ZyXEL Communications 100 Series Network Router User Manual


  Open as PDF
of 902
 
Chapter 5 Configuration Basics
ZyWALL USG 100/200 Series User’s Guide
115
Example: See Chapter 6 on page 125.
5.4.5 SSL VPN
Use SSL VPN to provide secure network access to remote users.
Example: See Chapter 6 on page 125.
5.4.6 L2TP VPN
Use L2TP VPN to let remote users use the L2TP and IPSec client software included with their
computers’ operating systems to securely connect to the network behind the ZyWALL.
Example: See Chapter 26 on page 415.
5.4.7 Zones
See Section 5.2 on page 110 for background information. A zone is a group of interfaces and
VPN tunnels. The ZyWALL uses zones, not interfaces, in many security settings, such as
firewall rules and remote management.
Zones cannot overlap. Each interface and VPN tunnel can be assigned to at most one zone.
Virtual interfaces are automatically assigned to the same zone as the interface on which they
run.
Example: For example, to change the OPT port to being in the LAN1 zone, click Network >
Zone and then the OPT Edit icon. Remove the OPT interface from the OTP zone and click
Apply. Then click the LAN1 Edit icon and add the OPT interface and click Apply.
5.4.8 Device HA
To increase network reliability, device HA lets a backup ZyWALL automatically take over if a
master ZyWALL fails.
MENU ITEM(S)
VPN > SSL VPN
PREREQUISITES
Interfaces, SSL application, users, user groups, addresses (network list, IP pool
for assigning to clients, DNS and WINS server addresses), to-ZyWALL firewall,
firewall
WHERE USED
Policy routes, zones
MENU ITEM(S)
VPN > L2TP VPN
PREREQUISITES
Interfaces, IPSec VPN connection, certificates (authentication), authentication
methods (extended authentication), addresses (local network, remote network,
NAT, IP pool for assigning to clients, DNS and WINS server addresses), to-
ZyWALL firewall, firewall
WHERE USED
The IPSec VPN connection used for L2TP VPN can be used in policy routes and
zones
MENU ITEM(S)
Network > Zone
PREREQUISITES
Interfaces, IPSec VPN, SSL VPN
WHERE USED
Firewall, IDP, remote management, anti-virus, ADP, application patrol
MENU ITEM(S)
Device HA
 previous next