Manual De UsuarioTabla de contenidosZyWALL 2 Series1Copyright2FCC Interference Statement3Information for Canadian Users4ZyXEL Limited Warranty5Customer Support6Table of Contents7List of Figures15List of Tables22Preface26Part I Getting Started291. Getting to Know Your ZyWALL31Introducing the ZyWALL31Features31Applications for the ZyWALL362. Introducing the Web Configurator39Web Configurator Overview39Accessing the ZyWALL Web Configurator39Resetting the ZyWALL40Navigating the ZyWALL Web Configurator413. Wizard Setup47Wizard Setup Overview47General Setup and System Name47Internet Access48WAN and DNS54Basic Setup Complete58Part II System and LAN614. System Screens63System Overview63Configuring General Setup63Dynamic DNS65Configuring Dynamic DNS65Configuring Password67Pre-defined NTP Time Servers List68Configuring Time Setting695. LAN Screens73LAN Overview73DHCP Setup73IP Address and Subnet Mask73DNS Server Address Assignment74LAN TCP/IP74Configuring IP75Configuring Static DHCP78Configuring IP Alias79Part III WAN and Wireless LAN836. WAN Screens85WAN Overview85TCP/IP Priority (Metric)85WAN IP Address Assignment85Configuring Route86Configuring WAN ISP87Configuring WAN IP93Configuring WAN MAC97Traffic Redirect98Configuring Traffic Redirect99Configuring Dial Backup101Advanced Modem Setup106Configuring Advanced Modem Setup1077. Wireless LAN Screens111Wireless LAN Overview111Wireless LAN Basics111Wireless Security113Configuring Wireless LAN114Configuring MAC Filter116802.1x Overview117Local User Database119Configuring 802.1X119Part IV NAT and Static Route1218. Network Address Translation (NAT)123NAT Overview123Using NAT126SUA Server127Configuring SUA Server129Configuring Address Mapping130Configuring Trigger Port1339. Static Route Screens137Static Route Overview137Configuring IP Static Route137Part V Firewall and Content Filters14110. Firewalls143Firewall Overview143Types of Firewalls143Introduction to Nortel Networks Firewall144Denial of Service145Stateful Inspection149Guidelines For Enhancing Security With Your Firewall153Packet Filtering Vs Firewall15311. Firewall Screens157Access Methods157Firewall Policies Overview157Rule Logic Overview158Connection Direction Examples159Alerts161Configuring Firewall161Example Firewall Rule169Predefined Services174Configuring Attack Alert17612. Content Filtering Screens181Introduction to Content Filtering181General Content Filter Configuration181Content Filtering with an External Server184Checking Content Filtering Activation185Configuring Categories185Configuring Customization194Part VI VPN/IPSec19913. Introduction to IPSec201VPN Overview201IPSec Architecture203Encapsulation204IPSec and NAT20514. VPN Screens207VPN/IPSec Overview207IPSec Algorithms207My IP Address208Secure Gateway Address208Summary Screen209Keep Alive211NAT Traversal212ID Type and Content214Pre-Shared Key216VPN Implementation216Configuring Basic IKE VPN Rule Setup217IKE Phases227Configuring Advanced IKE Setup230Manual Key Setup234Configuring Edit Manual Setup234SA Monitor239Global Settings240Telecommuter VPN/IPSec Examples241VPN and Remote Management244PartVII Certificates24515. Certificates247Certificates Overview247Self-signed Certificates248Configuration Summary248My Certificates249Certificate File Formats251Importing a Certificate252Creating a Certificate253My Certificate Details256Trusted CAs260Importing a Trusted CA’s Certificate262Trusted CA Certificate Details263Trusted Remote Hosts267Verifying a Trusted Remote Host’s Certificate269Importing a Trusted Remote Host’s Certificate270Trusted Remote Host Certificate Details271Directory Servers275Add or Edit a Directory Server276Part VIII Authentication Server, Remote Management and UPnP27916. Authentication Server281Authentication Server Overview281Local User Database281Configuring Local User Database281Configuring RADIUS28317. Remote Management Screens287Remote Management Overview287Introduction to HTTPS288Configuring WWW290HTTPS Example292SSH Overview299How SSH works300SSH Implementation on the ZyWALL301Configuring SSH301Secure Telnet Using SSH Examples302Secure FTP Using SSH Example304Telnet305Configuring TELNET306Configuring FTP307Configuring SNMP308Configuring DNS312Configuring Security31418. UPnP317Universal Plug and Play Overview317UPnP Implementation318Configuring UPnP318Displaying UPnP Port Mapping320Installing UPnP in Windows Example321Using UPnP in Windows XP Example324Part IX Logs32719. Logs Screens329Configuring View Log329Configuring Log Settings331Configuring Reports334Part X Maintenance34120. Maintenance343Maintenance Overview343Status Screen343DHCP Table Screen346F/W Upload Screen347Configuration Screen349Restart Screen353Part XI SMT General Configuration35521. Introducing the SMT357Introduction to the SMT357Accessing the SMT via the Console Port357Navigating the SMT Interface358Changing the System Password362Resetting the ZyWALL36222. SMT Menu 1 - General Setup363Introduction to General Setup363Configuring General Setup36323. WAN and Dial Backup Setup367Introduction to WAN367Dial Backup368Configuring Dial Backup in Menu 2368Advanced WAN Setup369Remote Node Profile (Backup ISP)371Editing PPP Options374Editing TCP/IP Options375Editing Login Script377Remote Node Filter37824. LAN Setup381Introduction to LAN Setup381Accessing the LAN Menus381LAN Port Filter Setup381TCP/IP and DHCP Ethernet Setup Menu382Wireless LAN Setup38625. Internet Access391Introduction to Internet Access Setup391Ethernet Encapsulation391PPTP Encapsulation393PPPoE Encapsulation394Basic Setup Complete395Part XII SMT Advanced Applications39726. Remote Node Setup399Introduction to Remote Node Setup399Remote Node Setup399Edit IP405Remote Node Filter407Traffic Redirect40827. IP Static Route Setup413IP Static Route Setup41328. Network Address Translation (NAT)415Using NAT415NAT Setup417Configuring a Server behind NAT422General NAT Examples423Trigger Port Forwarding43029. Introducing the Firewall435Using SMT Menus43530. Filter Configuration437Introduction to Filters437Configuring a Filter Set440Example Filter449Filter Types and NAT452Firewall Versus Filters452Applying a Filter45331. SNMP Configuration455SNMP Configuration455SNMP Traps456Part XIII SMT System Maintenance45732. System Information & Diagnosis459Introduction to System Status459System Status459System Information and Console Port Speed461Log and Trace46333. Firmware and Configuration File Maintenance471Introduction471Filename Conventions471Backup Configuration472Restore Configuration478Uploading Firmware and Configuration Files48134. System Maintenance Menus 8 to 10489Command Interpreter Mode489Call Control Support491Time and Date Setting49335. Remote Management497Remote Management497Part XIV SMT Advanced Management50136. Call Scheduling503Introduction to Call Scheduling50337. VPN/IPSec Setup507Introduction507IPSec Summary Screen508IPSec Setup511IKE Setup517Manual Setup52038. SA Monitor523Introduction523Using SA Monitor523Part XV General Appendices525A. Troubleshooting527B. Setting up Your Computer’s IP Address531C. Triangle Route543D. Wireless LAN and IEEE 802.11547E. Wireless LAN With IEEE 802.1x551F. Types of EAP Authentication553G. PPPoE555H. PPTP557I. IP Subnetting561J. Safety Warnings and Instructions569Part XVI Command, Log Appendices and Index571K. Command Interpreter573L. Firewall Commands575M. NetBIOS Filter Commands581N. Boot Commands585O. Log Descriptions587P. Brute-Force Password Guessing Protection605Q. Index607Tamaño: 20 MBPáginas: 614Language: EnglishManuales abiertas