Manualshelf

ZyWALL User's Guide

ManualsBrandsZyXEL Communications ManualsNetwork Router100 Series
101102103104105106107108109110
ZyWALL USG 100/200 Series User’s Guide
109
CHAPTER 5
Configuration Basics
This section provides information to help you configure the ZyWALL effectively. Some of it
is helpful when you are just getting started. Some of it is provided for your reference when you
configure various features in the ZyWALL.
Section 5.1 on page 109 introduces the ZyWALL’s object-based configuration.
Section 5.2 on page 110 introduces zones, interfaces, and port roles.
Section 5.3 on page 112 introduces some differences in terminology and organization
between the ZyWALL and other routers, particularly ZyNOS routers.
Section 5.4 on page 113 identifies the features you should configure before and after you
configure the main screens for each feature. For example, if you want to configure a trunk
for load-balancing, you should configure the member interfaces before you configure the
trunk. After you configure the trunk, you should configure a policy route for it as well.
(You might also have to configure criteria for the policy route.)
Section 5.5 on page 121 identifies the objects that store information used by other features.
Section 5.6 on page 122 introduces some of the tools available for system management.
5.1 Object-based Configuration
The ZyWALL stores information or settings as objects. You use these objects to configure
many of the ZyWALL’s features and settings. Once you configure an object, you can reuse it
in configuring other features.
When you use the Objects screens to change the setting or information in an object, the
ZyWALL automatically updates all the settings or rules that use the object. For example, if
you create a schedule object, you can have firewall, application patrol, content filter, and other
settings use it. If you modify the schedule, all the firewall, application patrol, content filter,
and other settings that use the schedule will apply the updated schedule.
You can create address objects based on an interface’s IP address, subnet, or gateway. The
ZyWALL automatically updates every rule or setting that uses these objects whenever the
interface’s IP address settings change. For example, if you change LAN1’s IP address, the
ZyWALL automatically updates the rules or settings that use the interface-based, LAN1
subnet address object.
You can use the Objects screens to create objects before you configure features that use them.
If you are in a screen that uses objects, you can also usually select Create Object to open a
screen where you can configure a new object.
For a list of common objects, see Section 5.5 on page 121.