ZyXEL Communications 1000 ユーザーズマニュアル

 Chapter 6 Configuration Basics

ZyWALL USG 1000 User’s Guide

 for background information. A zone is a group of 

interfaces and VPN tunnels. The ZyWALL uses zones, not interfaces, in many 
security settings, such as firewall rules and remote management.

Zones cannot overlap. Each interface and VPN tunnel can be assigned to at most 
one zone. Virtual interfaces are automatically assigned to the same zone as the 
interface on which they run. When you create a zone, the ZyWALL does not create 
any firewall rules, assign an IDP profile, or configure remote management for the 
new zone. 

Example: For example, to create the DMZ-2 zone and add ge7, click Network > 
Zone and then the Add icon. 

Dynamic DNS maps a domain name to a dynamic IP address. The ZyWALL helps 
maintain this mapping. 

Use Network Address Translation (NAT) to make computers on a private network 
behind the ZyWALL available outside the private network. 

The ZyWALL only checks regular (through-ZyWALL) firewall rules for packets that 
are redirected by NAT, it does not check the to-ZyWALL firewall rules. 

Example: Suppose you have an FTP server with a private IP address connected to 
a DMZ port. You could configure a NAT rule to forwards FTP sessions from the 
WAN to the DMZ. 

Interfaces

Interfaces, IPSec VPN, SSL VPN

Firewall, IDP, remote management, anti-virus, ADP, application patrol

Interface

Interfaces, addresses (HOST)