1. Home
    2. /
  2. Manuals
    3. /
  3. Zyxel
    4. /
  4. ZyWALL-USG50
    5. /
  5. 22
Page 106 / 944 Scroll up to view Page 101 - 105
Chapter 6 Configuration Basics
ZyWALL USG 50 User’s Guide
106
6.6.1
User/Group
Use these screens to configure the ZyWALL’s administrator and user accounts. The
ZyWALL provides the following user types.
If you want to force users to log in to the ZyWALL before the ZyWALL routes traffic
for them, you might have to configure prerequisites first.
6.7
System
This section introduces some of the management features in the ZyWALL. Use
Host Name
to configure the system and domain name for the ZyWALL. Use
Date/Time
to configure the current date, time, and time zone in the ZyWALL.
Use
Console Speed
to set the console speed. Use
Language
to select a language
for the Web Configurator screens.
6.7.1
DNS, WWW, SSH, TELNET, FTP, SNMP, Vantage CNM
Use these screens to set which services or protocols can be used to access the
ZyWALL through which zone and from which addresses (address objects) the
access can come.
Table 17
User Types
TYPE
ABILITIES
admin
Change ZyWALL configuration (web, CLI)
limited-admin
Look at ZyWALL configuration (web)
user
Access network services, browse user-mode commands (CLI)
guest
Access network services
ext-user
The same as a user or a guest except the ZyWALL looks for the
specific type in an external authentication server. If the type is not
available, the ZyWALL applies default settings.
ext-group-user
External group user account.
MENU ITEM(S)
Object > User/Group
PREREQUISITES
Addresses, address groups, schedules. The prerequisites are only
used in policies to force user authentication
WHERE USED
Policy routes, firewall, application patrol, content filter, user groups,
VPN
MENU ITEM(S)
Configuration > System > DNS, WWW, SSH, TELNET, FTP,
SNMP, Vantage CNM, Language
PREREQUISITES
To-ZyWALL firewall, zones, addresses, address groups, certificates
(WWW, SSH, FTP, Vantage CNM), authentication methods (WWW)
Page 107 / 944
Chapter 6 Configuration Basics
ZyWALL USG 50 User’s Guide
107
Example:
Suppose you want to allow an administrator to use HTTPS to manage
the ZyWALL from the WAN.
1
Create an administrator account (
Configuration > Object > User/Group
).
2
Create an address object for the administrator’s computer (
Configuration >
Object > Address
).
3
Click
Configuration > System > WWW
to configure the HTTP management
access. Enable HTTPS and add an administrator service control entry.
• Select the address object for the administrator’s computer.
• Select the
WAN
zone.
• Set the action to
Accept
.
6.7.2
Logs and Reports
The ZyWALL provides a system log, offers two e-mail profiles to which to send log
messages, and sends information to four syslog servers. It can also e-mail you
statistical reports on a daily basis.
6.7.3
File Manager
Use these screens to upload, download, delete, or run scripts of CLI commands.
You can manage
Configuration files. Use configuration files to back up and restore the complete
configuration of the ZyWALL. You can store multiple configuration files in the
ZyWALL and switch between them without restarting.
Shell scripts. Use shell scripts to run a series of CLI commands. These are useful
for large, repetitive configuration changes (for example, creating a lot of VPN
tunnels) and for troubleshooting.
You can edit configuration files and shell scripts in any text editor.
MENU ITEM(S)
Configuration > Log & Report
MENU ITEM(S)
Maintenance > File Manager
Page 108 / 944
Chapter 6 Configuration Basics
ZyWALL USG 50 User’s Guide
108
6.7.4
Diagnostics
The ZyWALL can generate a file containing the ZyWALL’s configuration and
diagnostic information. It can also capture packets going through the ZyWALL’s
interfaces so you can analyze them to identify network problems.
6.7.5
Shutdown
Use this to shutdown the device in preparation for disconnecting the power.
Always use
Maintenance > Shutdown > Shutdown
or the
shutdown
command before you turn off the ZyWALL or remove the power. Not
doing so can cause the firmware to become corrupt.
MENU ITEM(S)
Maintenance > Diagnostics
MENU ITEM(S)
Maintenance > Shutdown
Page 109 / 944
ZyWALL USG 50 User’s Guide
109
C
HAPTER
7
Tutorials
Here are examples of using the Web Configurator to set up features in the
ZyWALL.
Note: The tutorials featured here require a basic understanding of connecting to
and using the Web Configurator, see
Chapter 3 on page 43
for details. For field
descriptions of individual screens, see
Technical Reference on page 155
.
7.1
How to Configure Interfaces, Port Roles, and
Zones
This tutorial shows how to configure Ethernet interfaces, port roles, and zones for
the following example configuration (see
Section 6.2.2 on page 89
for the default
configuration).
You want to be able to apply security settings specifically for all VPN tunnels so
you create a new VPN zone.
• The
wan1
interface uses a static IP address of 1.2.3.4.
Page 110 / 944
Chapter 7 Tutorials
ZyWALL USG 50 User’s Guide
110
• Convert
P5
(lan2) into a
dmz
interface. This
dmz
interface is used for a
protected local network. It uses IP address 192.168.4.1 and has a DHCP server.
Add it to the LAN zone so all of the LAN zone’s security policies apply to it.
Figure 55
Ethernet Interface, Port Roles, and Zone Configuration Example
7.1.1
Configure a WAN Ethernet Interface
You need to assign the ZyWALL’s
wan1
interface a static IP address of 1.2.3.4.

Rate

4.5 / 5 based on 2 votes.

Popular Zyxel Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top