ZyXEL 35 用户指南
ZyWALL 35 Support Notes
2
INDEX
Application Notes....................................................................................................12
Seamless Incorporation into your network ..........................................................12
Using Transparent (Bridge Mode) Firewall ............................................12
Internet Connection ...................................................................................17
DHCP server/client/relay + flexible port role configuration..................19
Using NAT/Multi-NAT ..............................................................................23
Optimize network performance & availability ....................................................33
Using Dual WAN / Load Balancing and policy route .............................33
Using Dual WAN .................................................................................34
WAN backup (Active/Passive mode)...........................................34
Load Balancing (Active/Active Mode)........................................43
Using Policy Route ..............................................................................52
Using Bandwidth Management ................................................................53
Secure Connections across the Internet ...............................................................67
Site-to-Site VPN (Intranet) Scenario........................................................67
Configure ZyWALLs with Static WAN IP Address.............................67
Configure ZyWALL with Dynamic WAN IP Address.........................68
Configure ZyWALL behind NAT Router ............................................70
Mapping multiple Network policy to same gateway policy ................72
Using DDNS for VPN Redundancy ....................................................77
Using Certificate for Device Authentication........................................78
Using Self-signed Certificates .....................................................78
Online Enroll Certificates ............................................................82
Offline Enroll Certificates............................................................91
Using Pre-Shared Key for Device Authentication .............................124
Using VPN routing between branches ...............................................125
NAT over IPSec on ZyNOS ...............................................................135
Never lost your VPN connection (IPSec High Availability)..............144
How to configure the VPN HA..................................................145
Access control and security VPN connection (Security policy
enforcement IPSec)............................................................................147
How to configure access control rule over VPN .......................148
How to configure Security policy (AV/IDP/AS) over VPN ......152
How to configure Web filtering rule over VPN – Content Filter154
ZyWALL vs 3rd Party VPN Gateway ....................................................155
SonicWALL with ZyWALL VPN Tunneling.............................155
NetScreen with ZyWALL VPN Tunneling ................................164
All contents copyright (c) 2006 ZyXEL Communications Corporation.