1. Home
    2. /
  2. Manuals
    3. /
  3. Zyxel
    4. /
  4. ZyWALL-USG50
    5. /
  5. 44
Page 216 / 944 Scroll up to view Page 211 - 215
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
216
11.1.2
What You Need to Know
Interface Characteristics
Interfaces generally have the following characteristics (although not all
characteristics apply to each type of interface).
An interface is a logical entity through which (layer-3) packets pass.
An interface is bound to a physical port or another interface.
Many interfaces can share the same physical port.
An interface belongs to at most one zone.
Many interfaces can belong to the same zone.
Layer-3 virtualization (IP alias, for example) is a kind of interface.
Types of Interfaces
You can create several types of interfaces in the ZyWALL.
Setting interfaces to the same port role forms a port group. Port groups create a
hardware connection between physical ports at the layer-2 (data link, MAC
address) level.
Ethernet interfaces
are the foundation for defining other interfaces and
network policies. RIP and OSPF are also configured in these interfaces.
VLAN interfaces
receive and send tagged frames. The ZyWALL automatically
adds or removes the tags as needed. Each VLAN can only be associated with
one Ethernet interface.
Bridge interfaces
create a software connection between Ethernet or VLAN
interfaces at the layer-2 (data link, MAC address) level. Unlike port groups,
bridge interfaces can take advantage of some security features in the ZyWALL.
You can also assign an IP address and subnet mask to the bridge.
PPP interfaces
support Point-to-Point Protocols (PPP). ISP accounts are
required for PPPoE/PPTP interfaces.
Cellular interfaces
are for 3G WAN connections via a connected 3G device.
Virtual interfaces
provide additional routing information in the ZyWALL. There
are three types:
virtual Ethernet interfaces
,
virtual VLAN interfaces
, and
virtual bridge interfaces
.
Trunk interfaces
manage load balancing between interfaces.
Port groups and trunks have a lot of characteristics that are specific to each type
of interface. See
Section 11.2 on page 218
and
Chapter 12 on page 271
for
details. The other types of interfaces--Ethernet, PPP, cellular, VLAN, bridge, and
Page 217 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
217
virtual--have a lot of similar characteristics. These characteristics are listed in the
following table and discussed in more detail below.
- *
The format of interface names other than the Ethernet and ppp interface names is strict. Each name
consists of 2-4 letters (interface type), followed by a number (
x
). For most interfaces, x is limited by the
maximum number of the type of interface. For VLAN interfaces, x is defined by the number you enter in
the VLAN name field. For example, Ethernet interface names are wan1, wan2, lan1, lan2, dmz; VLAN
interfaces are vlan0, vlan1, vlan2, ...; and so on.
** - The names of virtual interfaces are derived from the interfaces on which they are created. For example,
virtual interfaces created on Ethernet interface wan1 are called wan1:1, wan1:2, and so on. Virtual
interfaces created on VLAN interface vlan2 are called vlan2:1, vlan2:2, and so on. You cannot specify the
number after the colon(:) in the Web Configurator; it is a sequential number. You can specify the number
after the colon if you use the CLI to set up a virtual interface.
Relationships Between Interfaces
In the ZyWALL, interfaces are usually created on top of other interfaces. Only
Ethernet interfaces are created directly on top of the physical ports or port groups.
The relationships between interfaces are explained in the following table.
Table 51
Ethernet, PPP, Cellular, VLAN, Bridge, and Virtual Interface Characteristics
CHARACTERISTICS
ETHERNET
ETHERNET
PPP
CELLU
LAR
VLAN
BRIDGE
VIRTUAL
Name*
wan1,
wan2
lan1, lan2,
dmz
ppp
x
cellularx
vlan
x
br
x
**
Configurable Zone
No
No
No
No
Yes
Yes
No
IP Address
Assignment
Static IP address
Yes
Yes
Yes
Yes
Yes
Yes
Yes
DHCP client
Yes
No
Yes
Yes
Yes
Yes
No
Routing metric
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Interface Parameters
Bandwidth
restrictions
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Packet size (MTU)
Yes
Yes
Yes
Yes
Yes
Yes
No
DHCP
DHCP server
No
Yes
No
No
Yes
Yes
No
DHCP relay
No
Yes
No
No
Yes
Yes
No
Connectivity Check
Yes
No
Yes
No
Yes
Yes
No
Table 52
Relationships Between Different Types of Interfaces
INTERFACE
REQUIRED PORT /
INTERFACE
port group
physical port
Ethernet interface
physical port
port group
VLAN interface
Ethernet interface
bridge interface
Ethernet interface*
VLAN interface*
Page 218 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
218
* - You cannot set up a PPP interface, virtual Ethernet interface or virtual VLAN interface if the underlying
interface is a member of a bridge. You also cannot add an Ethernet interface or VLAN interface to a
bridge if the member interface has a virtual interface or PPP interface on top of it.
Finding Out More
See
Section 6.2 on page 88
details on the differences between physical ports,
interfaces, and zones in the ZyWALL.
See
Section 6.5.4 on page 96
for related information about the
Interface
screens.
See
Section 11.8 on page 266
for background information on interfaces.
See
Section 7.1 on page 109
for an example of configuring Ethernet interfaces,
port
role, and zones.
See
Section 7.2 on page 113
for an example of configuring a cellular (3G)
interface.
See
Chapter 12 on page 271
to configure load balancing using trunks.
11.2
Port Role
To access this screen, click
Configuration >
Network
>
Interface
>
Port Role
.
Use the
Port Role
screen to set the ZyWALL’s flexible ports as part of the
lan1
,
lan2
or
dmz
interfaces. This creates a hardware connection between the physical
ports at the layer-2 (data link, MAC address) level. This provides wire-speed
throughput but no security.
Note the following if you are configuring from a computer connected to a
lan1
,
lan2
or
dmz
port and change the port's role:
PPP interface
WAN1, WAN2
virtual interface
(virtual Ethernet
interface)
(virtual VLAN interface)
(virtual bridge
interface)
Ethernet interface*
VLAN interface*
bridge interface
trunk
Ethernet interface
Cellular interface
VLAN interface
bridge interface
PPP interface
Table 52
Relationships Between Different Types of Interfaces (continued)
INTERFACE
REQUIRED PORT /
INTERFACE
Page 219 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
219
1
A port's IP address varies as its role changes, make sure your computer's IP
address is in the same subnet as the ZyWALL's
lan1
,
lan2
or
dmz
IP address.
2
Use the appropriate
lan1
,
lan2
or
dmz
IP address to access the ZyWALL.
Figure 151
Configuration > Network > Interface > Port Role
Each section in this screen is described below.
11.3
Ethernet Summary Screen
This screen lists every Ethernet interface and virtual interface created on top of
Ethernet interfaces. To access this screen, click
Configuration > Network
>
Interface > Ethernet
.
Table 53
Configuration > Network > Interface > Port Role
LABEL
DESCRIPTION
LAN1/DMZ
P3~P6
These are physical Ethernet ports.
lan1 (LAN1)
lan2 (LAN2)
dmz (DMZ)
These are Ethernet interfaces and the zone to which each belongs.
Use the radio buttons to select for which interface (network) you want
to use each physical port. For example, select a port’s
LAN1
radio
button to use the port as part of the lan1 interface. The port will use
the ZyWALL’s lan1 IP address and MAC address.
When you assign more than one physical port to a network, you
create a
port group
. Port groups have the following characteristics:
There is a layer-2 Ethernet switch between physical ports in the
port group. This provides wire-speed throughput but no security.
It can increase the bandwidth between the port group and other
interfaces.
The port group uses a single MAC address.
Apply
Click this button to save your changes and apply them to the ZyWALL.
Reset
Click this button to change the port groups to their current
configuration (last-saved values).
Physical Ports
Interfaces
Page 220 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
220
Unlike other types of interfaces, you cannot create new Ethernet interfaces nor
can you delete any of them. If an Ethernet interface does not have any physical
ports assigned to it (see
Section 11.2 on page 218
), the Ethernet interface is
effectively removed from the ZyWALL, but you can still configure it.
Ethernet interfaces are similar to other types of interfaces in many ways. They
have an IP address, subnet mask, and gateway used to make routing decisions.
They restrict the amount of bandwidth and packet size. They can provide DHCP
services, and they can verify the gateway is available.
Use Ethernet interfaces to control which physical ports exchange routing
information with other routers and how much information is exchanged through
each one. The more routing information is exchanged, the more efficient the
routers should be. However, the routers also generate more network traffic, and
some routing protocols require a significant amount of configuration and
management. The ZyWALL supports two routing protocols, RIP and OSPF. See
Chapter 14 on page 297
for background information about these routing
protocols.
Figure 152
Configuration > Network > Interface > Ethernet (USG 20W)

Rate

4.5 / 5 based on 2 votes.

Popular Zyxel Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top