ZyXEL g-2000 plusv2 Guia Do Utilizador
ZyXEL G-2000 Plus v2 User’s Guide
40
Chapter 1 Getting to Know Your Device
SSL Passthrough
SSL (Secure Sockets Layer) uses a public key to encrypt data that's transmitted over an SSL
connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites
use the protocol to obtain confidential user information, such as credit card numbers. By
convention, URLs that require an SSL connection start with “https” instead of “http”. The
ZyXEL device allows SSL connections to take place through the ZyXEL device.
connection. Both Netscape Navigator and Internet Explorer support SSL, and many Web sites
use the protocol to obtain confidential user information, such as credit card numbers. By
convention, URLs that require an SSL connection start with “https” instead of “http”. The
ZyXEL device allows SSL connections to take place through the ZyXEL device.
Firewall
The ZyXEL device is a stateful inspection firewall with DoS (Denial of Service) protection.
By default, when the firewall is activated, all incoming traffic from the WAN to the LAN is
blocked unless it is initiated from the LAN. The ZyXEL device firewall supports TCP/UDP
inspection, DoS detection and prevention, real time alerts, reports and logs.
By default, when the firewall is activated, all incoming traffic from the WAN to the LAN is
blocked unless it is initiated from the LAN. The ZyXEL device firewall supports TCP/UDP
inspection, DoS detection and prevention, real time alerts, reports and logs.
Content Filtering
Content filtering allows you to block access to certain web features and specific URL
keywords as well as schedule when the ZyXEL device should perform the filtering.
keywords as well as schedule when the ZyXEL device should perform the filtering.
Brute-Force Password Guessing Protection
The ZyXEL device has a special protection mechanism to discourage brute-force password
guessing attacks on the ZyXEL device's management interfaces. You can specify a wait-time
that must expire before entering a fourth password after three incorrect passwords have been
entered. Please see the appendix for details about this feature.
guessing attacks on the ZyXEL device's management interfaces. You can specify a wait-time
that must expire before entering a fourth password after three incorrect passwords have been
entered. Please see the appendix for details about this feature.
Wireless LAN MAC Address Filtering
Your ZyXEL device checks the MAC address of the wireless station against a list of allowed
or denied MAC addresses.
or denied MAC addresses.
WEP Encryption
WEP (Wired Equivalent Privacy) encrypts data frames before transmitting over the wireless
network to help keep network communications private.
network to help keep network communications private.
IEEE 802.1x Network Security
The ZyXEL device supports the IEEE 802.1x standard to enhance user authentication. Use the
built-in user profile database to authenticate up to 32 users using MD5 encryption. Use an
EAP-compatible RADIUS (RFC2138, 2139 - Remote Authentication Dial In User Service)
server to authenticate a limitless number of users using EAP (Extensible Authentication
Protocol). EAP is an authentication protocol that supports multiple types of authentication.
built-in user profile database to authenticate up to 32 users using MD5 encryption. Use an
EAP-compatible RADIUS (RFC2138, 2139 - Remote Authentication Dial In User Service)
server to authenticate a limitless number of users using EAP (Extensible Authentication
Protocol). EAP is an authentication protocol that supports multiple types of authentication.