ZyXEL Communications ZyWALL 300 User Manual
Chapter 44 Service Control
ZyWALL USG 300 User’s Guide
612
The following table describes the labels in this screen.
Table 214 System > Vantage CNM
LABEL
DESCRIPTION
Enable
Select this check box to allow Vantage CNM to manage your ZyWALL.
Server IP Address/
FQDN
FQDN
Enter the IP address or fully qualified domain name of the Vantage server.
If the Vantage CNM server is on a different subnet to the ZyWALL and is
behind a NAT router, enter the WAN IP address of the NAT router here and
configure the NAT router to forward UDP port 11864 traffic to the Vantage
CNM server.
If the Vantage CNM server is behind a firewall, you may have to create a rule
on the firewall to allow UDP port 11864 traffic through to the Vantage CNM
server (most (new) ZyXEL firewalls automatically allow this).
If the Vantage CNM server is on a different subnet to the ZyWALL and is
behind a NAT router, enter the WAN IP address of the NAT router here and
configure the NAT router to forward UDP port 11864 traffic to the Vantage
CNM server.
If the Vantage CNM server is behind a firewall, you may have to create a rule
on the firewall to allow UDP port 11864 traffic through to the Vantage CNM
server (most (new) ZyXEL firewalls automatically allow this).
Transfer Protocol
Select whether the Vantage CNM sessions should use regular HTTP
connections or secure HTTPS connections.
connections or secure HTTPS connections.
Note: HTTPS is recommended.
The Vantage CNM server must use the same setting.
Device Management
IP
IP
Select Auto to have the ZyWALL allow Vantage CNM sessions to connect to
any of the ZyWALL’s IP addresses.
Select Custom to specify the ZyWALL’s IP address that allows Vantage CNM
sessions. Configure the Custom IP field if you select this. You might for
example need to specify the IP address when using a WAN trunk that uses
multiple WAN IP addresses.
any of the ZyWALL’s IP addresses.
Select Custom to specify the ZyWALL’s IP address that allows Vantage CNM
sessions. Configure the Custom IP field if you select this. You might for
example need to specify the IP address when using a WAN trunk that uses
multiple WAN IP addresses.
Custom IP
Specify the ZyWALL’s IP address that allows Vantage CNM sessions. This
field applies when you select Custom in the Device Management IP field.
field applies when you select Custom in the Device Management IP field.
Keepalive Interval
Set how often the ZyWALL sends a keep alive packet to the Vantage CNM
server if there is no other traffic. The keep alive packets maintain the Vantage
CNM server’s control session.
server if there is no other traffic. The keep alive packets maintain the Vantage
CNM server’s control session.
Periodic Inform
Interval
Interval
Select this option to have the ZyWALL periodically send “Inform” messages to
the Vantage CNM server.
the Vantage CNM server.
HTTPS Authentication
When you are using HTTPs, select this option to have the ZyWALL
authenticate the Vantage CNM server’s certificate. In order to do this you
need to import the Vantage CNM server’s public key (certificate) into the
ZyWALL’s trusted certificates.
authenticate the Vantage CNM server’s certificate. In order to do this you
need to import the Vantage CNM server’s public key (certificate) into the
ZyWALL’s trusted certificates.
Vantage Certificate
Select the Vantage CNM server’s certificate. This applies when you enable
HTTPS authentication.
HTTPS authentication.
Advanced/Basic
Click Advanced to display more configuration fields or click Basic to display
fewer fields.
fewer fields.
Apply
Click Apply to save your changes back to the ZyWALL.
Reset
Click Reset to begin configuring this screen afresh.