Page 251 / 944 Scroll up to view Page 246 - 250
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
251
Each field is explained in the following table.
Table 63
Configuration > Network > Interface > VLAN > Edit
LABEL
DESCRIPTION
Show Advance
Settings / Hide
Advance Settings
Click this button to display a greater or lesser number of configuration
fields.
General Settings
Enable
Interface
Select this to turn this interface on. Clear this to disable this interface.
Interface
Properties
Interface
Name
This field is read-only if you are editing an existing VLAN interface.
Enter the number of the VLAN interface. You can use a number from
0~4094. See
Chapter 52 on page 775
the User’s Guide for the total
number of VLANs you can configure on the ZyWALL. For example,
vlan0, vlan8, and so on.
Zone
Select the zone to which the VLAN interface belongs.
Base Port
Select the Ethernet interface on which the VLAN interface runs.
VLAN ID
Enter the VLAN ID. This 12-bit number uniquely identifies each VLAN.
Allowed values are 1 - 4094. (0 and 4095 are reserved.)
Description
Enter a description of this interface. It is not used elsewhere. You can
use alphanumeric and
()+/:=?!*#@$_%-
characters, and it can be
up to 60 characters long.
IP Address
Assignment
Get
Automatically
Select this if this interface is a DHCP client. In this case, the DHCP
server configures the IP address, subnet mask, and gateway
automatically.
You should not select this if the interface is assigned to a VRRP group.
See
Chapter 39 on page 693
.
Use Fixed IP
Address
Select this if you want to specify the IP address, subnet mask, and
gateway manually.
IP Address
This field is enabled if you select
Use Fixed IP Address
.
Enter the IP address for this interface.
Subnet Mask
This field is enabled if you select
Use Fixed IP Address
.
Enter the subnet mask of this interface in dot decimal notation. The
subnet mask indicates what part of the IP address is the same for all
computers in the network.
Gateway
This field is enabled if you select
Use Fixed IP Address
.
Enter the IP address of the gateway. The ZyWALL sends packets to
the gateway when it does not know how to route the packet to its
destination. The gateway should be on the same network as the
interface.
Page 252 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
252
Metric
Enter the priority of the gateway (if any) on this interface. The
ZyWALL decides which gateway to use based on this priority. The
lower the number, the higher the priority. If two or more gateways
have the same priority, the ZyWALL uses the one that was configured
first.
Interface
Parameters
Egress
Bandwidth
Enter the maximum amount of traffic, in kilobits per second, the
ZyWALL can send through the interface to the network. Allowed
values are 0 - 1048576.
Ingress
Bandwidth
This is reserved for future use.
Enter the maximum amount of traffic, in kilobits per second, the
ZyWALL can receive from the network through the interface. Allowed
values are 0 - 1048576.
MTU
Maximum Transmission Unit. Type the maximum size of each data
packet, in bytes, that can move through this interface. If a larger
packet arrives, the ZyWALL divides it into smaller fragments. Allowed
values are 576 - 1500. Usually, this value is 1500.
Connectivity
Check
The ZyWALL can regularly check the connection to the gateway you
specified to make sure it is still available. You specify how often to
check the connection, how long to wait for a response before the
attempt is a failure, and how many consecutive failures are required
before the ZyWALL stops routing to the gateway. The ZyWALL
resumes routing to the gateway the first time the gateway passes the
connectivity check.
Enable
Connectivity
Check
Select this to turn on the connection check.
Check Method
Select the method that the gateway allows.
Select
icmp
to have the ZyWALL regularly ping the gateway you
specify to make sure it is still available.
Select
tcp
to have the ZyWALL regularly perform a TCP handshake
with the gateway you specify to make sure it is still available.
Check Period
Enter the number of seconds between connection check attempts.
Check Timeout
Enter the number of seconds to wait for a response before the
attempt is a failure.
Check Fail
Tolerance
Enter the number of consecutive failures before the ZyWALL stops
routing through the gateway.
Check Default
Gateway
Select this to use the default gateway for the connectivity check.
Check this
address
Select this to specify a domain name or IP address for the
connectivity check. Enter that domain name or IP address in the field
next to it.
Check Port
This field only displays when you set the
Check Method
to
tcp
.
Specify the port number to use for a TCP connectivity check.
DHCP Setting
The DHCP settings are available for the OPT, LAN and DMZ interfaces.
Table 63
Configuration > Network > Interface > VLAN > Edit (continued)
LABEL
DESCRIPTION
Page 253 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
253
DHCP
Select what type of DHCP service the ZyWALL provides to the
network. Choices are:
None
- the ZyWALL does not provide any DHCP services. There is
already a DHCP server on the network.
DHCP Relay
- the ZyWALL routes DHCP requests to one or more
DHCP servers you specify. The DHCP server(s) may be on another
network.
DHCP Server
- the ZyWALL assigns IP addresses and provides
subnet mask, gateway, and DNS server information to the network.
The ZyWALL is the DHCP server for the network.
These fields appear if the ZyWALL is a
DHCP Relay
.
Relay Server 1
Enter the IP address of a DHCP server for the network.
Relay Server 2
This field is optional. Enter the IP address of another DHCP server for
the network.
These fields appear if the ZyWALL is a
DHCP Server
.
IP Pool Start
Address
Enter the IP address from which the ZyWALL begins allocating IP
addresses. If you want to assign a static IP address to a specific
computer, click
Add Static DHCP
.
If this field is blank, the
Pool Size
must also be blank. In this case,
the ZyWALL can assign every IP address allowed by the interface’s IP
address and subnet mask, except for the first address (network
address), last address (broadcast address) and the interface’s IP
address.
Pool Size
Enter the number of IP addresses to allocate. This number must be at
least one and is limited by the interface’s
Subnet Mask
. For example,
if the
Subnet Mask
is 255.255.255.0 and
IP Pool Start Address
is
10.10.10.10, the ZyWALL can allocate 10.10.10.10 to 10.10.10.254,
or 245 IP addresses.
If this field is blank, the
IP Pool Start Address
must also be blank.
In this case, the ZyWALL can assign every IP address allowed by the
interface’s IP address and subnet mask, except for the first address
(network address), last address (broadcast address) and the
interface’s IP address.
First DNS
Server
Second DNS
Server
Third DNS
Server
Specify the IP addresses up to three DNS servers for the DHCP clients
to use. Use one of the following ways to specify these IP addresses.
Custom Defined
- enter a static IP address.
From ISP
- select the DNS server that another interface received
from its DHCP server.
ZyWALL
- the DHCP clients use the IP address of this interface and
the ZyWALL works as a DNS relay.
First WINS
Server, Second
WINS Server
Type the IP address of the WINS (Windows Internet Naming Service)
server that you want to send to the DHCP clients. The WINS server
keeps a mapping table of the computer names on your network and
the IP addresses that they are currently using.
Table 63
Configuration > Network > Interface > VLAN > Edit (continued)
LABEL
DESCRIPTION
Page 254 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
254
Lease time
Specify how long each computer can use the information (especially
the IP address) before it has to request the information again.
Choices are:
infinite
- select this if IP addresses never expire
days, hours, and minutes
- select this to enter how long IP
addresses are valid.
Enable IP/MAC
Binding
Select this option to have the ZyWALL enforce links between specific
IP addresses and specific MAC addresses for this VLAN. This stops
anyone else from manually using a bound IP address on another
device connected to this interface. Use this to make use only the
intended users get to use specific IP addresses.
Enable Logs
for IP/MAC
Binding
Violation
Select this option to have the ZyWALL generate a log if a device
connected to this VLAN attempts to use an IP address that is bound to
another device’s MAC address.
Static DHCP
Table
Configure a list of static IP addresses the ZyWALL assigns to
computers connected to the interface. Otherwise, the ZyWALL assigns
an IP address dynamically using the interface’s
IP Pool Start
Address
and
Pool Size
.
Add
Click this to create a new entry.
Edit
Select an entry and click this to be able to modify it.
Remove
Select an entry and click this to delete it.
#
This field is a sequential value, and it is not associated with a specific
entry.
IP Address
Enter the IP address to assign to a device with this entry’s MAC
address.
MAC Address
Enter the MAC address to which to assign this entry’s IP address.
Description
Enter a description to help identify this static DHCP entry. You can use
alphanumeric and
()+/:=?!*#@$_%-
characters, and it can be up to
60 characters long.
RIP Setting
See
Section 14.2 on page 298
for more information about RIP.
Enable RIP
Select this to enable RIP on this interface.
Direction
This field is effective when RIP is enabled. Select the RIP direction
from the drop-down list box.
BiDir
- This interface sends and receives routing information.
In-Only
- This interface receives routing information.
Out-Only
- This interface sends routing information.
Send Version
This field is effective when RIP is enabled. Select the RIP version(s)
used for sending RIP packets. Choices are
1
,
2
, and
1 and 2
.
Receive
Version
This field is effective when RIP is enabled. Select the RIP version(s)
used for receiving RIP packets. Choices are
1
,
2
, and
1 and 2
.
V2-Broadcast
This field is effective when RIP is enabled. Select this to send RIP-2
packets using subnet broadcasting; otherwise, the ZyWALL uses
multicasting.
Table 63
Configuration > Network > Interface > VLAN > Edit (continued)
LABEL
DESCRIPTION
Page 255 / 944
Chapter 11 Interfaces
ZyWALL USG 50 User’s Guide
255
OSPF Setting
See
Section 14.3 on page 299
for more information about OSPF.
Area
Select the area in which this interface belongs. Select
None
to disable
OSPF in this interface.
Priority
Enter the priority (between 0 and 255) of this interface when the area
is looking for a Designated Router (DR) or Backup Designated Router
(BDR). The highest-priority interface identifies the DR, and the
second-highest-priority interface identifies the BDR. Set the priority
to zero if the interface can not be the DR or BDR.
Link Cost
Enter the cost (between 1 and 65,535) to route packets through this
interface.
Passive
Interface
Select this to stop forwarding OSPF routing information from the
selected interface. As a result, this interface only receives routing
information.
Authentication
Select an authentication method, or disable authentication. To
exchange OSPF routing information with peer border routers, you
must use the same authentication method that they use. Choices are:
Same-as-Area
- use the default authentication method in the area
None
- disable authentication
Text
- authenticate OSPF routing information using a plain-text
password
MD5
- authenticate OSPF routing information using MD5 encryption
Text
Authentication
Key
This field is available if the
Authentication
is
Text
. Type the
password for text authentication. The key can consist of alphanumeric
characters and the underscore, and it can be up to eight characters
long.
MD5
Authentication
ID
This field is available if the
Authentication
is
MD5
. Type the ID for
MD5 authentication. The ID can be between 1 and 255.
MD5
Authentication
Key
This field is available if the
Authentication
is
MD5
. Type the
password for MD5 authentication. The password can consist of
alphanumeric characters and the underscore, and it can be up to 16
characters long.
Related Setting
Configure
WAN TRUNK
Click
WAN TRUNK
to go to a screen where you can set this VLAN to
be part of a WAN trunk for load balancing.
Configure
Policy Route
Click
Policy Route
to go to the screen where you can manually
configure a policy route to associate traffic with this VLAN.
OK
Click
OK
to save your changes back to the ZyWALL.
Cancel
Click
Cancel
to exit this screen without saving.
Table 63
Configuration > Network > Interface > VLAN > Edit (continued)
LABEL
DESCRIPTION

Rate

4.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top