ZyXEL Communications 200 Series User Manual

ZyWALL USG 100/200 Series User’s Guide

This chapter introduces the main features and applications of the ZyWALL.

The ZyWALL’s security features include VPN, firewall, anti-virus, content filtering, IDP 
(Intrusion Detection and Prevention), ADP (Anomaly Detection and Protection), and 
certificates. It also provides bandwidth management, NAT, port forwarding, policy routing, 
DHCP server and many other powerful features.

The rest of this section provides more information about the features of the ZyWALL.

To ensure the ZyWALL provides reliable, secure Internet access, set up one or more of the 
following:

• Multiple WAN ports and configure load balancing between these ports.

• One or more 3G (cellular) connections.

• An auxiliary Internet connection.

• A backup ZyWALL in the event the master ZyWALL fails (device HA).

Use IPSec, SSL, or L2TP VPN to provide secure communication between two sites over the 
Internet or any insecure network that uses TCP/IP for communication. The ZyWALL also 
offers hub-and-spoke IPSec VPN.

Many security settings are made by zone, instead of by interface or port. This makes it simpler 
to set up and to change security settings in the ZyWALL. You can add interfaces and VPN 
tunnels to zones.

The ZyWALL’s firewall is a stateful inspection firewall. The ZyWALL restricts access by 
screening data packets against defined access rules. It can also inspect sessions. For example, 
traffic from one zone is not allowed unless it is initiated by a computer in another zone first.