1. Home
    2. /
  2. Manuals
    3. /
  3. Zyxel
    4. /
  4. ZyWALL-USG50
    5. /
  5. 92
Page 456 / 944 Scroll up to view Page 451 - 455
Chapter 28 Application Patrol
ZyWALL USG 50 User’s Guide
456
28.4
The Other Applications Screen
Sometimes, the ZyWALL cannot identify the application. For example, the
application might be a new application, or the packets might arrive out of
sequence. (The ZyWALL does not reorder packets when identifying the
application.)
The
Other
(applications) screen controls the default policy for TCP and UDP traffic
that the ZyWALL cannot identify. You can use source zone, destination zone,
destination port, schedule, user, source, and destination information as criteria to
create a sequence of specific conditions, similar to the sequence of rules used by
firewalls, to specify what the ZyWALL should do more precisely. You can also
control the bandwidth used by these other applications.This screen also allows you
to add, edit, and remove conditions to this default policy.
Priority
This field displays when the inbound or outbound bandwidth
management is not set to 0. Enter a number between 1 and 7 to set the
priority for this application’s traffic that matches this policy. The smaller
the number, the higher the priority.
The ZyWALL gives traffic of an application with higher priority bandwidth
before traffic of an application with lower priority.
The ZyWALL uses a fairness-based (round-robin) scheduler to divide
bandwidth between applications with the same priority.
The number in this field is ignored if the incoming and outgoing limits
are both set to 0. In this case the traffic is automatically treated as being
set to the lowest priority (7) regardless of this field’s configuration.
Maximize
Bandwidth
Usage
This field displays when the inbound or outbound bandwidth
management is not set to 0. Enable maximize bandwidth usage to let
the traffic matching this policy “borrow” any unused bandwidth on the
out-going interface.
After each application gets its configured bandwidth rate, the ZyWALL
uses the fairness- based scheduler to divide any unused bandwidth on
the out-going interface amongst applications that need more bandwidth
and have maximize bandwidth usage enabled.
Log
Select whether to have the ZyWALL generate a log (
log
), log and alert
(
log alert
) or neither (
no
) when the application’s traffic matches this
policy. See
Chapter 46 on page 723
for more on logs.
OK
Click
OK
to save your changes back to the ZyWALL.
Cancel
Click
Cancel
to exit this screen without saving your changes.
Table 132
Application Policy Edit (continued)
LABEL
DESCRIPTION
Page 457 / 944
Chapter 28 Application Patrol
ZyWALL USG 50 User’s Guide
457
Click
AppPatrol > Other
to open the
Other (
applications)
screen.
Figure 279
AppPatrol > Other
The following table describes the labels in this screen. See
Section 28.4.1 on page
459
for more information as well.
Table 133
AppPatrol > Other
LABEL
DESCRIPTION
Add
Click this to create a new entry. Select an entry and click
Add
to create a
new entry after the selected entry.
Edit
Select an entry and click this to be able to modify it.
Remove
Select an entry and click this to delete it.
Activate
To turn on an entry, select it and click
Activate
.
Inactivate
To turn off an entry, select it and click
Inactivate
.
Move
To change an entry’s position in the numbered list, select it and click
Move
to display a field to type a number for where you want to put that
entry and press [ENTER] to move the entry to the number that you
typed.
Status
The activate (light bulb) icon is lit when the entry is active and dimmed
when the entry is inactive.
#
This field is a sequential value, and it is not associated with a specific
condition.
Note: The ZyWALL checks conditions in the order they appear in
the list. While this sequence does not affect the functionality,
you might improve the performance of the ZyWALL by putting
more common conditions at the top of the list.
Port
This field displays the specific port number to which this policy applies.
Schedule
This is the schedule that defines when the policy applies.
any
means the
policy always applies.
User
This is the user name or user group to which the policy applies. If
any
displays, the policy applies to all users.
From
This is the source zone of the traffic to which this policy applies.
To
This is the destination zone of the traffic to which this policy applies.
Source
This is the source address or address group for whom this policy applies.
If
any
displays, the policy is effective for every source.
Page 458 / 944
Chapter 28 Application Patrol
ZyWALL USG 50 User’s Guide
458
Destination
This is the destination address or address group for whom this policy
applies. If
any
displays, the policy is effective for every destination.
Protocol
This is the protocol of the traffic to which this policy applies.
Access
This field displays what the ZyWALL does with packets that match this
policy.
forward
- the ZyWALL routes the packets.
Drop
- the ZyWALL does not route the packets and does not notify the
client of its decision.
Reject
- the ZyWALL does not route the packets and notifies the client
of its decision.
DSCP Marking
This is how the ZyWALL handles the DSCP value of the outgoing packets
that match this policy.
In
- Inbound, the traffic the ZyWALL sends to a connection’s initiator.
Out
- Outbound, the traffic the ZyWALL sends out from a connection’s
initiator.
If this field displays a DSCP value, the ZyWALL applies that DSCP value
to the route’s outgoing packets.
preserve
means the ZyWALL does not modify the DSCP value of the
route’s outgoing packets.
default
means the ZyWALL sets the DSCP value of the route’s outgoing
packets to 0.
The “
af
” choices stand for Assured Forwarding. The number following
the “
af
” identifies one of four classes and one of three drop preferences.
See
Assured Forwarding (AF) PHB for DiffServ on page 293
for more
details.
BWM
These fields show the amount of bandwidth the traffic can use. These
fields only apply when
Access
is set to
forward
.
In
- This is how much inbound bandwidth, in kilobits per second, this
policy allows the matching traffic to use. Inbound refers to the traffic the
ZyWALL sends to
a connection’s initiator. If
no
displays here, this policy
does not apply bandwidth management for the inbound traffic.
Out
- This is how much outgoing bandwidth, in kilobits per second, this
policy allows the matching traffic to use. Outbound refers to the traffic
the ZyWALL sends out from a connection’s initiator. If
no
displays here,
this policy does not apply bandwidth management for the outbound
traffic.
Pri
- This is the priority for the traffic that matches this policy. The
smaller the number, the higher the priority. Traffic with a higher priority
is given bandwidth before traffic with a lower priority. The ZyWALL
ignores this number if the incoming and outgoing limits are both set to
0. In this case the traffic is automatically treated as being set to the
lowest priority (7) regardless of this field’s configuration.
Table 133
AppPatrol > Other (continued)
LABEL
DESCRIPTION
Page 459 / 944
Chapter 28 Application Patrol
ZyWALL USG 50 User’s Guide
459
28.4.1
The Other Applications Add/Edit Screen
The
Other Configuration Add/Edit
screen allows you to create a new condition
or edit an existing one. To access this screen, go to the
Other Protocol
screen
(see
Section 28.4 on page 456
), and click either the
Add
icon or an
Edit
icon.
Figure 280
AppPatrol > Other > Edit
The following table describes the labels in this screen.
Log
Select whether to have the ZyWALL generate a log (
log
), log and alert
(
log alert
) or neither (
no
) when traffic matches this policy. See
Chapter
46 on page 723
for more on logs.
Apply
Click
Apply
to save your changes back to the ZyWALL.
Reset
Click
Reset
to return the screen to its last-saved settings.
Table 133
AppPatrol > Other (continued)
LABEL
DESCRIPTION
Table 134
AppPatrol > Other > Edit
LABEL
DESCRIPTION
Create new
Object
Use to configure any new settings objects that you need to use in this
screen.
Enable
Select this check box to turn on this policy.
Port
Use this field to specify a specific port number to which to apply this
policy. Type zero, if this policy applies for every port number.
Page 460 / 944
Chapter 28 Application Patrol
ZyWALL USG 50 User’s Guide
460
Schedule
Select a schedule that defines when the policy applies or select
Create
Object
to configure a new one (see
Chapter 38 on page 611
for details).
Otherwise, select
any
to make the policy always effective.
User
Select a user name or user group to which to apply the policy. Use
Create new Object
if you need to configure a new user account (see
Section 35.2.1 on page 586
for details). Select
any
to apply the policy
for every user.
From
Select the source zone of the traffic to which this policy applies.
To
Select the destination zone of the traffic to which this policy applies.
Source
Select a source address or address group for whom this policy applies.
Use
Create new Object
if you need to configure a new one. Select
any
if the policy is effective for every source.
Destination
Select a destination address or address group for whom this policy
applies. Use
Create new Object
if you need to configure a new one.
Select
any
if the policy is effective for every destination.
Protocol
Select the protocol for which this condition applies. Choices are:
TCP
and
UDP
. Select
any
to apply the policy to both TCP and UDP traffic.
Access
This field controls what the ZyWALL does with packets that match this
policy. Choices are:
forward
- the ZyWALL routes the packets.
Drop
- the ZyWALL does not route the packets and does not notify the
client of its decision.
Reject
- the ZyWALL does not route the packets and notifies the client
of its decision.
DSCP Marking
Set how the ZyWALL handles the DSCP value of the outgoing packets
that match this policy. Inbound refers to the traffic the ZyWALL sends to
a connection’s initiator. Outbound refers to the traffic the ZyWALL sends
out from a connection’s initiator.
Select one of the pre-defined DSCP values to apply or select
User
Defined
to specify another DSCP value. The “
af
” choices stand for
Assured Forwarding. The number following the “
af
” identifies one of four
classes and one of three drop preferences. See
Assured Forwarding (AF)
PHB for DiffServ on page 293
for more details.
Select
preserve
to have the ZyWALL keep the packets’ original DSCP
value.
Select
default
to have the ZyWALL set the DSCP value of the packets to
0.
Bandwidth
Management
Configure these fields to set the amount of bandwidth the application
can use. These fields only apply when
Access
is set to
forward
.
Table 134
AppPatrol > Other > Edit (continued)
LABEL
DESCRIPTION

Rate

4.5 / 5 based on 2 votes.

Popular Zyxel Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top