ZyXEL Communications 5 Series User Manual
Chapter 10 DMZ Screens
ZyWALL 5/35/70 Series User’s Guide
212
RIP Version
The RIP Version field controls the format and the broadcasting method of the
RIP packets that the ZyWALL sends (it recognizes both formats when receiving).
RIP-1 is universally supported but RIP-2 carries more information. RIP-1 is
probably adequate for most networks, unless you have an unusual network
topology. Both RIP-2B and RIP-2M sends the routing data in RIP-2 format; the
difference being that RIP-2B uses subnet broadcasting while RIP-2M uses
multicasting. Multicasting can reduce the load on non-router machines since they
generally do not listen to the RIP multicast address and so will not receive the
RIP packets. However, if one router uses multicasting, then all routers on your
network must use multicasting, also. By default, RIP direction is set to Both and
the Version set to RIP-1.
RIP packets that the ZyWALL sends (it recognizes both formats when receiving).
RIP-1 is universally supported but RIP-2 carries more information. RIP-1 is
probably adequate for most networks, unless you have an unusual network
topology. Both RIP-2B and RIP-2M sends the routing data in RIP-2 format; the
difference being that RIP-2B uses subnet broadcasting while RIP-2M uses
multicasting. Multicasting can reduce the load on non-router machines since they
generally do not listen to the RIP multicast address and so will not receive the
RIP packets. However, if one router uses multicasting, then all routers on your
network must use multicasting, also. By default, RIP direction is set to Both and
the Version set to RIP-1.
Multicast
Select IGMP V-1 or IGMP V-2 or None. IGMP (Internet Group Management
Protocol) is a network-layer protocol used to establish membership in a Multicast
group - it is not used to carry user data. IGMP version 2 (RFC 2236) is an
improvement over version 1 (RFC 1112) but IGMP version 1 is still in wide use. If
you would like to read more detailed information about inter-operability between
IGMP version 2 and version 1, please see sections 4 and 5 of RFC 2236.
Protocol) is a network-layer protocol used to establish membership in a Multicast
group - it is not used to carry user data. IGMP version 2 (RFC 2236) is an
improvement over version 1 (RFC 1112) but IGMP version 1 is still in wide use. If
you would like to read more detailed information about inter-operability between
IGMP version 2 and version 1, please see sections 4 and 5 of RFC 2236.
DHCP Setup
DHCP
DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) allows
individual clients (workstations) to obtain TCP/IP configuration at startup from a
server. Unless you are instructed by your ISP, leave this field set to Server.
When configured as a server, the ZyWALL provides TCP/IP configuration for the
clients. When set as a server, fill in the IP Pool Starting Address and Pool Size
fields.
Select Relay to have the ZyWALL forward DHCP requests to another DHCP
server. When set to Relay, fill in the DHCP Server Address field.
Select None to stop the ZyWALL from acting as a DHCP server. When you
select None, you must have another DHCP server on your LAN, or else the
computers must be manually configured.
individual clients (workstations) to obtain TCP/IP configuration at startup from a
server. Unless you are instructed by your ISP, leave this field set to Server.
When configured as a server, the ZyWALL provides TCP/IP configuration for the
clients. When set as a server, fill in the IP Pool Starting Address and Pool Size
fields.
Select Relay to have the ZyWALL forward DHCP requests to another DHCP
server. When set to Relay, fill in the DHCP Server Address field.
Select None to stop the ZyWALL from acting as a DHCP server. When you
select None, you must have another DHCP server on your LAN, or else the
computers must be manually configured.
IP Pool Starting
Address
Address
This field specifies the first of the contiguous addresses in the IP address pool.
Pool Size
This field specifies the size, or count of the IP address pool.
DHCP Server
Address
Address
Type the IP address of the DHCP server to which you want the ZyWALL to relay
DHCP requests. Use dotted decimal notation. Alternatively, click the right mouse
button to copy and/or paste the IP address.
DHCP requests. Use dotted decimal notation. Alternatively, click the right mouse
button to copy and/or paste the IP address.
DHCP WINS
Server 1, 2
Server 1, 2
Type the IP address of the WINS (Windows Internet Naming Service) server that
you want to send to the DHCP clients. The WINS server keeps a mapping table
of the computer names on your network and the IP addresses that they are
currently using.
you want to send to the DHCP clients. The WINS server keeps a mapping table
of the computer names on your network and the IP addresses that they are
currently using.
Filter (IP/MAC
Binding
Binding
Drop packets that
do not match static
IP or Dynamic IP/
MAC binding
do not match static
IP or Dynamic IP/
MAC binding
Select this to allow traffic only from devices on the DMZ which have received an
IP address from the ZyWALL. This is done by allowing traffic only from devices
on the DMZ with specific combinations of IP and MAC addresses. These IP
addresses are dynamically assigned by the ZyWALL or manually set using static
DHCP.
See the Static DHCP screen for a list of static IP/MAC address combinations.
See the DHCP Table available from the Home screen for a list of dynamically
assigned IP addresses (and their corresponding MAC addresses).
IP address from the ZyWALL. This is done by allowing traffic only from devices
on the DMZ with specific combinations of IP and MAC addresses. These IP
addresses are dynamically assigned by the ZyWALL or manually set using static
DHCP.
See the Static DHCP screen for a list of static IP/MAC address combinations.
See the DHCP Table available from the Home screen for a list of dynamically
assigned IP addresses (and their corresponding MAC addresses).
Exempt packets in
this IP address
range.
this IP address
range.
Set the ZyWALL to allow packets from the DMZ with source IP addresses within
a specified range. This allows packets even when their IP and MAC addresses
do not match those specified in the Static DHCP screen or DHCP Table.
Type this range of IP addresses in the From and To fields.
a specified range. This allows packets even when their IP and MAC addresses
do not match those specified in the Static DHCP screen or DHCP Table.
Type this range of IP addresses in the From and To fields.
Table 50 NETWORK > DMZ (continued)
LABEL
DESCRIPTION