. 207

8.5 Auto Healing ................................................................................................................................. 208

8.6 RTLS Overview ............................................................................................................................... 209

8.6.1 What You Can Do in this Chapter ..................................................................................... 209

8.6.2 Before You Begin ................................................................................................................. 209

8.6.3 Configuring RTLS .................................................................................................................. 210

8.7 Technical Reference .................................................................................................................... 211

8.7.1 Dynamic Channel Selection .............................................................................................. 211

8.7.2 Load Balancing ................................................................................................................... 212

Chapter 9

Interfaces..........................................................................................................................................213

9.1 Interface Overview ...................................................................................................................... 213

9.1.1 What You Can Do in this Chapter ..................................................................................... 213

9.1.2 What You Need to Know ................................................................................................... 213

9.1.3 What You Need to Do First ................................................................................................. 218

9.2 Port Role ......................................................................................................................................... 218

9.3 Port Configuration ........................................................................................................................ 219

9.4 Ethernet Summary Screen ........................................................................................................... 220

9.4.1 Ethernet Edit ........................................................................................................................ 222

9.4.2 Proxy ARP ............................................................................................................................. 238

9.4.3 Virtual Interfaces ................................................................................................................ 239

9.4.4 References ........................................................................................................................... 240

9.4.5 Add/Edit DHCPv6 Request/Release Options ................................................................... 241

9.4.6 Add/Edit DHCP Extended Options ................................................................................... 242

9.5 PPP Interfaces ............................................................................................................................... 243

9.5.1 PPP Interface Summary ...................................................................................................... 244

9.5.2 PPP Interface Add or Edit .................................................................................................. 245

9.6 Cellular Configuration Screen ..................................................................................................... 250

ZyWALL ATP Series User’s Guide

Table of Contents

9.6.1 Cellular Choose Slot ........................................................................................................... 253

9.6.2 Add / Edit Cellular Configuration ...................................................................................... 253

9.7 Tunnel Interfaces .......................................................................................................................... 259

9.7.1 Configuring a Tunnel .......................................................................................................... 261

9.7.2 Tunnel Add or Edit Screen .................................................................................................. 262

9.8 VLAN Interfaces ........................................................................................................................... 266

9.8.1 VLAN Summary Screen ....................................................................................................... 267

9.8.2 VLAN Add/Edit ................................................................................................................... 268

9.9 Bridge Interfaces .......................................................................................................................... 279

9.9.1 Bridge Summary .................................................................................................................. 281

9.9.2 Bridge Add/Edit .................................................................................................................. 282

9.10 VTI ................................................................................................................................................. 293

9.10.1 Restrictions for IPSec Virtual Tunnel Interface ................................................................ 293

9.10.2 VTI Screen .......................................................................................................................... 294

9.10.3 VTI Add/Edit ....................................................................................................................... 294

9.11 Trunk Overview ........................................................................................................................... 298

9.11.1 What You Need to Know ................................................................................................. 298

9.12 The Trunk Summary Screen ........................................................................................................ 301

9.12.1 Configuring a User-Defined Trunk ................................................................................... 302

9.12.2 Configuring the System Default Trunk ............................................................................ 304

9.13 Interface Technical Reference ................................................................................................. 305

Chapter 10

Routing..............................................................................................................................................310

10.1 Policy and Static Routes Overview ........................................................................................... 310

10.1.1 What You Can Do in this Chapter ................................................................................... 310

10.1.2 What You Need to Know ................................................................................................ 311

10.2 Policy Route Screen ................................................................................................................... 312

10.2.1 Policy Route Edit Screen .................................................................................................. 314

10.3 IP Static Route Screen ................................................................................................................ 319

10.3.1 Static Route Add/Edit Screen .......................................................................................... 319

10.4 Policy Routing Technical Reference ........................................................................................321

10.5 Routing Protocols Overview ..................................................................................................... 321

10.5.1 What You Need to Know ................................................................................................. 322

10.6 The RIP Screen ............................................................................................................................. 322

10.7 The OSPF Screen ......................................................................................................................... 324

10.7.1 Configuring the OSPF Screen .......................................................................................... 327

10.7.2 OSPF Area Add/Edit Screen ........................................................................................... 328

10.7.3 Virtual Link Add/Edit Screen ...........................................................................................330

10.8 BGP (Border Gateway Protocol) .............................................................................................. 331

10.8.1 Allow BGP Packets to Enter the Zyxel Device ................................................................ 332

10.8.2 Configuring the BGP Screen ............................................................................................ 332

10.8.3 The BGP Neighbors Screen .............................................................................................. 334

ZyWALL ATP Series User’s Guide

Table of Contents

10.8.4 Example Scenario ............................................................................................................. 335

Chapter 11

DDNS ................................................................................................................................................337

11.1 DDNS Overview ........................................................................................................................... 337

11.1.1 What You Can Do in this Chapter ................................................................................... 337

11.1.2 What You Need to Know ................................................................................................. 337

11.2 The DDNS Screen ........................................................................................................................ 338

11.2.1 The Dynamic DNS Add/Edit Screen ................................................................................ 339

Chapter 12

NAT....................................................................................................................................................343

12.1 NAT Overview ............................................................................................................................. 343

12.1.1 What You Can Do in this Chapter ................................................................................... 343

12.1.2 What You Need to Know ................................................................................................. 343

12.2 The NAT Screen ........................................................................................................................... 344

12.2.1 The NAT Add/Edit Screen .................................................................................................346

12.3 NAT Technical Reference .......................................................................................................... 349

Chapter 13

Redirect Service...............................................................................................................................351

13.1 Overview ..................................................................................................................................... 351

13.1.1 HTTP Redirect ..................................................................................................................... 351

13.1.2 SMTP Redirect .................................................................................................................... 351

13.1.3 What You Can Do in this Chapter ................................................................................... 352

13.1.4 What You Need to Know ................................................................................................. 352

13.2 The Redirect Service Screen ..................................................................................................... 354

13.2.1 The Redirect Service Edit Screen ..................................................................................... 355

Chapter 14

ALG....................................................................................................................................................357

14.1 ALG Overview ............................................................................................................................. 357

14.1.1 What You Need to Know ................................................................................................. 357

14.1.2 Before You Begin ............................................................................................................... 360

14.2 The ALG Screen .......................................................................................................................... 360

14.3 ALG Technical Reference ......................................................................................................... 362

Chapter 15

UPnP...................................................................................................................................................364

15.1 UPnP and NAT-PMP Overview ................................................................................................... 364

15.2 What You Need to Know ........................................................................................................... 364

15.2.1 NAT Traversal ..................................................................................................................... 364

15.2.2 Cautions with UPnP and NAT-PMP .................................................................................. 365

ZyWALL ATP Series User’s Guide

Table of Contents

15.3 UPnP Screen ................................................................................................................................ 365

15.4 Technical Reference .................................................................................................................. 366

15.4.1 Turning on UPnP in Windows 7 Example ......................................................................... 366

15.4.2 Turn on UPnP in Windows 10 Example ............................................................................ 370

15.4.3 Auto-discover Your UPnP-enabled Network Device .................................................... 372

15.4.4 Web Configurator Easy Access in Windows 7 ............................................................... 375

15.4.5 Web Configurator Easy Access in Windows 10 ............................................................. 377

Chapter 16

IP/MAC Binding................................................................................................................................379

16.1 IP/MAC Binding Overview ......................................................................................................... 379

16.1.1 What You Can Do in this Chapter ................................................................................... 379

16.1.2 What You Need to Know ................................................................................................. 379

16.2 IP/MAC Binding Summary ......................................................................................................... 380

16.2.1 IP/MAC Binding Edit .......................................................................................................... 381

16.2.2 Static DHCP Edit ................................................................................................................ 382

16.3 IP/MAC Binding Exempt List ....................................................................................................... 383

Chapter 17

Layer 2 Isolation...............................................................................................................................384

17.1 Overview ..................................................................................................................................... 384

17.1.1 What You Can Do in this Chapter ................................................................................... 384

17.2 Layer-2 Isolation General Screen ............................................................................................. 384

17.3 White List Screen ......................................................................................................................... 385

17.3.1 Add/Edit White List Rule ................................................................................................... 386

Chapter 18

DNS Inbound LB................................................................................................................................388

18.1 DNS Inbound Load Balancing Overview ................................................................................. 388

18.1.1 What You Can Do in this Chapter ................................................................................... 388

18.2 The DNS Inbound LB Screen ...................................................................................................... 389

18.2.1 The DNS Inbound LB Add/Edit Screen ............................................................................ 390

18.2.2 The DNS Inbound LB Add/Edit Member Screen ............................................................ 392

Chapter 19

IPnP....................................................................................................................................................394

19.1 IPnP Overview ............................................................................................................................ 394

19.1.1 What You Can Do in this Chapter ................................................................................... 394

19.2 IPnP Screen .................................................................................................................................. 395

Chapter 20

IPSec VPN .........................................................................................................................................396

20.1 Virtual Private Networks (VPN) Overview ................................................................................. 396

ZyWALL ATP Series User’s Guide

Table of Contents

20.1.1 What You Can Do in this Chapter ................................................................................... 398

20.1.2 What You Need to Know ................................................................................................. 398

20.1.3 Before You Begin ............................................................................................................... 401

20.2 The VPN Connection Screen ..................................................................................................... 401

20.2.1 The VPN Connection Add/Edit Screen .......................................................................... 403

20.3 The VPN Gateway Screen ......................................................................................................... 410

20.3.1 The VPN Gateway Add/Edit Screen ............................................................................... 411

20.4 VPN Concentrator ..................................................................................................................... 418

20.4.1 VPN Concentrator Requirements and Suggestions ...................................................... 418

20.4.2 VPN Concentrator Screen ............................................................................................... 419

20.4.3 The VPN Concentrator Add/Edit Screen ........................................................................ 419

20.5 Zyxel Device IPSec VPN Client Configuration Provisioning .................................................... 420

20.6 IPSec VPN Background Information ......................................................................................... 422

Chapter 21

SSL VPN..............................................................................................................................................432

21.1 Overview ..................................................................................................................................... 432

21.1.1 What You Can Do in this Chapter ................................................................................... 432

21.1.2 What You Need to Know ................................................................................................. 432

21.2 The SSL Access Privilege Screen ................................................................................................ 433

21.2.1 The SSL Access Privilege Policy Add/Edit Screen ......................................................... 434

21.3 The SSL Global Setting Screen ................................................................................................... 436

Chapter 22

L2TP VPN..................................... ... .... .... ............................................ ... .... .........................................438

22.1 Overview ..................................................................................................................................... 438

22.1.1 What You Can Do in this Chapter ................................................................................... 438

22.1.2 What You Need to Know ................................................................................................. 438

22.2 L2TP VPN Screen ......................................................................................................................... 439

22.2.1 Example: L2TP and Zyxel Device Behind a NAT Router ................................................ 441

Chapter 23

BWM (Bandwidth Management) .................................................................................................444

23.1 Overview ..................................................................................................................................... 444

23.1.1 What You Can Do in this Chapter ................................................................................... 444

23.1.2 What You Need to Know ................................................................................................ 444

23.2 The Bandwidth Management Configuration .......................................................................... 448

23.2.1 The Bandwidth Management Add/Edit Screen ............................................................ 451

Chapter 24

Web Authentication ........................................................................................................................460

24.1 Web Auth Overview ................................................................................................................... 460

24.1.1 What You Can Do in this Chapter ................................................................................... 460

ZyWALL ATP Series User’s Guide

Table of Contents

24.1.2 What You Need to Know ................................................................................................. 461

24.2 Web Authentication General Screen ...................................................................................... 461

24.2.1 User-aware Access Control Example ............................................................................. 466

24.2.2 Authentication Type Screen ............................................................................................ 472

24.2.3 Custom Web Portal / User Agreement File Screen ....................................................... 476

24.3 SSO Overview .............................................................................................................................. 477

24.4 SSO - Zyxel Device Configuration ............................................................................................. 479

24.4.1 Configuration Overview ................................................................................................... 479

24.4.2 Configure the Zyxel Device to Communicate with SSO .............................................. 479

24.4.3 Enable Web Authentication ............................................................................................ 480

24.4.4 Create a Security Policy ................................................................................................... 482

24.4.5 Configure User Information ..............................................................................................483

24.4.6 Configure an Authentication Method ........................................................................... 484

24.4.7 Configure Active Directory ..............................................................................................485

24.5 SSO Agent Configuration .......................................................................................................... 486

Chapter 25

Security Policy..................................................................................................................................489

25.1 Overview ..................................................................................................................................... 489

25.2 One Security ................................................................................................................................ 490

25.3 What You Can Do in this Chapter ............................................................................................ 493

25.3.1 What You Need to Know ................................................................................................. 493

25.4 The Security Policy Screen ......................................................................................................... 495

25.4.1 Configuring the Security Policy Control Screen ............................................................ 496

25.4.2 The Security Policy Control Add/Edit Screen ................................................................. 500

25.5 Anomaly Detection and Prevention Overview ...................................................................... 501

25.5.1 The Anomaly Detection and Prevention General Screen ........................................... 502

25.5.2 Creating New ADP Profiles ..............................................................................................503

25.5.3 Traffic Anomaly Profiles ................................................................................................... 504

25.5.4 Protocol Anomaly Profiles ................................................................................................ 507

25.6 The Session Control Screen ........................................................................................................ 510

25.6.1 The Session Control Add/Edit Screen .............................................................................. 511

25.7 Security Policy Example Applications ......................................................................................512

Chapter 26

Application Patrol............................................................................................................................515

26.1 Overview ..................................................................................................................................... 515

26.1.1 What You Can Do in this Chapter ................................................................................... 515

26.1.2 What You Need to Know ................................................................................................ 515

26.2 Application Patrol Profile ........................................................................................................... 516

26.2.1 Apply to a Security Policy ................................................................................................ 517

26.2.2 The Application Patrol Profile Add/Edit Screen - My Application ............................... 520

26.2.3 The Application Patrol Profile Add/Edit Screen - Query Result .................................... 521

ZyWALL ATP Series User’s Guide

Table of Contents

Chapter 27

Content Filter ....................................................................................................................................524

27.1 Overview ..................................................................................................................................... 524

27.1.1 What You Can Do in this Chapter ................................................................................... 524

27.1.2 What You Need to Know ................................................................................................. 524

27.1.3 Before You Begin ............................................................................................................... 526

27.2 Content Filter Profile Screen ...................................................................................................... 526

27.2.1 Apply to a Security Policy ................................................................................................ 527

27.2.2 Content Filter Add Profile Category Service .................................................................. 530

27.2.3 Content Filter Add Filter Profile Custom Service ........................................................... 536

27.3 Content Filter Trusted Web Sites Screen ................................................................................. 539

27.4 Content Filter Forbidden Web Sites Screen ............................................................................ 540

27.5 Content Filter Technical Reference ......................................................................................... 541

Chapter 28

Anti-Malware....................................................................................................................................543

28.1 Overview ..................................................................................................................................... 543

28.1.1 What You Can Do in this Chapter ................................................................................... 547

28.2 Anti-Malware Screen ................................................................................................................. 548

28.3 The Black List Screen .................................................................................................................. 551

28.4 The White List Screen .................................................................................................................. 552

28.5 Anti-Malware Signature Searching ........................................................................................... 553

28.6 Anti-Malware Technical Reference ......................................................................................... 554

Chapter 29

Reputation Filter ...............................................................................................................................556

29.1 Overview ..................................................................................................................................... 556

29.1.1 What You Need to Know ................................................................................................. 556

29.1.2 What You Can Do in this Chapter ................................................................................... 556

29.2 IP Reputation Screen .................................................................................................................. 556

29.2.1 IP Reputation White List Screen ....................................................................................... 559

29.2.2 IP Reputation Black List Screen ........................................................................................ 560

29.3 Botnet Filter Screen ..................................................................................................................... 561

29.3.1 Botnet Filter White List Screen .......................................................................................... 564

29.3.2 Botnet Filter Black List Screen ........................................................................................... 565

Chapter 30

IDP .....................................................................................................................................................566

30.1 Overview ..................................................................................................................................... 566

30.1.1 What You Can Do in this Chapter ................................................................................... 566

30.1.2 What You Need To Know ................................................................................................. 566

30.1.3 Before You Begin ............................................................................................................... 566

30.2 The IDP Screen ............................................................................................................................ 566

ZyWALL ATP Series User’s Guide

Table of Contents

30.2.1 Query Example .................................................................................................................. 571

30.3 IDP Custom Signatures .............................................................................................................. 572

30.3.1 Add / Edit Custom Signatures ......................................................................................... 573

30.3.2 Custom Signature Example ............................................................................................. 577

30.3.3 Applying Custom Signatures ............................................................................................ 579

30.3.4 Verifying Custom Signatures ............................................................................................ 580

30.4 The White List Screen ................................................................................................................. 580

30.5 IDP Technical Reference ........................................................................................................... 581

Chapter 31

Sandboxing ......................................................................................................................................584

31.1 Overview ..................................................................................................................................... 584

31.1.1 What You Need to Know ................................................................................................. 585

31.2 Sandboxing Screen .................................................................................................................... 585

Chapter 32

Email Security...................................................................................................................................588

32.1 Overview ..................................................................................................................................... 588

32.1.1 What You Can Do in this Chapter ................................................................................... 588

32.1.2 What You Need to Know ................................................................................................. 588

32.2 Before You Begin ........................................................................................................................ 589

32.3 The Email Security Screen .......................................................................................................... 590

32.4 The Black List / White List Screen ............................................................................................... 593

32.4.1 The Black or White List Add/Edit Screen ......................................................................... 594

32.4.2 Regular Expressions in Black or White List Entries ........................................................... 595

32.5 Email Security Technical Reference ......................................................................................... 595

Chapter 33

SSL Inspection...................................................................................................................................599

33.1 Overview ..................................................................................................................................... 599

33.1.1 What You Can Do in this Chapter ................................................................................... 599

33.1.2 What You Need To Know ................................................................................................. 599

33.1.3 Before You Begin ............................................................................................................... 600

33.2 The SSL Inspection Profile Screen .............................................................................................. 600

33.2.1 Apply to a Security Policy ................................................................................................ 601

33.2.2 Add / Edit SSL Inspection Profiles .................................................................................... 604

33.3 Exclude List Screen .................................................................................................................... 605

33.4 Certificate Update Screen ....................................................................................................... 607

33.5 Install a CA Certificate in a Browser ......................................................................................... 608

Chapter 34

IP Exception......................................................................................................................................611

34.1 Overview ..................................................................................................................................... 611

ZyWALL ATP Series User’s Guide

Table of Contents

34.2 The IP Exception Screen ............................................................................................................ 611

34.2.1 The IP Exception Add/Edit Screen ................................................................................. 612

Chapter 35

Object...............................................................................................................................................614

35.1 Zones Overview .......................................................................................................................... 614

35.1.1 What You Need to Know ................................................................................................. 614

35.1.2 The Zone Screen ................................................................................................................ 615

35.2 User/Group Overview ................................................................................................................ 617

35.2.1 What You Need To Know ................................................................................................. 617

35.2.2 User/Group User Summary Screen .................................................................................. 619

35.2.3 User/Group Group Summary Screen .............................................................................. 624

35.2.4 User/Group Setting Screen ............................................................................................. 625

35.2.5 User/Group MAC Address Summary Screen ................................................................ 630

35.2.6 User /Group Technical Reference .................................................................................. 632

35.3 AP Profile Overview .................................................................................................................... 632

35.3.1 Radio Screen ..................................................................................................................... 633

35.3.2 SSID Screen ....................................................................................................................... 639

35.4 MON Profile ................................................................................................................................ 648

35.4.1 Overview ............................................................................................................................ 648

35.4.2 Configuring MON Profile ................................................................................................. 649

35.4.3 Add/Edit MON Profile ....................................................................................................... 650

35.4.4 Technical Reference ........................................................................................................ 651

35.5 ZyMesh Overview ....................................................................................................................... 652

35.5.1 ZyMesh Profile .................................................................................................................... 654

35.5.2 Add/Edit ZyMesh Profile ................................................................................................... 655

35.6 Address/Geo IP Overview ......................................................................................................... 655

35.6.1 What You Need To Know ................................................................................................. 656

35.6.2 Address Summary Screen ................................................................................................ 656

35.6.3 Address Group Summary Screen .................................................................................... 660

35.6.4 Geo IP Summary Screen .................................................................................................. 662

35.7 Service Overview ........................................................................................................................ 665

35.7.1 What You Need to Know ................................................................................................. 665

35.7.2 The Service Summary Screen .......................................................................................... 666

35.7.3 The Service Group Summary Screen ............................................................................. 668

35.8 Schedule Overview ................................................................................................................... 670

35.8.1 What You Need to Know ................................................................................................. 670

35.8.2 The Schedule Screen ........................................................................................................ 670

35.8.3 The Schedule Group Screen ............................................................................................ 673

35.9 AAA Server Overview ............................................................................................................... 675

35.9.1 Directory Service (AD/LDAP) ........................................................................................... 676

35.9.2 RADIUS Server .................................................................................................................... 676

35.9.3 ASAS .................................................................................................................................... 676

ZyWALL ATP Series User’s Guide

Table of Contents

35.9.4 What You Need To Know ................................................................................................. 677

35.9.5 Active Directory or LDAP Server Summary ..................................................................... 678

35.9.6 RADIUS Server Summary ...................................................................................................682

35.10 Auth. Method Overview ........................................................................................................ 685

35.10.1 Before You Begin ............................................................................................................. 685

35.10.2 Example: Selecting a VPN Authentication Method ................................................... 685

35.10.3 Authentication Method Objects ................................................................................... 686

35.10.4 Two-Factor Authentication VPN Access ...................................................................... 688

35.10.5 Two-Factor Authentication Admin Access .................................................................. 691

35.11 Certificate Overview ............................................................................................................... 693

35.11.1 What You Need to Know ............................................................................................... 693

35.11.2 Verifying a Certificate .................................................................................................... 695

35.11.3 The My Certificates Screen ............................................................................................ 696

35.11.4 The Trusted Certificates Screen .................................................................................... 705

35.11.5 Certificates Technical Reference ................................................................................. 710

35.12 ISP Account Overview ............................................................................................................ 710

35.12.1 ISP Account Summary ....................................................................................................710

35.13 DHCPv6 Overview .................................................................................................................... 713

35.13.1 The DHCPv6 Request Screen ......................................................................................... 713

35.13.2 The DHCPv6 Lease Screen ............................................................................................. 715

Chapter 36

Device HA.........................................................................................................................................717

36.1 Device HA Overview .................................................................................................................. 717

36.1.1 What You Can Do in These Screens ................................................................................ 717

36.2 Device HA Status ........................................................................................................................ 717

36.3 Device HA Pro ............................................................................................................................. 719

36.3.1 Deploying Device HA Pro ................................................................................................ 720

36.3.2 Configuring Device HA Pro .............................................................................................. 720

36.4 View Log ...................................................................................................................................... 722

Chapter 37

Cloud CNM......................................................................................................................................724

37.1 Cloud CNM Overview ................................................................................................................ 724

37.1.1 What You Can Do in this Chapter ................................................................................... 724

37.2 Cloud CNM SecuManager ....................................................................................................... 724

37.3 Cloud CNM SecuReporter ......................................................................................................... 727

Chapter 38

System...............................................................................................................................................732

38.1 Overview ..................................................................................................................................... 732

38.1.1 What You Can Do in this Chapter ................................................................................... 732

38.2 Host Name ................................................................................................................................... 733

ZyWALL ATP Series User’s Guide

Table of Contents

38.3 USB Storage ................................................................................................................................. 733

38.4 Date and Time ............................................................................................................................ 734

38.4.1 Pre-defined NTP Time Servers List ..................................................................................... 737

38.4.2 Time Server Synchronization ............................................................................................ 737

38.5 Console Port Speed ................................................................................................................... 738

38.6 DNS Overview ............................................................................................................................. 739

38.6.1 DNS Server Address Assignment ...................................................................................... 739

38.6.2 Configuring the DNS Screen ............................................................................................ 739

38.6.3 (IPv6) Address Record ...................................................................................................... 743

38.6.4 PTR Record ......................................................................................................................... 743

38.6.5 Adding an (IPv6) Address/PTR Record .......................................................................... 743

38.6.6 CNAME Record ................................................................................................................. 744

38.6.7 Adding a CNAME Record ................................................................................................ 744

38.6.8 Domain Zone Forwarder ................................................................................................. 745

38.6.9 Adding a Domain Zone Forwarder ................................................................................. 745

38.6.10 MX Record ...................................................................................................................... 746

38.6.11 Adding a MX Record ...................................................................................................... 746

38.6.12 Security Option Control .................................................................................................. 747

38.6.13 Editing a Security Option Control .................................................................................. 747

38.6.14 Adding a DNS Service Control Rule .............................................................................. 748

38.7 WWW Overview .......................................................................................................................... 749

38.7.1 Service Access Limitations ............................................................................................... 749

38.7.2 System Timeout .................................................................................................................. 749

38.7.3 HTTPS ................................................................................................................................... 749

38.7.4 Configuring WWW Service Control ................................................................................. 750

38.7.5 Service Control Rules ........................................................................................................ 753

38.7.6 Customizing the WWW Login Page ................................................................................ 754

38.7.7 HTTPS Example ................................................................................................................... 759

38.8 SSH ............................................................................................................................................. 766

38.8.1 How SSH Works .................................................................................................................. 767

38.8.2 SSH Implementation on the Zyxel Device ...................................................................... 768

38.8.3 Requirements for Using SSH ..............................................................................................768

38.8.4 Configuring SSH ................................................................................................................. 768

38.8.5 Service Control Rules ........................................................................................................ 769

38.8.6 Secure Telnet Using SSH Examples .................................................................................. 770

38.9 Telnet ........................................................................................................................................... 771

38.9.1 Configuring Telnet ............................................................................................................. 771

38.9.2 Service Control Rules ........................................................................................................ 773

38.10 FTP .............................................................................................................................................. 773

38.10.1 Configuring FTP ................................................................................................................ 773

38.10.2 Service Control Rules ...................................................................................................... 775

38.11 SNMP ......................................................................................................................................... 775

38.11.1 SNMPv3 and Security ...................................................................................................... 776

ZyWALL ATP Series User’s Guide

Table of Contents

38.11.2 Supported MIBs ............................................................................................................... 777

38.11.3 SNMP Traps ....................................................................................................................... 777

38.11.4 Configuring SNMP ........................................................................................................... 777

38.11.5 Add SNMPv3 User ............................................................................................................ 780

38.11.6 Service Control Rules ...................................................................................................... 780

38.12 Authentication Server .............................................................................................................. 781

38.12.1 Add/Edit Trusted RADIUS Client .................................................................................... 783

38.13 Notification > Mail Server ......................................................................................................... 783

38.14 Notification > SMS ..................................................................................................................... 785

38.15 Language Screen ..................................................................................................................... 786

38.16 IPv6 Screen ................................................................................................................................ 787

38.17 Zyxel One Network (ZON) Utility ............................................................................................. 787

38.17.1 Requirements ................................................................................................................... 788

38.17.2 Run the ZON Utility ........................................................................................................... 788

38.17.3 Zyxel One Network (ZON) System Screen .................................................................... 792

Chapter 39

Log and Report....... .... ... ............................................. ... .... ............................................ ...................793

39.1 Overview ..................................................................................................................................... 793

39.1.1 What You Can Do In this Chapter .................................................................................. 793

39.2 Email Daily Report ....................................................................................................................... 793

39.3 Log Setting Screens ................................................................................................................... 795

39.3.1 Log Setting Summary ........................................................................................................ 795

39.3.2 Edit System Log Settings .................................................................................................. 796

39.3.3 Edit Log on USB Storage Setting ..................................................................................... 800

39.3.4 Edit Remote Server Log Settings ..................................................................................... 801

39.3.5 Log Category Settings Screen ......................................................................................... 803

Chapter 40

File Manager ....................................................................................................................................806

40.1 Overview ..................................................................................................................................... 806

40.1.1 What You Can Do in this Chapter ................................................................................... 806

40.1.2 What you Need to Know .................................................................................................. 806

40.2 The Configuration File Screen ................................................................................................... 808

40.3 Firmware Management ........................................................................................................... 812

40.3.1 Cloud Helper ..................................................................................................................... 812

40.3.2 The Firmware Management Screen ............................................................................... 815

40.3.3 Firmware Upgrade via USB Stick ...................................................................................... 818

40.4 The Shell Script Screen .............................................................................................................. 818

Chapter 41

Diagnostics ......................................................................................................................................821

41.1 Overview ..................................................................................................................................... 821

ZyWALL ATP Series User’s Guide

Table of Contents

41.1.1 What You Can Do in this Chapter ................................................................................... 821

41.2 The Diagnostics Screens ............................................................................................................ 821

41.2.1 The Diagnostics Collect Screen ....................................................................................... 822

41.2.2 The Diagnostics Collect on AP Screen ........................................................................... 823

41.2.3 The Diagnostics Files Screen ............................................................................................824

41.3 The Packet Capture Screen ...................................................................................................... 825

41.3.1 The Packet Capture on AP Screen ................................................................................. 828

41.3.2 The Packet Capture Files Screen .................................................................................... 831

41.4 The CPU / Memory Status Screen ............................................................................................. 832

41.5 The System Log Screen .............................................................................................................. 834

41.6 The Remote Assistance Screen ................................................................................................. 834

41.7 The Network Tool Screen ........................................................................................................... 836

41.8 The Routing Traces Screen ........................................................................................................ 838

41.9 The Wireless Frame Capture Screen ........................................................................................839

41.9.1 The Wireless Frame Capture Files Screen ...................................................................... 841

Chapter 42

Packet Flow Explore ........................................................................................................................842

42.1 Overview ..................................................................................................................................... 842

42.1.1 What You Can Do in this Chapter ................................................................................... 842

42.2 The Routing Status Screen ......................................................................................................... 842

42.3 The SNAT Status Screen .............................................................................................................. 846

Chapter 43

Shutdown..........................................................................................................................................849

43.1 Overview ..................................................................................................................................... 849

43.1.1 What You Need To Know ................................................................................................. 849

43.2 The Shutdown Screen ................................................................................................................ 849

Part III: Appendices and Troubleshooting..................................................850

Chapter 44

Troubleshooting................................................................................................................................851

44.1 Resetting the Zyxel Device ........................................................................................................ 864

44.2 Getting More Troubleshooting Help .........................................................................................865

Appendix A Customer Support ..................................................................................................... 866

Appendix B Product Features........................................................................................................ 872

Appendix C Legal Information ...................................................................................................... 875

Index.................................................................................................................................................883

ZyWALL ATP Series User’s Guide

PART I

User’s Guide

1.1 Overview

Zyxel Device refers to these models as outlined below.

• ATP100

• ATP100W

• ATP200

• ATP500

• ATP700

• ATP800

Most screen shots in this guide come from the ATP200.

CHAPTER 1

Introduction

Note the following differences between the device models:

• ATP500 and ATP800 support Device HA Pro.

• Some interface names vary by model - see Table 14 on page 73 and Table 15 on page 73 for default port / interface name mapping. See Table 17 on page 73 for default interface / zone mapping.

See the product’s datasheet for detailed information on a specific model.

1.2 Registration at myZyxel

myZyxel is Zyxel’s online services center where you can register your Zyxel Device and manage subscription services available for your Zyxel Device (see Configuration > Licensing > Registration > Service for services available for your Zyxel Device).

• For Zyxel Devices that already have firmware version 4.25 or later, you have to register your Zyxel Device and activate the corresponding service at myZyxel (through your Zyxel Device).

• For Zyxel Devices upgrading to firmware version 4.25 or later, you may skip registering your Zyxel Device and activating the corresponding service at myZyxel (through your Zyxel Device). However, it is highly recommended to at least register your Zyxel Device. At the time of writing, the Firmware Upgrade license providing Cloud Helper new firmware notifications, is free when you register your Zyxel Device.

Note: You need to create a myZyxel account at http://portal.myZyxel.com before you can

You may need your Zyxel Device’s serial number and LAN MAC address to register it at myZyxel. See the label at the back of the Zyxel Device’s for details.

ZyWALL ATP Series User’s Guide

Figure 1 myZyxel Login

1.2.1 Grace Period

Chapter 1 Introduction

SecuReporter and service licenses have a 15-day grace period after a license expires. Services will continue to work in this period during which you will receive notifications to renew your license(s). New license(s) are valid for 1 year from the date of purchase.

1.2.2 Applications

These are some Zyxel Device application scenarios.

Security Router

Security includes a Stateful Packet Inspection (SPI) firewall.

Figure 2 Applications: Security Router Applications: Security Router

ZyWALL ATP Series User’s Guide

Chapter 1 Introduction

IPv6 Routing

The Zyxel Device supports IPv6 Ethernet, PPP, VLAN, and bridge routing. You may also create IPv6 policy routes and IPv6 objects. The Zyxel Device can also route IPv6 packets through IPv4 networks using different tunneling methods.

Figure 3 Applications: IPv6 Routing

VPN Connectivity

Set up VPN tunnels with other companies, branch offices, telecommuters, and business travelers to provide secure access to your network. AS is an Authentication Server in the below figure.

Figure 4 Applications: VPN Connectivity

SSL VPN Network Access

SSL VPN lets remote users use their web browsers for a very easy-to-use VPN solution. A user just browses to the Zyxel Device’s web address and enters his user name and password to securely connect to the Zyxel Device’s network. Here full tunnel mode creates a virtual connection for a remote user and gives him a private IP address in the same subnet as the local network so he can access network resources in the same way as if he were part of the internal network.

ZyWALL ATP Series User’s Guide

Chapter 1 Introduction

Web Mail File Share

Web-based Application

https://

Application Server

Non-Web

LAN (192.168.1.X)

Figure 5 SSL VPN With Full Tunnel Mode

User-Aware Access Control

Set up security policies to restrict access to sensitive information and shared resources based on the user who is trying to access it. In the following figure user A can access both the Internet and an internal file server. User B has a lower level of access and can only access the Internet. User C is not even logged in, so and cannot access either the Internet or the file server.

Figure 6 Applications: User-Aware Access Control

Load Balancing

Set up multiple connections to the Internet on the same port, or different ports, including cellular interfaces. In either case, you can balance the traffic loads between them.

Figure 7 Applications: Multiple WAN Interfaces

ZyWALL ATP Series User’s Guide

Chapter 1 Introduction

1.3 Management Overview

You can manage the Zyxel Device in the following ways.

Web Configurator

The Web Configurator allows easy Zyxel Device setup and management using an Internet browser. This User’s Guide provides information about the Web Configurator.

Figure 8 Managing the Zyxel Device: Web Configurator

Command-Line Interface (CLI)

The CLI allows you to use text-based commands to configure the Zyxel Device. Access it using remote management (for example, SSH or Telnet) or via the physical or Web Configurator console port. See the Command Reference Guide for CLI details. The default settings for the console port are:

Table 1 Console Port Default Settings

SETTING VALUE

Speed 115200 bps

Data Bits 8

Parity None

Stop Bit 1

Flow Control Off

FTP

Use File Transfer Protocol for firmware upgrades and configuration backup/restore.

SNMP

The device can be monitored and/or managed by an SNMP manager. See Section 38.11 on page 775.

ZyWALL ATP Series User’s Guide

Chapter 1 Introduction

CloudCNM

Use the CloudCNM screen (see Section 38.15 on page 786) to enable and configure management of the Zyxel Device by a Central Network Management system.

Management Authentication

Managers must be authenticated with a username and password, using one of:

•Local

• An external RADIUS server

• An external LDAP server

• Certificates

Zyxel Device authentication

1.4 Web Configurator

In order to use the Web Configurator, you must:

• Use one of the following web browser versions or later:

• Internet Explorer 10.x, 11.x

• Chrome latest version (45 or above)

• Firefox latest version (45 or above)

• Safari latest version (9.0 or above)

• Allow pop-up windows (blocked by default in some browsers)

• Enable JavaScripts, Java permissions, and cookies

The recommended screen resolution is 1024 x 768 pixels.

Note: Screenshots and graphics in this book may differ slightly from your product due to

differences in product features or web configurator brand style. Most screen shots in this guide come from the USG110 and USG60W.

1.4.1 Web Configurator Access

1 Make sure your Zyxel Device hardware is properly connected. See the Quick Start Guide.

2 In your browser go to http://192.168.1.1. By default, the Zyxel Device automatically routes this request to

its HTTPS server, and it is recommended to keep this setting. The Login screen appears.

ZyWALL ATP Series User’s Guide

Chapter 1 Introduction

3 Type the user name (default: “admin”) and password (default: “1234”).

4 Click Login. After you log in for the first time using the default user name and password, you must

change the default admin password in the Update Admin Info screen. Enter a new password of from 1 to 64 characters.

In Configuration > Object > User/Group > Setting, you can enable Password Complexity to require a new password to consist of at least 8 characters and at most 64, where at least 1 character must be a number, at least 1 a lower case letter, at least 1 an upper case letter and at least 1 a special character from the keyboard, such as !@#$%^&*()_+. You can also require periodic changing of the password in that screen by configuring Password must changed every (days).

Make a note of your new password, enter it in the following screen, then click Apply.

5 A Terms of Use screen displays. Read the statement, then click Acknowledge to proceed.

Note: If you are using an Internet Explorer browser, the Terms of Use will be downloaded

automatically.

ZyWALL ATP Series User’s Guide

+ 198 hidden pages