ZyXEL Communications vantage cnm manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438

Ir para a página of

Bom manual de uso

As regras impõem ao revendedor a obrigação de fornecer ao comprador o manual com o produto ZyXEL Communications vantage cnm. A falta de manual ou informações incorretas fornecidas ao consumidor são a base de uma queixa por não conformidade do produto com o contrato. De acordo com a lei, pode anexar o manual em uma outra forma de que em papel, o que é frequentemente utilizado, anexando uma forma gráfica ou manual electrónicoZyXEL Communications vantage cnm vídeos instrutivos para os usuários. A condição é uma forma legível e compreensível.

O que é a instrução?

A palavra vem do latim "Instructio" ou instruir. Portanto, no manual ZyXEL Communications vantage cnm você pode encontrar uma descrição das fases do processo. O objetivo do manual é instruir, facilitar o arranque, a utilização do equipamento ou a execução de determinadas tarefas. O manual é uma coleção de informações sobre o objeto / serviço, um guia.

Infelizmente, pequenos usuários tomam o tempo para ler o manual ZyXEL Communications vantage cnm, e um bom manual não só permite conhecer uma série de funcionalidades adicionais do dispositivo, mas evita a formação da maioria das falhas.

Então, o que deve conter o manual perfeito?

Primeiro, o manual ZyXEL Communications vantage cnm deve conte:
- dados técnicos do dispositivo ZyXEL Communications vantage cnm
- nome do fabricante e ano de fabricação do dispositivo ZyXEL Communications vantage cnm
- instruções de utilização, regulação e manutenção do dispositivo ZyXEL Communications vantage cnm
- sinais de segurança e certificados que comprovam a conformidade com as normas pertinentes

Por que você não ler manuais?

Normalmente, isso é devido à falta de tempo e à certeza quanto à funcionalidade específica do dispositivo adquirido. Infelizmente, a mesma ligação e o arranque ZyXEL Communications vantage cnm não são suficientes. O manual contém uma série de orientações sobre funcionalidades específicas, a segurança, os métodos de manutenção (mesmo sobre produtos que devem ser usados), possíveis defeitos ZyXEL Communications vantage cnm e formas de resolver problemas comuns durante o uso. No final, no manual podemos encontrar as coordenadas do serviço ZyXEL Communications na ausência da eficácia das soluções propostas. Atualmente, muito apreciados são manuais na forma de animações interessantes e vídeos de instrução que de uma forma melhor do que o o folheto falam ao usuário. Este tipo de manual é a chance que o usuário percorrer todo o vídeo instrutivo, sem ignorar especificações e descrições técnicas complicadas ZyXEL Communications vantage cnm, como para a versão papel.

Por que ler manuais?

Primeiro de tudo, contem a resposta sobre a construção, as possibilidades do dispositivo ZyXEL Communications vantage cnm, uso dos acessórios individuais e uma gama de informações para desfrutar plenamente todos os recursos e facilidades.

Após a compra bem sucedida de um equipamento / dispositivo, é bom ter um momento para se familiarizar com cada parte do manual ZyXEL Communications vantage cnm. Atualmente, são cuidadosamente preparados e traduzidos para sejam não só compreensíveis para os usuários, mas para cumprir a sua função básica de informação

Índice do manual

  • Página 1

    www .zyxel.com V ant age CNM Centralized Network Management User ’ s Guide Ve r s i o n 3 . 0 3/2008 Edition 2[...]

  • Página 2

    [...]

  • Página 3

    About This User's Guide Vantage CNM User’s Guide 3 About This User's Guide " The screens in V antage CNM vary by dev ice type and firmware version. The examples in this User ’ s Guide use one of the most comprehensive examples of each screen, not every variation for each device type and firmware version. If you are unable to fi n[...]

  • Página 4

    About This User's Guide Vantage CNM User’s Guide 4 The T echnical W riting T eam, ZyXEL Communications Corp., 6 Innovation Road II, Science-Based Industrial Park, Hsinchu, 300, T aiwan. E-mail: techwriters@zyxel.com.tw[...]

  • Página 5

    Document Conventions Vantage CNM User’s Guide 5 Document Conventions W arnings and Notes These are how warnings and notes are shown in this User ’ s Guide. 1 W arnings tell you about things that could harm you or your device. " Notes tell you other important informati on (for example, other things you may need to configure or helpful tip s[...]

  • Página 6

    Document Conventions Vantage CNM User’s Guide 6 Icons Used in Figures Figures in this User ’ s Guide may use the follo wing generic icons. Device icons are not an exact representations of your devices. Device (example) Computer Notebook computer Server DSLAM T elephone Switch Router[...]

  • Página 7

    Contents Overview Vantage CNM User’s Guide 7 Contents Overview Introducing V a ntage CNM ...... ................ ................ ............. ................ ................ ............. ....... ... 31 Introduction .......................................... ........................................................................ .......... 3[...]

  • Página 8

    Contents Overview Vantage CNM User’s Guide 8 About CNM ............ ................ ................ ............. ................ ............. ................ ............. .. ......... 333 Account Management ............................................... ........................................................... 33 5 User Group ..... ....[...]

  • Página 9

    Vantage CNM User’s Guide 9 About This User's Guide ................................................................ .......................................... 3 Document Conventions.................................................................. ......................................... .5 Contents Overview ................................[...]

  • Página 10

    Vantage CNM User’s Guide 10 5.3 WAN General (ZyNOS ZyW ALL) .. ................ ................ ............. ................ ................ .......... 67 5.3.1 WAN1 (ZyNOS ZyW ALL with one WAN port) ............ ................ ................ ................ 69 5.3.2 WAN1 and W AN2 (ZyNOS Zy W ALL with two W AN ports) .. ................[...]

  • Página 11

    Vantage CNM User’s Guide 11 6.8 General Setup ....................... ................ ............. ................. ................ ............. ........... ...... 157 6.9 IDP Signatures .......................... ................ ............. ................ ............. ................ ........ ...... 158 6.9.1 Attack T ypes . ........[...]

  • Página 12

    Vantage CNM User’s Guide 12 7.14 Remote MGMT ........... ............. ................ ................ ............. ................ ............. ............ ...21 1 Chapter 8 Device Log ....................................................... .............................................................. ........ 217 8.1 Device Log .........[...]

  • Página 13

    Vantage CNM User’s Guide 13 1 1.1.2 Service .......... ............. ................ ............. ................. ............ ................. ............ .. ... 251 1 1.2 License S tatus ... ................ ................ ............. ................ ................ ............. .............. ....... 2 52 1 1.2.1 Activate/ Upgrade[...]

  • Página 14

    Vantage CNM User’s Guide 14 17.1 Device Alarm Introduction ............. .......... ...... ............. ................ ............. ................ ........ 2 83 17.1.1 Alarm Severity ...................... ................ ................ ............. ................ ................ ..... 2 83 17.1.2 Unresolved Alarms ..................[...]

  • Página 15

    Vantage CNM User’s Guide 15 21.4.1 Notifications Settings ...... ............ ............. ................. ............ ................. ............ ..... 314 21.5 Log Setting ................. ............. ................ ................ ............. ................ ............. ...... ........ 315 21.6 VRPT Management .......... ....[...]

  • Página 16

    Vantage CNM User’s Guide 16 Chapter 28 Account............................................................ ............................................................ .......... 341 28.1 “Root” Administrator ................... ......... ....... ............. ................ ............. ............. ........... ... 341 28.2 “Super” A[...]

  • Página 17

    Vantage CNM User’s Guide 17 Figure 1 V antage CNM Application ............... ................ ................ ................ ................ ............... ........... 31 Figure 2 Main Screen .. ................ ............. ................ ............. ................. ................ ............. ...... ............. 35 Figure 3 Dev[...]

  • Página 18

    Vantage CNM User’s Guide 18 Figure 39 Device Operation > Device Configur atio n > N e t w o r k > WA N > WA N 1 / 2 - P P T P ( Z y N O S Z y WA LL with two W A N ports) ................. ............. ................ ............. ................ ................ .......... 83 Figure 40 Device Configuration > Network > W A N [...]

  • Página 19

    Vantage CNM User’s Guide 19 Figure 74 Device Operation > Device Configuration > S ecurity > IDP > Signature ............ ................. 161 Figure 75 Device Operation > Device Configuration > S ecurity > IDP > Signature (Query View) ........ 163 Figure 76 Device Operation > Device Configuration > S ecurity > ID[...]

  • Página 20

    Vantage CNM User’s Guide 20 Figure 1 1 1 Device Operation > Configuration Man agement >Con figuration M anagemen t > Configur ation File Management > Backup (Folder) ........ ................ ................ ................. ............ ..... 228 Figure 1 12 Device Operation > Configuration Management > Con f iguration File M[...]

  • Página 21

    Vantage CNM User’s Guide 21 Figure 143 VPN Management > Installation Report . ....... ................ ............. ............. ................ ........... 26 3 Figure 144 VPN Management > Installation Report > Show Detail ........ ............ ................. ............ ..... 264 Figure 145 VPN Management > VPN Monitor > B[...]

  • Página 22

    Vantage CNM User’s Guide 22 Figure 180 CNM System Setting > Configurat ion > VRPT Management > Add/Edit .......... ................ . 317 Figure 181 CNM System Setting > Configurat ion > Certificate Management ................. ................ ..... 319 Figure 182 CNM System Setting > Configurat ion > Certificate Management [...]

  • Página 23

    Vantage CNM User’s Guide 23 Figure 223 Internet Options: Privacy ............... ............. ................ ............. ................ ............. .... .......... 374 Figure 224 Internet Options: Privacy ............... ............. ................ ............. ................ ............. .... .......... 375 Figure 225 Pop-up Bloc[...]

  • Página 24

    Vantage CNM User’s Guide 24[...]

  • Página 25

    Vantage CNM User’s Guide 25 T able 1 Menu Bar Icon Description ................. ............. ................ ............. ............. ................ .... ............ 36 T a ble 2 T itle Bar Icon Description ................ ................ ................ ................ ............. .............. ............ ... 37 T a ble 3 Devic[...]

  • Página 26

    Vantage CNM User’s Guide 26 T a ble 37 Wireless Card: 802.1x + S tatic WEP ...... ................ ................. ................ ................ ........... .... 1 10 T a ble 38 Wireless Card: 802.1x + No W EP .......... ................ ................. ................ ................ ........... ....1 10 T able 39 Wireless Card: No Acc[...]

  • Página 27

    Vantage CNM User’s Guide 27 T able 74 Device Operation > Device Configuration > Security > Content Filter > Policy > Schedule . 185 T able 75 Device Operation > Device Configuration > S ecurity > Content Filter > Object ................... 187 T able 76 Device Operation > Device Configuration > S ecurity > Cont[...]

  • Página 28

    Vantage CNM User’s Guide 28 T able 108 Device Operation > Configuration Management > Signature Profile Management > Backup & Restore > Restore (Folder) ...................... ................ ................ ................. ................ . 236 T able 109 Device Operation > Configuration Management > Signature Profile M[...]

  • Página 29

    Vantage CNM User’s Guide 29 T able 145 Log & Report > Operation Report > Config uration File Backup & Restore Rep ort > Backup Report ......... ............. ................ ............. ................ ............. ................ ............. .......... .2 9 7 T able 146 Log & Report > Operation Repo rt > Signat[...]

  • Página 30

    Vantage CNM User’s Guide 30 T a ble 186 16-bit Network Number Subnet Planning ....................... ................... ................. ................ . 38 5 T a ble 187 Commonly Used Services . ............. ................ ................ ................ ................ ............... ...... 3 91[...]

  • Página 31

    Vantage CNM User’s Guide 31 C HAPTER 1 Introducing Vantage CNM This chapter introduces the main applications and features of V antage CNM. It also introduces the ways you can manage V antage CNM. 1.1 Overview V antage C entralized N etwork Managemen t (“V a ntage CNM”) helps network administrators monitor and manage a distributed network of Z[...]

  • Página 32

    Chapter 1 Introd ucing Vantage CNM Vantage CNM User’s Guide 32 1.2 W ays to Manage V ant age CNM Use the web configurator to access and manage V antage CNM. See the Quick Start Guide for instructions to access the web co nfigurator and this User ’ s Gu ide for more in formation about the screens. 1.3 Suggestions for Using V ant age CNM Do the f[...]

  • Página 33

    33 P ART I Introduction Introducing V antage CNM (31) GUI Introduction (35)[...]

  • Página 34

    34[...]

  • Página 35

    Vantage CNM User’s Guide 35 C HAPTER 2 GUI Introduction See the Quick Start Guide for in structions about inst alling, setting up, and accessing V antage CNM. This chapter introduces the V antage CNM main screen. Figure 2 Main Screen The main screen consists of three main parts a nd are numbered in the sequence you typically follow to configure a[...]

  • Página 36

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 36 " For security reasons, V antage CNM automati cally times out after fif teen minutes of inactivity . Log in again if this happens . Each part is discussed in more detail in the following sections. 2.1 Menu Bar The following table describes th e icons in the menu bar . " When you cli[...]

  • Página 37

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 37 2.2 Title Bar The following table describes th e icons in the title bar . 2.3 Device Window Use the device window to view the logical netw ork topology , search for a device, view general device status or select wh ich device(s) you want to edit configuration settings. 2.3.1 T opology Y ou c[...]

  • Página 38

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 38 The following table describes the labels in the Device window . There are a couple icons in the device window that perform additiona l functions related to views. 2.3.1.1 Folders Folders are represented by the following icons in the device window . T able 3 Device Window: Topology LABEL DESCR[...]

  • Página 39

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 39 Y ou can right-c lick on a folder to see the follo wing menu items. Some folders do not have every menu item. Click Settings to configure the Adobe fl ash player settings. Click About Adobe Flash Player 9 to connect t o Adobe’ s we bsite for more information. Figure 4 Folder Right-Click Op[...]

  • Página 40

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 40 4 A new folder icon displays. 2.3.1.1.2 Delete a Folder Deleting a folder also delete s all the associa ted device(s). Follow the steps below to delete a group. 1 In the device window , click To p o l o g y . 2 Right-click on a folder and click Delete Folder . 3 A warning screen displays. Cli[...]

  • Página 41

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 41 Y ou c an right-click on a device to see the follo wing menu. Some menu items are not available for every device. Click Settings to configure Adobe flash player settings. Click About Adobe Flash Player 9 to connect to Adobe’ s we bsite for more information. Figure 9 Device Right-Click Opti[...]

  • Página 42

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 42 Figure 1 1 Device Window: T opology: Add/Edit Device (ZyNOS) Figure 12 Device Window: T opology: Add/Edit Device ( ZLD) The following table describes the labels in this screen. T able 7 Configuration Screen: Device List LABEL DESCRIPTION LAN MAC (Hex) Enter the LAN MAC address of th e device [...]

  • Página 43

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 43 Firmware Ve r s i o n This field is only available for a ZyNOS dev ice. Select th e firmware version the device is currentl y using. The pull-down menu li st s onl y supported firmware versions. Select Unknown if you don’t know the device’s firmware version or you cannot find your device[...]

  • Página 44

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 44 4 After clicking Apply and a new device icon displays. 2.3.1.2.2 Delete a Device Follow the steps below to delete a group. 1 In the device window , click To p o l o g y . 2 Right-click on a device and click Delete Device . 3 A warning screen displays. Click OK to delete. Click Cancel to clos [...]

  • Página 45

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 45 Figure 15 Device Window: T opology: Delete Device W arning 3 The device’ s web configurator appears vi a a HTTP or HTTPS connection. Y ou can change the device lo gin setting by editing a device. Refer to Figure 1 1 on page 42 . 2.3.2 Device Search Use the Search function in th e device wi[...]

  • Página 46

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 46 Following are the other menus. T able 8 Nav igation Pane l: Menu Summa ry - Device Op eration DEVICE OPERATION ZYNOS-BASED DEVICE ZLD-BASED DEVICE PRESTIGE Device Configuration Load or Save BB General System T im Setting Network LAN WAN DMZ WLAN Wireless Card Port Roles Secur ity Firewall VPN[...]

  • Página 47

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 47 The following table describes the links in the navigation panel. CNM SYSTEM SETTING ACCOUNT MANAGEMENT Serve rs User Access Notification Log Setting VRPT Management Certificate Man agement Maintenance Device Owner Upgrade License About Group Account T able 10 Navigation Panel Links LINK DESC[...]

  • Página 48

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 48 This section provides some not es about the navigation pa nel. • The configurat ion information ap pears when yo u click a menu item from neviga tion panel for a selected device, folder or for V antage CNM management. • Menus display ma y vary depending on which device mode l you are conf[...]

  • Página 49

    Chapter 2 GUI Introdu ction Vantage CNM User’s Guide 49 1 Click CNM System Setting in the menu bar . 2 Click Configuration > Certificate Management in the navigation panel. 3 Click Cr eate CSR . The following screen appears. Figure 17 CNM System Setting > Configuration > Certificate Management > Create CSR 4 T ype the IP address of th[...]

  • Página 50

    Chapter 2 GUI Introduction Vantage CNM User’s Guide 50 Figure 19 CNM System Setting > Configuration > Certificate Mana gement > Import Certificate 8 Enter the signed certificate file path and click Apply . 9 Restart the V antage CN M server . 10 Use the IP address and log into the V antage CNM server . 11 In Internet Explorer 7.0, click [...]

  • Página 51

    51 P ART II Device Operation " This menu only appear if y ou select a device. For ZLD-based device, this menu appear when the dev ice status is on. " The menus and screens may vary depending on the device model you select. See T able 8 on page 46 for the device model and t he corresponding firmware version CNM supports. Load or Save Build[...]

  • Página 52

    52[...]

  • Página 53

    Vantage CNM User’s Guide 53 C HAPTER 3 Load or Save Building Blocks (BB) " These menus only appear if you select a ZyNOS-based or a prestige device. 3.1 Load or Save BB Use this menu item to load building blocks to the selected device or to create building blocks from the current configuration of the selected de vice. This menu item appears [...]

  • Página 54

    Chapter 3 Loa d or Save Building Blocks (BB) Vantage CNM User’s Guide 54 Click the Load a BB icon to load a building block to th e selected device. The following pop- up screen appears. Figure 22 Device Operation > Device Configur ation > Load or Save BB > Load a BB Select the building block you wa nt to load to the selected device, and [...]

  • Página 55

    Vantage CNM User’s Guide 55 C HAPTER 4 Device General Settings This section configures device general settings. 4.1 System Use this screen to set the password, system name, domain name, idle timeout, and DNS servers for the device. Please see the device’ s Us er ’ s Guide for more in formation about any of these screens or fields. T o open th[...]

  • Página 56

    Chapter 4 Device Ge neral Settings Vantage CNM User’s Guide 56 4.2 Time Setting Use this screen to configure the time settings on the device. T o open this screen, click Device Operation > Device Configuration > General > T ime Setting . Figure 25 Device Operation > Device Confi guration > General > T ime Setting The following t[...]

  • Página 57

    Chapter 4 Device Gener a l Settings Vantage CNM User’s Guide 57 S tart Date Configure the day and time when Daylight Saving Time start s if you selected Daylight Savings . The o'cl ock fiel d uses the 24 hour format. Here are a couple of examples: Daylight Saving T ime starts in most parts o f the United S tates on the first Sunday of April.[...]

  • Página 58

    Chapter 4 Device Ge neral Settings Vantage CNM User’s Guide 58[...]

  • Página 59

    Vantage CNM User’s Guide 59 C HAPTER 5 Device Network Settings The screens explained network settings such as LAN, W AN, wireless card. The menus and screens may vary for dif ferent ZyXEL products. For example, click Device Configuration > Network Interface for ZLD-based device’ s network settings. This document uses the ZyNOS ZyW ALL settin[...]

  • Página 60

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 60 Figure 27 Device Operation > Device Configuration > Network > LAN > LAN (ZyNOS ZyW ALL)[...]

  • Página 61

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 61 The following table describes the fields in this screen. T able 13 Device Operation > Devi ce C onfiguration > LAN > LAN (ZyNOS ZyWALL) LABEL DESCRIPTION DHCP Mode DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) allows individual clients (workstations) to obt[...]

  • Página 62

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 62 Multicast Select IGMP V-1 or IGMP V -2 or None . IGMP (Internet Group Multicast Protocol) is a network-layer protocol used to establ ish membership in a Multicast group - it is not used to carry user data. IGMP version 2 (RFC 2236) i s an improvement over version 1 (RFC 1 1 12) but IGM[...]

  • Página 63

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 63 5.2 LAN (Prestige) " This section refers only to the LAN screen, but the information is applicable for the LAN, WLAN , and DMZ screens. Use this screen to configure th e DHCP settings, TCP/ IP settings , and Any IP settings for the LAN port on a device. T o open this screen, click[...]

  • Página 64

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 64 The following table describes the fields in this screen. T able 14 Device Operation > Device C onfiguration > Network > LAN > LAN (Prestige) LABEL DESCRIPTION DHCP Mode DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) allows individual clients (computers) t[...]

  • Página 65

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 65 5.2.1 St atic DHCP " This section refers only to the LAN screen, but the information is applicable for the LAN, WLAN , and DMZ screens. Use this screen to assign IP addresses to specif ic individual computer s on the LAN based on their MAC addresses. T o open this screen, click De[...]

  • Página 66

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 66 5.2.2 IP Alias " This section refers only to the LAN screen, but the information is applicable for the LAN, WLAN , and DMZ screens. Use this screen to configure logical interfaces (subnets) via its single physical Ethernet interface with the device itsel f being the gateway for ea[...]

  • Página 67

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 67 5.3 W AN General (ZyNOS ZyW ALL) This section gives configuration information on the fiel ds displa yed in this screen. T o open this screen, click Device Operation in the menu bar , and click Device Configuration > Network > W AN > General in the navigation panel. " Be c[...]

  • Página 68

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 68 Figure 31 Device Operation > Device Configurat ion > Network > WAN > General (ZyNOS ZyW ALL) The following table describes the fields in this screen. T able 17 Device Operation > Device C onfiguration > Network > WAN > General (ZyNOS ZyW ALL) LABEL DESCRIPTION W[...]

  • Página 69

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 69 5.3.1 W AN1 (ZyNOS ZyW ALL with one W AN port) The screen differs by the encapsulation type chosen. Fail T olerance T ype the number of times the device may attempt and fail to connect to the Internet before traffic is forwarded to the backup gateway . Period (sec) T ype the number of [...]

  • Página 70

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 70 Figure 32 Device Operation > Device Configurat ion > Network > WAN > W AN1 (ZyNOS ZyW ALL with one W A N port) 5.3.1.1 Ethernet Encap sulation The following table describes the labels in the Ethernet encapsulation scree n. T able 18 Device Operation > Device Configuratio[...]

  • Página 71

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 71 5.3.1.2 PPPoE Encap sulation The device supports PPPoE (Point-to-Point Pr otoc ol over Ethernet). PPPoE is an IETF Draft standard (RFC 2516) specifying how a personal computer (PC) interacts with a broadband modem (DSL, cable, wireless, etc.) connection. The PP PoE option is for a dial[...]

  • Página 72

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 72 By implementing PPPoE directly on the device (rather than individual computers), the computers on the LAN do not need PPPoE software installed, since the device does that part of the task. Furthermore, with NA T , all of the LANs’ computers will have access. Select PPP Over Ethernet [...]

  • Página 73

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 73 The following table describes the labels in the PPPoE screen. T able 19 Device Operation > Device C onfiguration > Network > WAN > IS P (PPPoE) – ZyNOS ZyWALL (one W AN port) LABEL DESCRIPTION W AN:ISP Encapsulation The PPPoE choice is for a dial-up connection using PPPoE[...]

  • Página 74

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 74 5.3.1.3 PPTP Encap sulation Point-to-Point T unneling Protocol (PP TP) is a ne twork protocol that enables secure transfer of data from a remote client to a private server , creating a V irtual Private Network (VPN) using TCP/IP-based networks. PP TP supports on-demand, multi-protoco l[...]

  • Página 75

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 75 Figure 36 Device Operation > Device Configuration > Network > WAN > W AN1 - PPTP (ZyNOS ZyW ALL with one W AN port) The following table describes the labels in the PP TP screen. Ta b l e 2 0 Device Operation > Device Configuratio n > Network > W AN > ISP (PPTP) [...]

  • Página 76

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 76 PPTP User Name T ype the user name given to you by your ISP . Password T ype the password associ ated with the User Name above. Retype t o confirm Password T ype your password again to make sure that you have entered it correctly . Nailed-up Connection Select Nailed-Up Connection if yo[...]

  • Página 77

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 77 5.3.2 W AN1 and W AN2 (ZyNOS ZyW ALL with tw o W AN ports) Since ZyW ALL 4 .00, the W AN screens are organi zed differently than the previous versions because it has two W AN ports. Use the WA N 1 and WA N 2 tabs to configure the W AN1 and W AN2 ports. These tabs are similar an d vary [...]

  • Página 78

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 78 Figure 37 Device Operation > Device Configurat ion > Network > WAN > W AN1/2 (ZyNOS ZyW ALL with two W AN ports) The following table describes the labels in this screen. T able 21 Device Operation > Device C onfiguration > Network > WAN > W AN1/2 (ZyNOS ZyW ALL [...]

  • Página 79

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 79 T elia Login Server (T elia Login only) T ype the domain name of the T elia login server , for example logi n1.telia.com. Relogin Every(mins) (T elia Login only) The T elia server logs the V antage CNM out if the V antage CNM does not log in periodically . T ype the number of minutes f[...]

  • Página 80

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 80 5.3.2.2 PPPoE Encap sulation PPPoE (Point-to-Point Protocol over Ethernet) is an IETF standard (RFC 2516) specifying how a personal computer (PC) interacts with a broadband modem (DSL, cable, wireless, etc.) connection. The PPPoE option is for a dial-up connection using PPPoE. For the [...]

  • Página 81

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 81 The following table describes the labels in this screen. T able 22 Device Operation > Device C onfiguration > Network > WAN > WAN1/2 - PPPoE (ZyNOS ZyWALL with two WAN ports) LABEL DESCRIPTION ISP Parameters for Internet Access Encapsulation T he PPPoE choice is for a dial-[...]

  • Página 82

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 82 5.3.2.3 PPTP Encap sulation Point-to-Point T unneling Protocol (PP TP) is a ne twork protocol that enables secure transfer of data from a remote client to a private server , creating a V irtual Private Network (VPN) using TCP/IP-based networks. PP TP supports on-demand, multi-protoco l[...]

  • Página 83

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 83 Figure 39 Device Operation > Device Configurat ion > Network > WAN > W AN1/2 - PPTP (ZyNOS ZyW ALL with two W AN ports ) The following table describes the labels in this screen. T able 23 Device Operation > Device C onfiguration > Network > WAN > W AN1/2 - PPTP [...]

  • Página 84

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 84 PPTP User Name T ype the user name given to you by your ISP . Password T ype the password associ ated with the user name ab ove. Retype t o confirm Password T ype your password again to make sure that you have entered is correctly . Nailed-up Connection Select this if you do not want t[...]

  • Página 85

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 85 5.3.3 W AN2 (ZyNOS ZyW ALL with 3G W AN) 3G (Third Generation) is a digital, packet-s witched wireless technology . Bandwidth usage is optimized as multiple users shar e the same channel and bandwidt h is only allocated to users when they send data. It allows fast transf er of voice an[...]

  • Página 86

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 86 If the signal strength of a 3G network is too lo w , the 3G card ma y switch to an available 2.5G or 2.75G network. See the following table for a comparison between 2G , 2.5G , 2.7 5G , 3G and 3.5G wireless technologies. After you insert a 3G card in a device, the 3G connection b e com[...]

  • Página 87

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 87 Figure 40 Device Configuration > Netwo r k > W AN > 3G(WAN 2)[...]

  • Página 88

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 88 The following table describes the labels in this screen. T able 25 Device Configuration > W AN > 3G(W AN2) LABEL DESCRIPTION W AN2 Se tup Enable Select this option to enab le W AN 2. 3G Card Configuration The fields below display only when you enable WAN 2. 3G Wireless Card This [...]

  • Página 89

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 89 PIN Code A PIN (Personal Identific ation Number) code is a key to a 3G card. Without the PIN code, you cannot use the 3G card. Enter the PIN code (four to eight digits, 0000 for example) provided by your ISP . If you enter the PIN code incorrectly , the 3G card may be blocked by your I[...]

  • Página 90

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 90 5.3.4 Dial Backup (ZyNOS ZyW ALL) V antage CNM ca n communicate with the d evice using Dial Backup if the main W AN connection goes down. Use this screen to configure Dial Backup on the device. Data Budget Select this check box and sp ecify ho w much downstream a nd/or upstream data (i[...]

  • Página 91

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 91 Figure 41 Device Operation > Device Configur ation > Network > WAN > Dial Backup (ZyNOS ZyWALL) The following table describes the labels in this screen. T able 26 Dev ice Operat ion > Dev ice Configuration > Network > W AN > Dial Bac kup (ZyNOS ZyW ALL) LABEL DE[...]

  • Página 92

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 92 5.3.5 Advanced Modem Setup (ZyNOS ZyW AL L) 5.3.5.1 A T Command S trings For regular telephone lines, the default Dial st ring tells the modem that the line uses tone dialing. ATDT is the command for a switc h that requ ires tone dialing. If your switch requires pulse dialing, change t[...]

  • Página 93

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 93 5.3.5.1.2 Response S trings The response strings tell the device the tags, or la bels, immediately preceding the various call parameters sent from the W AN device . The response strings have not been standardized; please consult the documentation of your W AN device to find the correct[...]

  • Página 94

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 94 5.3.6 Edit Dial Backup (ZyNOS ZyW ALL) Click Edit in the TCP/IP Options field in the screen shown in Figure 41 on page 91 to display the next screen.4 Drop DTR When Hang Up Select this check box to have the device drop the DTR (Data T erminal Ready) signal after the "A T Command S[...]

  • Página 95

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 95 Figure 43 Device Operation > Device Configuratio n > Network > WAN > Dial Backup > Edit (ZyNOS ZyWALL) The following table describes the fields in this screen. T able 28 Device Operation > Device Configuration > Netw ork > W A N > Dial Bac kup > Edit – Z[...]

  • Página 96

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 96 5.3.7 W AN Setup (Prestige) The fields in this screen vary depending on de vice mode and the encapsulation you select. T o open this screen, select a device, click Device Operation in the menu bar and then click Device Configuration > Network > W AN > Setup in the navigation p[...]

  • Página 97

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 97 Figure 44 Device Operation > Device Configurat ion > Network > WAN > Setup (Prestige) The following table describes the fields in this screen. T able 29 Device Operation > Device C onfiguration > Network > WAN > Setup (Prestige) LABEL DESCRIPTION Name Enter the [...]

  • Página 98

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 98 A TM QoS T ype Select CBR (Constant Bit Rate) to specify fixed (always-o n) bandwidth for voice or data traffic. Select UBR (U nspecified Bit Rate) for applications that are non-time sensitive, such as e-mail. Select VBR (V ariable Bi t Rate) for bursty traffic and bandwidth sharing wi[...]

  • Página 99

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 99 5.3.8 W AN Backup (Prestige) Use this screen to change your device’ s W AN ba ckup settings. T o open this screen, select a device, click Device Operation in the menu bar and then click Device Configuration > Network > W AN > Backup in the navigation panel. Max Idle T ime ou[...]

  • Página 100

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 100 Figure 45 Device Operation > Device Configuratio n > Netw ork > WAN > Backup (Prestige) The following table describes the fields in this screen. T able 30 Device Operation > Device C onfiguration > Network > WAN > Backup (Prestige) LABEL DESCRIPTION Backup T yp[...]

  • Página 101

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 101 Recovery In terval When the device is using a low er priority connection (usu ally a WAN backup connection), it periodically checks to whether or not it can use a higher priority connection. T ype the number of seconds (30 recommended) for the device to wait between checks. Allow mo r[...]

  • Página 102

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 102 5.3.9 Advanced W A N Backup (Prestige) Use this screen to edit your device’ s advanced W AN backup settings. T o open this screen, select a device, click Advanced in the Device Operation > Device Configuration > Network > W AN > Backup screen. Figure 46 Device Operation [...]

  • Página 103

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 103 Primary/ Secondary Phone Numb er T ype the first (primary) phone number from the ISP for this remote node . If the primary phone number is busy or does not answer , your device dials the secondary phone n umber if available. Some areas requ ire dialing the pound sign # before the phon[...]

  • Página 104

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 104 5.3.10 Advanced Modem Setup (Prestige) Click Edit in the Advanced Modem Setup field. Se e Section 5.3.5 on pa ge 92 for the configuration of this scre en. 5.4 Wireless Card This section shows you how to configure the Wireless Card screens. These screens may vary depending on which mod[...]

  • Página 105

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 105 Figure 47 Device Operation > Device Configuratio n > Netw ork > Wirele ss Card > Wireless Card The following table describes the fields in this screen. T able 32 Device Operation > Device Configuration > Network > Wireless Card > W ireless Card LABEL DESCRIPTIO[...]

  • Página 106

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 106 5.4.2 Advanced Wireless Security Settings Use these screens to configure wireless secur ity settings. T o see th ese settings, select any option from the Security field in the Device Operation > Device Configuration > Network > Wir eless Card > Wireless Card screen. Fragme[...]

  • Página 107

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 107 Figure 48 Device Operation > Device Configuratio n > Netw ork > Wirele ss Card > Wireless Card (Advance d Wireless Security Set tings)[...]

  • Página 108

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 108 The following table describes th e fields in these settings. T able 33 Wireless Card: Static W EP LABEL DESCRIPTION Security Select Stati c W EP from the drop-down list. WEP Encryption WEP (Wired Equivalent Privacy) provides data encryption to p revent unauthorized wireless stations f[...]

  • Página 109

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 109 T able 35 Wireless Card: WPA LABEL DESCRIPTION Security Select WP A from the drop-down list. ReAuthenticati on T imer (Seconds) S pecify how often wireless stations have to resend user names and passwords in order to stay connected. Enter a time interval between 10 and 65535 seconds. [...]

  • Página 110

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 11 0 T able 37 Wireless Ca rd: 802.1x + Static WEP LABEL DESCRIPTION Security Select 802.1x + St atic WEP from the drop-down list. WEP Encryption WEP (Wired Equiva lent Privacy) provides data enc ryption to prevent un authorized wireless stations from accessing data tr ansmitte d over the[...]

  • Página 111

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 111 5.4.3 MAC Filter Every Ethernet device has a unique MAC (Med ia Access Control) addre ss. The MAC address is assigned at the factory and consists of six pairs of hexadec imal characters, for example, 00:A0:C5:00:00:02 . Y ou need to know the MA C addresses of the devices to configure [...]

  • Página 112

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 11 2 " Be careful not to list your computer ’s MAC address and set the Action field to Deny Association when managing the device via a wireless connection. This would lock you out. Figure 49 Device Operation > Device Configuration > Network > Wireless Card > MAC Filter [...]

  • Página 113

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 11 3[...]

  • Página 114

    Chapter 5 Device Network Settings Vantage CNM User’s Guide 11 4[...]

  • Página 115

    Vantage CNM User’s Guide 11 5 C HAPTER 6 Device Security Settings The screens explained device security se ttings such as firewall, VPN, anti-virus, anti-spam, IDP , signature update, content filter and X-auth. The menus and screens may vary for dif ferent ZyXEL products. For example, click Device Operation in the menu bar and then click Device C[...]

  • Página 116

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 11 6 Figure 51 Device Operation > Device Configuratio n > Security > Firewall > Default Rule The following table describes the labels in this screen. T able 42 Device Operation > Device C onfiguration > Security > Firewall > Default Rule LABEL DESCRIPTION Default [...]

  • Página 117

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 11 7 6.1.2 Rule Summary Use the Insert button to add a new rule be fore an existing rule. Use Move to put an existing rule in a different place. Select a device, click Device Operation in the menu bar and then click Device Configuration > Security > Firewall > Rule Summary in th[...]

  • Página 118

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 11 8 Figure 52 Device Operation > Device Configuratio n > Security > Firewall > Rule Summary The following table describes the labels in this screen. T able 43 Device Operation > Device C onfiguration > Security > Firewall > Rule Summary LABEL DESCRIPTION Directio[...]

  • Página 119

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 11 9 6.1.3 Add/Edit a Rule Each device has a different number of rules and custom ports; see the device User Guide for more details. In Figure 52 on page 1 18 , click Edit to modify an existing firewall rule or click Insert to create a new firewall rule. Rule Summary The following fields[...]

  • Página 120

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 120 Figure 53 Devi ce Operation > Device Configuration > S ecurity > Firewall > Rule Summary > Edit[...]

  • Página 121

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 121 The following table describes the labels in this screen. T able 44 Device Operation > Device C onfiguration > Security > Firewall > Rule Summary > Add/Edit LABEL DESCRIPTION Rule Name Enter a descriptive name of up to 31 printable ASCII characters (except Extended ASCI[...]

  • Página 122

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 122 6.1.4 Anti-Probing Click Device Operation in the menu bar and then click Device Configuration > Security > Firewall > Anti-Pr obing in the navigation panel to open the following screen. Configure this screen to help keep the device hidden from pr obing attempts. Y ou can spe[...]

  • Página 123

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 123 The following table describes the labels in this screen. 6.1.5 Threshold Click Device Operation in the menu bar and then click Device Configuration > Security > Fi re wa l l > T hre s h ol d in the navigation panel to bring up the next screen. The global values specified for[...]

  • Página 124

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 124 The following table describes the labels in this screen. T able 46 Device Operation > Device C onfiguration > Security > Firewall > Threshold LABEL DESCRIPTION Disable DoS Attack Protec tion on Select the interface(s) (or VPN tunnels) for which you want the device to not [...]

  • Página 125

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 125 6.1.6 Service Click Device Operation in the menu bar and then click Device Configuration > Security > Firewall > Service in th e navigation panel to open the screen as shown next. Use this screen to configure custom services for use in firewall rules or view the services tha[...]

  • Página 126

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 126 Figure 57 Device Operation > Device Configuratio n > Security > Firewall > Service > Add/ Edit The following table describes the labels in this screen. 6.2 VPN This section shows you how to configure the VPN screens. These screens may vary depending on which model you?[...]

  • Página 127

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 127 There are two sets of VPN screens, VPN version 1.0 and VP N version 1.1. The version depends on the d evice’ s type and firmware version. 6.3 IPSec High A v ailability IPSec high availability (also known as VPN high availability) allows yo u to use a redundant (backup) VPN connecti[...]

  • Página 128

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 128 Figure 59 Device Operation > Device Configurat ion > Security > VPN > VPN Rules (IKE) The following table describes the labels in this screen. 6.3.2 Add/Edit an IKE Gateway Policy In the VPN Rule (IKE) screen, click Add in the top of the column or click Edit from a existi[...]

  • Página 129

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 129 Figure 60 Device Operation > Device Configuration > Security > VPN > VPN Rules (IKE) > Gateway Policy Add/Edit[...]

  • Página 130

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 130 The following table describes the labels in this screen. T able 50 Device Operation > Device Configuration > Security > VPN > VPN Rules (IKE) > Gateway Policy Add/Edit LABEL DESCRIPTION Property NA T Traversal Select this check box to ena ble NA T traversal. NA T trave[...]

  • Página 131

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 131 Remote Gateway Address T ype the WAN IP address or the domain na me (up to 31 cha racters) of the IPSec router with which you're ma king the VPN conne ction. Set this field to 0.0.0.0 if the remote IPSec router has a dynamic W AN IP address. In order to have more than one active[...]

  • Página 132

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 132 Local ID T ype Select IP to identify this device by its IP address. Select DNS to identify this device by a domain name. Select E-mail to identify this device by an e-mail address. Y ou do not configure the local ID type and content when you set Authentication Key to Certificate . Th[...]

  • Página 133

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 133 Content The configurati on of the peer content depends on the peer ID type. Do the following when you set Authentication Key to Pre-shared Key . •F o r IP , type the IP address of the com puter with which you will make the VPN connection. If you confi gure this field to 0.0.0.0 or [...]

  • Página 134

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 134 6.3.3 Add/Edit an IKE Network Policy In the VPN Rule (IKE) screen, click the Add icon from a gateway policy or click Edit fr om an existing network policy to display the Network Policy screen. Password Enter the corre sponding password for the above user name. The password can be up [...]

  • Página 135

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 135 Figure 61 Device Operation > Device Configuration > Security > VPN > VPN Rules (IKE) > Network Policy Add/Edit[...]

  • Página 136

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 136 The following table describes the labels in this screen. T able 51 Device Operation > Device Configuration > Security > VPN > VPN Rules (IKE) > Network Policy Add/Edit LABEL DESCRIPTION Active If the Active check box is selected, packets for the tunnel trigger the devi[...]

  • Página 137

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 137 Mapping T ype Select One-to-One to translate a single (static) IP address on your LAN to a single virtual IP address. Select Many-to -One to translate a range of (static) IP addresses on your LAN to a single virtual IP address. Many-to-one rules are for traffic going out from your LA[...]

  • Página 138

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 138 Ending IP Address/ Subnet Mask When the Address T ype field is configured to Sing le Address , this field is N/A. When the Addres s T yp e field is configured to Range Addre ss , enter the end (static) IP address, in a range of computers on the LAN behind your device. When the Addres[...]

  • Página 139

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 139 6.3.4 Move an IKE Network Policy In the VPN Rule (IKE) screen, click the move icon to display the screen shown next.Use this screen to associate a network policy to a gateway policy . SA Life Time (Secon ds) Define the length of time before an IPSec SA automatically renegotiates in t[...]

  • Página 140

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 140 Figure 62 Device Operation > Device Configuration > Security > VPN > VPN Rules (IKE) > Network Policy Move The following table describes the labels in this screen. 6.3.5 VPN Rules (Manual) Select a device, click Device Operation in the menu bar and then click Device Co[...]

  • Página 141

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 141 Figure 63 Device Operation > Device Configur atio n > Security > VPN > VPN Rules (Manual) The following table describes the labels in this screen. T able 53 Device Operation > Device C onfiguration > Security > VPN > VPN Rules (Manual) LABEL DESCRIPTION # This[...]

  • Página 142

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 142 6.3.6 Add/Edit an Manual VPN Rule T o open this screen, click Add or Edit in the Device Operation > Device Configuration > Security > VPN > VPN Rules (Manual) screen. Use this screen to configure a new or an existing manual VPN rule. Figure 64 Device Operation > Device[...]

  • Página 143

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 143 The following table describes the labels in this screen. T able 54 Device Operation > Device C onfiguration > Security > VPN > VPN Rules (Manual) > Add/Edit LABEL DESCRIPTION Property Active Select this check box to activate this VPN policy . Name T ype up to 32 charac[...]

  • Página 144

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 144 6.3.7 VPN Global Setting Select a device, click Devi ce Operation > Device Configuration > Security > VPN > Global Setting tab to open the screen shown next. Us e this screen to change your device’ s global settings. Encryption Algori thm Select DES , 3DES or NULL from [...]

  • Página 145

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 145 Figure 65 Device Operation > Device Configurat ion > Security > VPN > Global Setting The following table describes the labels in this screen. T able 55 Device Operation > Device C onfiguration > Security > VPN > Global Setting LABEL DESCRIPTION Output Idle Tim[...]

  • Página 146

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 146 6.4 Anti-V irus This section shows you how to configure the Anti-V irus screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 6.4.1 General Anti-Virus Setu[...]

  • Página 147

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 147 Figure 66 Device Operation > Device Configuration > Security > Anti- Virus > General The following table describes the labels in this screen. T able 56 Device Operation > Device Configuration > Security > Anti-V irus > General LABEL DESCRIPTION General Setup E[...]

  • Página 148

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 148 6.5 Anti-Sp am This section shows you how to configure the Anti-Spam screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 6.5.1 Anti-Sp am General Screen [...]

  • Página 149

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 149 Figure 67 Device Operation > Device Configurat ion > Security > Anti-S pam > General The following table describes the labels in this screen. T able 57 Device Operation > Device Configuration > Security > Anti-S pam > General LABEL DESCRIPTION General Setup En[...]

  • Página 150

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 150 From, T o Select the directions of travel of packets that you want to check. Select or clear a row or column’s first check box (with the interface label) to select or clear the interface’s whole row or column. For example, From LAN T o LAN means packets traveling from a computer [...]

  • Página 151

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 151 6.5.2 Anti-Sp am External DB Screen Click Device Operation > Device Configuratio n > Security > Anti-Spam > External DB to display the Anti-Spam External DB screen. Use this sc reen to enable or di sable the use of the anti-spam external database. Y ou can also configure [...]

  • Página 152

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 152 The following table describes the labels in this screen. T able 58 Device Operation > Device Configuration > Security > Anti-S pam > External DB LABEL DESCRIPTION External Database Enable External Database Enable the anti-spam external database feature to have the device [...]

  • Página 153

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 153 6.6 Anti-Sp am Lists Screen Click Device Operation > Device Configurat ion > Security > Anti-Spam > Lists to display the Anti-Spam Lists screen. Configure the whitelist to identify legitimate e- mail. Configure the blac klist to id entify spam e-mail. Y o u can create whi[...]

  • Página 154

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 154 6.6.1 Anti-Sp am List s Edit Screen T o open this screen, click Inser t or Edit in the Device Operation > Device Configuration > Security > Anti-Spam > Lists screen. Use this screen to configure an anti-spam white list entry to identify legit imate e-mail or a blacklist e[...]

  • Página 155

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 155 Figure 70 Device Operation > Device Configuratio n > Security > Anti -S pam > List s > Add/ Edit The following table describes the labels in this screen. T able 60 Device Operation > Device Configuration > Security > Anti-S pam > List s > Add/Edit LABEL [...]

  • Página 156

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 156 E-Mail Address This field displays whe n you select the E-Mail type. Enter an e-mail add ress or domain name (up to 63 ASCII characters). Y ou can enter an individual e-mail address like ab c@def.com. If you enter a domain na me, the device s earches the source e-mail address string [...]

  • Página 157

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 157 6.7 IDP This section shows you how to configure the IDP screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 6.8 General Setup Use this screen to enable I[...]

  • Página 158

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 158 6.9 IDP Signatures The rules that define how to id entify and respond to intrusions are called “signatures”. Click Device Operation > Device Configuration > Security > IDP > Signatur e to see the device’ s signatures. 6.9.1 Att ack T ypes In the Device Operation >[...]

  • Página 159

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 159 Figure 72 Device Operation > Device Configuration > Security > IDP > Signature > Attack Ty p e s The following table descr ibes each attack type. T able 62 Device Operation > Device Configuration > Security > IDP > Signature > Attack Ty p e s T YPE DESCR[...]

  • Página 160

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 160 6.9.2 Intrusion Severity Intrusions are assigned a severity level based on the following table. The intrusion severity level then determines the default signature action. 6.9.3 Signature Actions Y ou can ena ble/disable individual signatures. Y ou can log and/or have an alert sent wh[...]

  • Página 161

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 161 The following table describes signature actions. 6.9.4 Configuring IDP Signatures Use this screen to see the device’ s “group view” signature screen where you can view signatures by attack type. T o search for signat ures based on other criteria such as signa ture name or ID, t[...]

  • Página 162

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 162 The following table describes the labels in this screen. T able 65 Device Operation > Device Configuration > Security > IDP > Signature LABEL DESCRIPTION Switch to query view Click this hyperlink to go to a screen where you can search for signatures based on criteria othe[...]

  • Página 163

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 163 6.9.5 Query V iew Use this screen to see the device’ s “group view” signature screen, then clic k the Switch to query view link to go to this ‘query view” screen. Use this screen to search for signatures by crit eria such as name, ID, severity , attack type, vulnerable atta[...]

  • Página 164

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 164 Severity Search for signatures by severity level(s) (see T able 63 on page 160 ). T ype Sea rch for signatures by attack type(s) (see T able 62 on page 159 ). Attack types are known as policy types in the group view screen. Platform Search for signatures crea ted to prev ent intrusio[...]

  • Página 165

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 165 6.9.6 Protocol Anomaly This section introduces ADP (Anomaly Detection and Prevention). An ADP system protects against anomalies based on violations of prot oc ol standards (RFCs – Requests for Comments) and abnormal flows such as po rt scans. Protocol anomaly de tection includes HT[...]

  • Página 166

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 166 The following table describes the labels in this screen. T able 67 Device Operation > Devi ce Configuration > Security > IDP > Anomaly T YPE DESCRIPTION HTTP Inspection/TCP Decoder/UDP Decoder/ICMP Decoder Name This is the name of the protocol anomal y rule. Click a name [...]

  • Página 167

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 167 6.10 Signature Up date The device comes with built-in signatures cr eated by the ZyXEL Security Response T eam (ZSR T). These are regularly updated as new intrusions evolve. Use the Update screen to immediately download or sched ule new signature downloads. " Y ou should have al[...]

  • Página 168

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 168 T o open this screen, click Device Operation in the menu bar and then click Device Configuration > Security > Signatur e Update in the configuration panel. Figure 77 Device Operation > Device Configur ation > Security > Signature Update The following table describes th[...]

  • Página 169

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 169 6.1 1 Content Filter This section shows you how to configure the Content Filter screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 6.12 Content Filter G[...]

  • Página 170

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 170 Figure 78 Device Operation > Device Configuration > Security > Co nten t Filter > General The following table describes the labels in this screen. T able 69 Device Operation > Device Configuration > Security > Content Filter > General LABEL DESCRIPTION General[...]

  • Página 171

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 171 Matched Web Pages Select Block to prevent users from accessing web pages that match the categories that you select belo w . When external database c o ntent filter ing blocks access to a web p age, it displays the denied access message that you config ured in the CONTENT FIL TER Gene[...]

  • Página 172

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 172 6.13 Content Filter Policy This screen lists groups of content filtering settings called policies. Co ntent filtering policies allow you to have dif ferent content filtering settin gs for different users or groups of users. For example, you may want to block most employ ees from acce[...]

  • Página 173

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 173 Figure 79 Device Operation > Device Configuratio n > Security > Cont ent Filter > P olicy The following table describes the labels in this screen. T able 70 Device Operation > Device Configuration > Security > Content Filter > Policy LABEL DESCRIPTION # Name T[...]

  • Página 174

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 174 6.13.1 Content Filt er Policy: General T o open this screen, click Add or a policy’ s general icon in the Device Operation > Device Configuration > Security > Content Filter > Policy screen. Use this screen to restrict web features and edit the source (user) addresses o[...]

  • Página 175

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 175 6.13.2 Content Filter Policy: External Dat abase T o open this screen, click a polic y’ s external database icon in the Device Operation > Device Configuration > Security > Content Filter > Policy screen. Use this screen to edit which content categories the content filt[...]

  • Página 176

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 176 Figure 81 Device Operation > Device Configuration > Security > Co nten t Filter > Policy > External Databasel The following table describes the labels in this screen. T able 72 Device Operation > Device Configuration > Security > Content Filter > Policy >[...]

  • Página 177

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 177 Pornography Selecting this category excludes pages that con tain sexually explicit material for the p urpose of arousi ng a sexual or prurient interest. Sex Education Selecting this category excludes pages that provide graphic information (sometimes graphic) on reproduction, sexual d[...]

  • Página 178

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 178 Violence/Hate/Racism Selecting this category excludes pages that depict extreme ph ysical harm to people or property , or that advocate or provide instructions on how to cause such harm. It also in clu des pages that advocate, depict hostility or aggression toward, or denigr ate an i[...]

  • Página 179

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 179 Alternative S pirituality/ Occult Selecting this category exclude s pages that promote and provide information on religions such as Wi cca, Witchcraft or Satanism. Occult practices, atheistic view s, voodoo rituals or an y other form of mysticism are represented here. Includes site s[...]

  • Página 180

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 180 Health Selecting this category excludes pages that provide advi ce and information on genera l health such as fitness and we ll-being, personal health or medical services, drugs, alternative and complimentary therapies, medical information about ail ments, dentistry , optometry , gen[...]

  • Página 181

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 181 Email Selecting this category exclude s pages offering web-based e-mail services, such as online e-mail reading, e-cards, and mailing list services. Blogs/Newsgroups Selecting this category exclud es pages that offer access to Usenet n ews groups or other messaging or bulletin bo ard[...]

  • Página 182

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 182 6.13.3 Content Filter Policy: Customization T o open this screen, click a pol icy’ s customization icon in the Device Operation > Device Configuration > Security > Content Filter > Policy screen. Use this screen to select good (allowed) web site addre sses for this poli[...]

  • Página 183

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 183 " Use the Device Operation > Device Configuration > Security > Content Filter > Object screen (see Section 6.14 on page 186 ) to first configure the master lists of trusted (a llowed) web sites,forbidden (blocked) web sites, and keywords. Figure 82 Device Operation &[...]

  • Página 184

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 184 The following table describes the labels in this screen. 6.13.4 Content Filt er Policy: Schedule T o open this screen, click a pol icy’ s schedule icon in the Device Opera tion > Device Config- uration > Security > Content Fil ter > Policy screen. Use this screen to set[...]

  • Página 185

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 185 Figure 83 Device Operation > Device Configuration > Security > Co nten t Filter > Policy > Schedulel The following table describes the labels in this screen. T able 74 Device Operation > Device Configuration > Security > Content Filter > Policy > Schedul[...]

  • Página 186

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 186 6.14 Content Filter Object s Use this screen to create a list of good (allowed) web site addresses, a list of bad (bloc ked) web site addresses, or block web sites ba sed on whet her the web site’ s address contains a ke yword.. T o open this screen, click a device, click Device Op[...]

  • Página 187

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 187 The following table describes the labels in this screen. 6.15 Content Filtering Cache T o open this screen, click a device, click Device Operation in the menu bar and then click Device Configuration > Security > Content Filter > Cache in the navigation panel. T able 75 Devic[...]

  • Página 188

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 188 Use this screen to view and configure your de vice’ s URL caching. Y ou can also configure how long a categorized web site address remains in the cache as well as view those web site addresses to which access has been allowed or blocked based on the responses from the external cont[...]

  • Página 189

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 189 Figure 86 Device Operation > Device Configurat ion > Security > X Auth > Local User The following table describes the labels in this screen. 6.16.2 RADIUS Use this screen if you want to use an ex ternal server to pe rform authentication. T o open this screen, click a devi[...]

  • Página 190

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 190 Figure 87 Device Operation > Device Configur ation > Security > X Auth > RADIUS The following table describes the fields in this screen. T able 78 Device Operation > Devi ce Configuration > Security > X Auth > RADIU S LABEL DESCRIPTION Activate Authenticati on[...]

  • Página 191

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 191[...]

  • Página 192

    Chapter 6 Device Security Settings Vantage CNM User’s Guide 192[...]

  • Página 193

    Vantage CNM User’s Guide 193 C HAPTER 7 Device Advanced Settings Use these screens to configure De vice advanced settings such as NA T , Static Route, DNS and Remote Management. 7.0.1 NA T This section shows you how to configure the NA T screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s Use[...]

  • Página 194

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 194 Figure 88 Device Operation > Device Configuration > Advanced > NA T > NA T Overview The following table describes the fields in this screen. T able 79 Device Operation > Device Configuration > Advanced > NAT > NAT Overview LABEL DESCRIPTION Global Setting Ma[...]

  • Página 195

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 195 7.2 Port Forwarding Use this screen to configure port forwarding on the device. T o open this screen, click a device, click Device Operation in the menu bar , and then click Devic e Configuration > Advanced > NA T > Port Forwarding in the navigation panel. Port Forwarding Ru[...]

  • Página 196

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 196 Figure 89 Device Operation > Device Configuratio n > Advanc ed > NA T > Port Forwar ding The following table describes the labels in this screen. T able 80 Device Operation > Device Configuration > Advanced > NAT > Port Fowarding LABEL DESCRIPTION W AN Inter[...]

  • Página 197

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 197 7.3 Address Mapping Use this screen to configure various types of network address transla tion (NA T) on the device. T o open this screen, click a device, click Device Operation in the menu bar , and then click Device Configuration > Advanced > NA T > Address Mapping in the [...]

  • Página 198

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 198 7.3.1 Edit an Address Mapping Rule Use this screen to edit an address mapping rule on the device. T o open this screen, click Edit for a rule in the Device Operation > Device Configuration > Advanc ed > NA T > Addr ess Mapping screen. Figure 91 Device Operation > Dev[...]

  • Página 199

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 199 7.4 T rigger Port Use this screen to configure trigger port forwar ding on the device. T o open this screen, click a device, clic k Device Operation in the menu bar and then click Device Configuration > Advanced > NA T > T rigger Port in the navigation panel. Figure 92 Devic[...]

  • Página 200

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 200 7.4.1 Edit a T rigger Port Rule Use this screen to edit a trigger port forwarding rule on the device. T o open this screen, c lick Configuration > NA T , select SUA Only or Full Featur e , click Edit , select T r igger Port , and click the Index field for the rule. Figure 93 Dev[...]

  • Página 201

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 201 7.5 St atic Route This section shows you how to configure the St a t i c R o u t e screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 7.6 St atic Route [...]

  • Página 202

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 202 The following table describes the labels in this screen. 7.6.1 Edit a St atic Route Use this screen to edit a static route i n the device. T o open this scree n, select a static route, and click Edit in the Device Operation > Device Configuration > Advanced > S tatic Route[...]

  • Página 203

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 203 7.7 DNS This section shows you how to configure the DNS screens. These screens may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 7.8 Address Record Use this screen to map a f[...]

  • Página 204

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 204 The following table describes the labels in this screen. 7.8.1 Add/Edit an Address Record Use this screen to create or edit an address record. Figure 97 Device Operation > Device Configuration > Advanced > DNS > Address Record > Add/Edit The following table describes[...]

  • Página 205

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 205 7.9 Name Server Record Use this screen to specify the IP address of a DNS server that the device can que ry to resolve domain names for features like VPN, DDNS, and th e time server . T o open this screen, click a device, clic k Device Operation in the menu bar and then click Device [...]

  • Página 206

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 206 7.9.1 Add/Edit a Name Server Record Use this screen to create or edit a name server record. Figure 99 Device Operation > Device Configurat ion > Advanced > DNS > Name Server Record > Add/Edit The following table describes the labels in this screen. T able 90 Device O[...]

  • Página 207

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 207 7.10 Cache Use this screen to configure a device ’ s DNS cachin g. T o open this screen, c lick a device, click Device Operation and then click Device Configuration > Advanced > DNS > Cache in the navigation panel. Figure 100 Device Operation > Device Config uration >[...]

  • Página 208

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 208 7.1 1 DDNS Use this screen to configure your Dynamic DNS (DDNS) on the device. T o open this screen, click a device, click Device Operation in the menu ba r and then click Device Configuration > Advanced > DNS > DDNS . Figure 101 Device Operation > Device Config uration[...]

  • Página 209

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 209 7.12 DHCP Use this screen to configure the DNS server info rmation that the device sends to DHCP clients on the LAN, DMZ or WLAN. T o open this screen, click a device, click Device Operation in the menu bar and then click Device Configuration > Advanced > DNS > DHCP in the n[...]

  • Página 210

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 210 Figure 102 Device Operation > Device Config uration > Advanced > DNS > DHCP The following table describes the labels in this screen. T able 93 Device Operation > Device Conf iguration > Advanced > D NS > DHCP LABEL DESCRIPTION DNS Servers Assigned by DHCP Se[...]

  • Página 211

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 21 1 7.13 Remote MGMT This section shows you how to configure the Remote MGMT screens. These screens may vary depending on which model you’re configuring. Pleas e see the device’ s User ’ s Guide for more information about any of these screens or fields. 7.14 Remote MGMT Use this s[...]

  • Página 212

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 212 The following table describes the labels in this screen. T able 94 Device Operation > Device Configuration > Advanced > Remote Ma nagement LABEL DESCRIPTION HTTPS Serve r Certifica te Select the Server Certificate that the device will use to identify i tself. The device is[...]

  • Página 213

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 213 Secure Client IP Address A secure client is a “trust ed” computer that is allowed to communicate with the device using this service. Select All to allow any computer to access the device using this service. Choose Selected to just allow the computer with the IP address that you s[...]

  • Página 214

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 214 SNMP Configuration Get Community Enter the Get Community , which i s the password for the incoming Get an d GetNext requests from the management station. The default is public and allo ws all requests. Set Community Enter the Set community , which is the password for incoming Set r[...]

  • Página 215

    Chapter 7 Device Advanced Settings Vantage CNM User’s Guide 215[...]

  • Página 216

    Chapter 7 D evice Advanc ed Settings Vantage CNM User’s Guide 216[...]

  • Página 217

    Vantage CNM User’s Guide 217 C HAPTER 8 Device Log This section shows you how to configure the Device Log screen. This screen may vary depending on which model you’re co nfiguring. Please see the device’ s User ’ s Guide for more information about any of these screens or fields. 8.1 Device Log Use the Logging Options sc reen to configure to[...]

  • Página 218

    Chapter 8 Device Log Vantage CNM User’s Guide 218[...]

  • Página 219

    Chapter 8 Device Log Vantage CNM User’s Guide 219 The following table describes the labels in this screen. T able 95 Device Operation > Device Configuration > Device Log LABEL DESCRIPTION Address Info Mail Server Enter the server nam e or the IP address of the mail server for the e-mail addresses specified below. If this field is lef t bla [...]

  • Página 220

    Chapter 8 Device Log Vantage CNM User’s Guide 220 Send Immediate Alert Select the categories of aler ts for which yo u want th e device to instantly e- mail alerts to the e-mail address specified in the Send Alerts T o field. Log Consolidation Log Consolidation Activ e Some logs (such as the Attacks logs) ma y be so numerous that it becomes easy [...]

  • Página 221

    Vantage CNM User’s Guide 221 C HAPTER 9 Device Configuration Management 9.1 Synchronization (Device) Data inconsistencies may occur if device conf igurations are made directly to the device instead of in V antage CNM. Use this screen to resolve any data inco nsistencies between the selected device and V antage CNM. T o u se this screen, select a [...]

  • Página 222

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 222 Figure 106 Device Operation > Configuration Managem ent > Synchronization (Customize) The following table describes the fields in this screen. 9.2 Synchronization (Folde r) Use this screen to resolve any da ta inconsistencies between the de vice(s) in the selected folde[...]

  • Página 223

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 223 Figure 107 Device Operation > Configuration Mana gement > Synchronization (Folder) The following table describes the fields in this screen. 9.3 Configuration File Management Once your device is configured and functioning properly , it is highly recommended that yo u bac[...]

  • Página 224

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 224 Y ou can create your own configuration file alias in V antage CNM. This may make it easier to distinguish between configuration files. The menu item displays different screens depe nding on whether you selected a device or a folder before you c licked this menu item. 9.3.1 Ba[...]

  • Página 225

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 225 9.3.2 Backup a Device Use this screen to manage configuration fil es uploaded to V antage CNM for the selected device. After a backup task is applied, you ca n check the status in Log & Report > Operation Report > Configuration File Backup & Restore Report . T o[...]

  • Página 226

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 226 The following table describes the fields in this screen 9.3.3 Backup & Restore (Folder) Use this screen to manage or restore config uration files uploaded to V antage CNM for multiple devices in the selected folder . Y ou cann ot use this screen to manage or restore confi[...]

  • Página 227

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 227 The following table describes the fields in this screen. 9.3.4 Group Backup (Folder) Use this screen to backup configuration files fo r one or more devices in the selected set of configuration files. T o open th is screen, click Backup in the Device Operation > Configurati[...]

  • Página 228

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 228 Figure 1 1 1 Device Operation > Configuration Man a gement >Co nfiguration Managem ent > Configuration File Managemen t > Backup (Folder) The following table describes the fields in this screen. T abl e 101 Device Operation > Configuration Ma nagement > Conf[...]

  • Página 229

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 229 9.3.5 Group Restore (Folder) Use this screen to restore configuration files fo r one or more devices in the specified folder . The configuration files must be available in the V antage CNM server . T o open this screen, select an existing configuration file and click Re store[...]

  • Página 230

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 230 9.4 Schedule List (Device) Use this screen to s ee or delete the scheduled configuration backup s that have not performed yet. T o open this screen, select a de vice, click Device Operation in menu bar and then click Configuration Management > Configurat ion File Man ageme[...]

  • Página 231

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 231 9.5 Schedule List (Folder) Use this screen to s ee or delete the scheduled configuration backup for a group that has not performed yet. T o open this scree n, select a folder , and then click Configuration Management > Configuration Fi le Management > Schedule List . Fi[...]

  • Página 232

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 232 Figure 1 15 Device Operat ion > Configuration Management > Configur ation File Management > Schedule List (Folder) The following table describes the fields in this screen. T abl e 105 Device Operation > Configuration Ma nagement > Configuration File Management [...]

  • Página 233

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 233 9.6 Signature Profile Management Use this menu item to manage, back up and restore the configuration and signatures for services such as IDP and anti-virus. Y ou can also use this menu item to reset the service configuration to its factory default settings. The menu item disp[...]

  • Página 234

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 234 The following table describes the fields in this screen. 9.6.2 Signature Profile Backup (Device) Use this screen to back up the anti-virus or IDP configura tion and signatures for a specific device. The configuration m ay be stored in th e V antage CNM server or on the comput[...]

  • Página 235

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 235 Figure 1 17 Device Operation > Configuration Manag e ment > Signature Profile Management > Backup & Restore > Backup (Device) The following table describes the fields in this screen 9.6.3 Signature Profile Restore (Folder) Use this screen to re store a set of [...]

  • Página 236

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 236 Figure 1 18 Device Operation > Configuration Manag e ment > Signature Profile Management > Backup & Restore > Restore (Folder) The following table describes the fields in this screen 9.6.4 Reset to Factory Use this screen to restore anti-virus or IDP conf igur[...]

  • Página 237

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 237 Figure 1 19 Device Operation > Configuration Manag e ment > Signature Profile Management > Reset to Factory The following table describes the fields in this screen 9.7 Configuration Building Block Use this menu item to mana ge building blocks to the selected device. [...]

  • Página 238

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 238 The following table describes the fields in this screen 9.8 Add/Edit a Configuration BB Use this menu item to mana ge building blocks to the selected device. See Chapter 34 on page 356 for more information abou t building blocks. T o open this menu item, click Add , Edit or S[...]

  • Página 239

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 239 Figure 122 Device Op eration > Configuration Manag ement > Building Block > Configuration BB > Edit Figure 123 Device Op eration > Configuration Manag ement > Building Block > Configuration BB > Save as The following table describes the fields in this [...]

  • Página 240

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 240 Feature Select the menu item the building block is for . If you select System , a screen displays (as Device Operatio n > Device Configuratio n > General > System ) after y o u click Create . See Section 4.1 on p age 55 . If you select Time Setting , a screen display[...]

  • Página 241

    Chapter 9 Device Configuration Manageme nt Vantage CNM User’s Guide 241 9.9 Component BB Use this menu item to manage component building blocks to th e selected de vice. A component BB is a part of setting such as a myZyXEL.co m account, an IP address, an IKE phase 1 or phase2 setting. See Chapter 34 on page 356 for more information about buildin[...]

  • Página 242

    Chapter 9 Device Configuration Manag ement Vantage CNM User’s Guide 242 Figure 125 Device Operation > Configuration Mana gement > Building Block > Component BB > Add/Edit/Save as The following table describes the fields in this screen Ta b l e 1 1 3 Device Operation > Configu r ation Management > Bu ilding Block > Component B[...]

  • Página 243

    Vantage CNM User’s Guide 243 C HAPTER 10 Firmware Management 10.1 Firmware List Use this screen to upload device firmware to V antage CNM. It is recommended administrators subscribe to a ZyXEL mailing list to be regu larly informed of ne w firmware ver s ions. All firmware files are downloaded to one repos itory within V antage CNM. All firmware [...]

  • Página 244

    Chapter 10 Firm ware Managem ent Vantage CNM User’s Guide 244 10.1.1 Add Firmware Use this screen to select the fi rmware you want to upload to V a ntage CNM. T o open this screen, click Add in the Device Operation > Firmware Management > Firmwar e List screen. Y ou must upload the whole firmware zi p file, which contains the following: •[...]

  • Página 245

    Chapter 10 Fi rmware Management Vantage CNM User’s Guide 245 10.2 Scheduler List Use this screen to look at and maintain the list of scheduled firmware upgrades in V antage CNM. Once an upgrade is completed, V antag e CNM removes the upgrade record from this screen and adds it to the Log & Report > Operation Report > Firmware Upgrade Re[...]

  • Página 246

    Chapter 10 Firm ware Managem ent Vantage CNM User’s Guide 246 Consider the following when you decide to upgrade firmware. • It is advisable to upgrade firmware during periods of low network activity , since each device must restart after firmware upload. • Y ou should also notify device owners before you begin the upload. See the CNM System S[...]

  • Página 247

    Chapter 10 Fi rmware Management Vantage CNM User’s Guide 247 The following table describes the fields in this screen. 10.3.3 Firmware Upgrade (Device) > Upgrade Use this screen to perform the fi rmware upg rade to the selected device right away or define a schedule for it. T o open this screen, click Upgrade on a firmware entry in the Device O[...]

  • Página 248

    Chapter 10 Firm ware Managem ent Vantage CNM User’s Guide 248 The following table describes the fields in this screen. T able 1 17 Device Operation > Firmware Mana gement > Firmware Upgrade (Device) > Upgrade T YPE DESCRIPTION Device Information This section displays the selected devi ce(s) to wh ich you will perform the firmware upgrade[...]

  • Página 249

    Vantage CNM User’s Guide 249 C HAPTER 11 License Management 1 1.1 Service Activiation Use this menu item to register the selected device and to activate subscription services. " This menu item is avail able if you click a device. 1 1.1.1 Registration Use this screen to registe r the selected device on www .myzyxel.com and to activate free tr[...]

  • Página 250

    Chapter 11 Lice nse Managem ent Vantage CNM User’s Guide 250 Figure 133 Device Operation > License Manag ement > Service Activiation > Registration > Save as a BB Enter the name of the new building block, and click Apply . The name must be 1-32 alphanumeric characters or underscores (_). It cannot include spaces. The name is case- sen[...]

  • Página 251

    Chapter 11 License Manag ement Vantage CNM User’s Guide 251 1 1.1.2 Service Use this screen to look at or update the current status of subscription services, such as IDP and content filtering, in the select ed device. The V antage CNM serv er must be connected to the Internet and have access to www .myzyxel. com to update the current status. T o [...]

  • Página 252

    Chapter 11 Lice nse Managem ent Vantage CNM User’s Guide 252 1 1.2 License S t atus Use this screen to look at the current status of licenses for subsc ription services, such as IDP and content filtering. T o open th is screen, click a device, click Device Operation in the menu bar and then click License Management > License S tatus in the nav[...]

  • Página 253

    Chapter 11 License Manag ement Vantage CNM User’s Guide 253 1 1.2.1 Activate/Upgrade License Use this screen to activate a trial version of the service, if available, or to apply a license for the service to the device. T o open this screen, click Upgrade in the Device Operation > License Management > License S tatus screen. Figure 136 Devi[...]

  • Página 254

    Chapter 11 Lice nse Managem ent Vantage CNM User’s Guide 254 Figure 137 Device Operation > License Manag ement > Signature S tatus The following table describes the labels in this screen. T able 122 Device Operation > License Management > Signatur e Status LABEL DESCRIPTION Page Size Select thi s from the list box to set up to how man[...]

  • Página 255

    255 P ART III VPN Management " The examples in this section use one of the most compr ehensive examples of each screen, not every variat ion for each device type and firmware version. If you are unable to find a specific screen or field in this User ’s Guide, please see the User ’s Guide for the device for more information. VPN Community ([...]

  • Página 256

    256[...]

  • Página 257

    Vantage CNM User’s Guide 257 C HAPTER 12 VPN Community 12.1 VPN Community Use this menu item to manage VPN configurat ion between or among ZyXEL devices. T o open this menu item, select the device, click VPN Management in the menu ba r and then click VPN Community in the navigation panel. Figure 138 VPN Management > VPN Community The following[...]

  • Página 258

    Chapter 12 VPN Community Vantage CNM User’s Guide 258 12.1.1 Add/Edit a VPN Community Use this scree to configure VP N configuration between or among ZyXEL devices. W e know almost all VPN parameter values should be the same in peer VPN gateways. This screen helps you to easily configure VPN settings in one scree n and applies it to devices in on[...]

  • Página 259

    Chapter 12 VPN Community Vantage CNM User’s Guide 259 Click the Load a BB icon to use phase 1 or phase 2 settin g from an existing building block. The following pop-up screen appears. Figure 140 VPN Management > VPN Community > Add/ Edit > Load a BB Select a building block fro m the list box, and click Ap ply . Or click Cancel to close t[...]

  • Página 260

    Chapter 12 VPN Community Vantage CNM User’s Guide 260 The following table describes the fields in this screen. T able 124 VPN Management > VPN Community > Add/Edit FIELD DESCRIPTION VPN Community Community Name T ype a name to id entify this VPN community . Description T ype a descriptive note fo r the VPN community . Community T ype Select[...]

  • Página 261

    Chapter 12 VPN Community Vantage CNM User’s Guide 261 Encryption Algorith m Select which key size and encryption alg orithm to use in the IKE SA. Choices are: DES - a 56-bit key with the DES encryption alg orithm 3DES - a 168-bit key with the DES encryption algorithm AES - a 128-bit key with the AES encryption algorith m The ZyW A LL and the remo[...]

  • Página 262

    Chapter 12 VPN Community Vantage CNM User’s Guide 262 Perfect Forward Secret (PFS) Select whether or not y ou want to enable Perfect Fo rward Secrecy (PFS) and, if you do, which Diffie-Hellman key group to use for encryption. Choice s are: NONE - disable PFS DH1 - enable PFS and use a 768-bit random number DH2 - enable PFS and use a 1024-bit rand[...]

  • Página 263

    Vantage CNM User’s Guide 263 C HAPTER 13 Installation Report 13.1 Inst allation Report Use this screen to view the VPN community stat us between or am ong th e devices. T o open this screen, click a device or a folder , and then click VPN Management from the menu bar and then click Installation Report in the navigation panel. Figure 143 VPN Manag[...]

  • Página 264

    Chapter 13 Inst a llation Report Vantage CNM User’s Guide 264 13.1.1 Show Det ailed Inst allation Reportl Use this screen to view whether the VPN comm unities have been applied successfully to all member gateways. T o open this screen, click Show Detail in the VPN Management > Installation Report screen. Figure 144 VPN Management > Inst all[...]

  • Página 265

    Vantage CNM User’s Guide 265 C HAPTER 14 VPN Monitor Use this menu item to centrally and easily mo nitor all VPN community status among devices. Y ou can check from a communities list (by comm unity) or from a devices list (by device). 14.1 Monitor VPN by Community Use this menu item to monitor a ll VPN community status. T o open this screen, cli[...]

  • Página 266

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 266 14.1.1 Show Det ailed VPN Community Use this screen to monitor VPN tunnel status. T o open this screen, click Show Detail in the VPN Management > VPN Monitor > By Community screen. Figure 146 VPN Management > VPN Monitor > By Community > Sho w Detail The following table describes [...]

  • Página 267

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 267 14.1.2 VPN T unnel Diagnostics Use this screen to perform diagnostic action fo r a disconnected tunnel. T o open this screen, click Diagnostic in the VPN Management > VPN Monitor > By Community > Show Detail screen. Figure 147 VPN Management > VPN Monitor > By Community > Show [...]

  • Página 268

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 268 Figure 148 VPN Management > VPN Monitor > By Co mmunity > Show Detail > Diagnostic > Logs The following table describes the fields in this screen. T able 129 VPN Management > VPN Monitor > By Community > Show Detail > Diagnostic > Logs LABEL DESCRIPTION Hide Cookie [...]

  • Página 269

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 269 14.2 Monitor VPN by Device 14.2.1 VPN T unnel S t atus Use this menu item to monitor a ll VPN tunnel status for devices. T o open this screen, click a device or a folder , and then click VPN Management from the menu bar and clic k VPN Monitor > By Device > VPN T unnel S tatus in the naviga[...]

  • Página 270

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 270 Figure 150 VPN Management > VPN Monitor > By Device > VPN T unnel S tatus > Search S pecial Tunnel The following table describes the fields in this screen. 14.2.3 SA Monitor Use this menu item to monitor a ll VPN tunnel status for devices. T o open this screen, click VPN Management f[...]

  • Página 271

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 271 Figure 151 VPN Management > VPN Monitor > By Device > SA Monitor The following table describes the fields in this screen. T able 132 VPN Management > VPN Monitor > By Device > SA Monitor LABEL DESCRIPTION Page Size Select this from the list box to set up to h ow many records yo[...]

  • Página 272

    Chapter 14 VPN Monitor Vantage CNM User’s Guide 272[...]

  • Página 273

    273 P ART IV Monitor Device Status Monitor (275) Device HA Status Monitor (281) Device Alarm (283)[...]

  • Página 274

    274[...]

  • Página 275

    Vantage CNM User’s Guide 275 C HAPTER 15 Device Status Monitor This chapter describes the device status monitor . 15.1 Device S tatus This report shows a summary of device status. T o open this scre en, click Monitor in the menu bar and then click Devi ce S tatus in the navigation panel. " Right click on t he screen and click Refresh to get [...]

  • Página 276

    Chapter 15 Device Sta tus Monitor Vantage CNM User’s Guide 276 15.1.1 Device S tatus > 3G Card This report shows a summary of device status. Click a 3G Card link beside a device shown in the Monitor > Device S tatus screen to open the screen as shown next. Figure 153 Monitor > Device S tatus > 3G Card Firmware Ve r s i o n This displa[...]

  • Página 277

    Chapter 15 Device Status Monitor Vantage CNM User’s Guide 277 The following table describes the labels in this screen. T able 134 Monito r > Device Stat us > 3G Card LABEL DESCRIPTION 3G W AN Interface S tatus The fields below display when a 3G card is inserted and W AN 2 is enabl ed in the selected device. 3G Connection S tatus This displa[...]

  • Página 278

    Chapter 15 Device Sta tus Monitor Vantage CNM User’s Guide 278 3G Card Model T his displays the model name of your 3G card. 3G Card Firmware Revision This displays the version of the firmware currently used in the 3G card. 3G Card IMEI This field is availab le only when you insert a GSM (Global System for Mobile Communications) or UMTS (Universal[...]

  • Página 279

    Chapter 15 Device Status Monitor Vantage CNM User’s Guide 279 # This field displays the index number of re cords in this table. T ime This field displays the time the alarm was recorded. Source This field lists the source IP address and the port number of the incoming packet. Destination This field lists the destination IP address and the port nu[...]

  • Página 280

    Chapter 15 Device Sta tus Monitor Vantage CNM User’s Guide 280[...]

  • Página 281

    Vantage CNM User’s Guide 281 C HAPTER 16 Device HA Status Monitor This chapter describes the monitor for device high availability (HA) status on ZLD ZyW ALL device(s) such as ZyW ALL 1050 or ZyW ALL USG series. 16.1 Device HA S tatus This report shows a summary of device status. T o open this screen, select a ZLD device, click Monitor in the menu[...]

  • Página 282

    Chapter 16 Device HA Stat us Monitor Vantage CNM User’s Guide 282 S tatus This field displays the device’s current HA status. If the device is a master deivce, the possible status are: • Active : All VRRP interfaces status on the device are active. • Fault : One or more VRRP interfaces st atus on the device are inactive. If the device is a [...]

  • Página 283

    Vantage CNM User’s Guide 283 C HAPTER 17 Device Alarm 17.1 Device Alarm Introduction Alarms are time-critical information that the de vice automatically sends out at the ti me of occurrence. Y ou may have a dministrators auto ma tically e-mailed when an alarm oc curs in the CNM System Setting > Conf iguration > Notification screen. See Sect[...]

  • Página 284

    Chapter 17 Device Alar m Vantage CNM User’s Guide 284 Figure 155 Monitor > Device Alarm > Unresolved Alarm The following table describes the fields in this screen. T able 137 Monitor > Device Alarm > Unresolved Alarm STAT E DESCRIPTION Device Name/ Folder Name This field displays the selected device or folder . Platform This is availa[...]

  • Página 285

    Chapter 17 Device Alarm Vantage CNM User’s Guide 285 17.1.3 Responded Alarm Responded alarms are alarms that have been responded by an administrator . Figure 156 Monitor > De vice Alarm > Responded Alarm The following table describes the fields in this screen. Destination This field lists the destination IP addr ess and the port number of t[...]

  • Página 286

    Chapter 17 Device Alar m Vantage CNM User’s Guide 286 Category Select the type of alarm you wish to view . Severity Select the severity of alarm you wish to view . T ime Period Select the time period for which you wish to view alarms. Responder Se lect alarms based on the administ rator who is supposed to re spond to them. Retrieve Click this to [...]

  • Página 287

    287 P ART V Log & Report Device Operation Repo rt (289) CNM Logs (301) VRP T (303)[...]

  • Página 288

    288[...]

  • Página 289

    Vantage CNM User’s Guide 289 C HAPTER 18 Device Operation Report Use this menu items to see summary reports for the tasks you submit to the devices through V antage CNM web configurator . 18.1 Firmware Upgrade Report Firmware Upgrade means that V antage CNM si gnals the device to request a firmware FTP upload from V antag e CNM. Th is report show[...]

  • Página 290

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 290 The following table describes the labels in this screen. 18.1.1 Firmware Report Det ails This report shows more information for each de vice firmware upgrade result performed in a group firmware upgrade. See Section 10.3 on page 245 . T o open this report, click Show Detail in the [...]

  • Página 291

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 291 The following table describes the labels in this screen. 18.2 Configuration Report Use this screen to look at operation records for a device or groups. T o open this screen, click Log & Report > Operation Re port > Configuration Report . Figure 160 Log & Report > O[...]

  • Página 292

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 292 Figure 161 Log & Report > Operation Repo rt > Configuration Report (Group) The following table describes the labels in this screen. 18.2.1 Configuration Report Det ails Use this screen to look at the detailed status of an configuration operation. T o open this screen, cli[...]

  • Página 293

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 293 Figure 162 Log & Report > Operation Repo rt > Configuration Report > Show Details The following table describes the labels in this screen. T able 142 Log & Report > Operation Report > Configuration Repor t > Show Details LABEL DESCRIPTION Device Name This [...]

  • Página 294

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 294 18.3 Configuration File Backup Report Use this screen to look at configuration file backup records for a device or groups. Refer to Section 9.3.1 on page 224 . T o open this screen, click Log & Report in the menu bar and then Operation Report > Configuration File Ba ckup &am[...]

  • Página 295

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 295 The following table describes the labels in this screen. 18.3.1 Configuration F ile Backup Report Det ails Use this screen to look at the detailed status of an configuration operation. T o open this screen, click Show Detail on a group backup record, click Log & Report in the m[...]

  • Página 296

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 296 Figure 165 Log & Report > Operation Repo rt > Config uration File Backup & Restore Report > Backup R eport (Group ) > Show D etail The following table describes the labels in this screen. 18.4 Configuration File Restore Report Use this screen to look at configur[...]

  • Página 297

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 297 Figure 166 Log & Report > Operation Repo rt > Config uration File Backup & Restore Report > Restore Report (Device) Figure 167 Log & Report > Operation Repo rt > Config uration File Backup & Restore Report > Restore Report (Group) The following tab[...]

  • Página 298

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 298 18.5 Signature Profile Backup Report Use this screen to look at the back up records of device signature profile. Refer to Section 9.6 .2 on page 234 . T o open this sc reen, click Log & Report in the menu bar and then click Operation Report > Signatur e Profile Backup & [...]

  • Página 299

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 299 18.6 Signature Profile Restore Report Use this screen to look at the restore r ecords of device si gnature profile. Refer to Section 9.6.3 on page 235 . T o open this sc reen, click Log & Report in the menu bar and then click Operation Report > Signatur e Profile Backup &[...]

  • Página 300

    Chapter 18 Device Op eration Repor t Vantage CNM User’s Guide 300 # This is the number of an individu al entry . Action T ime This field displa ys the date and ti me the operation was re quested. Y ou can click the label to sort by this column. Device Name This disp lays the device name for the signature profile restore. Y ou can click the label [...]

  • Página 301

    Vantage CNM User’s Guide 301 C HAPTER 19 CNM Logs 19.1 V ant age CNM Logs Use these screens to view and configure V antage CNM system log preferences. 19.1.1 CNM Logs Y ou c an view system logs for previous day , the last two days or up to on e week here. T o open this screen, click Log & Report in the menu bar and then click CNM Logs in the [...]

  • Página 302

    Chapter 19 CNM Lo gs Vantage CNM User’s Guide 302 The following table describes the labels in this screen. T able 148 LOG & Report > CNM Logs LABEL DESCRIPTION Incident Select one of the general categor ies of events whose logs you want to view from the first list box. Select a more specific type of event whose logs you want to view from t[...]

  • Página 303

    Vantage CNM User’s Guide 303 C HAPTER 20 VRPT The Report menu activates V antage Report. This ch ap ter introduces V antage Report and its role in V antage CNM. Then, it explains how to set up and start V antage Report. Please refer to the V antage Report 3.1 User ’ s Guid e for more detailed information. 20.1 V ant age Report Overview " T[...]

  • Página 304

    Chapter 20 VRPT Vantage CNM User’s Guide 304 20.2 V ant age Report in V ant age CNM V antage Report in V antage CNM is a sp ecial release for V antage CNM only . No additional license is required to use it. V antage Repor t in V antage CNM gene rally supports the capabilities available in the professional versio n of standalone V antage Report, i[...]

  • Página 305

    Chapter 20 VRPT Vantage CNM User’s Guide 305 2 Click CNM System Setting > VRP T Management > Add . Configure the V antage Report instance in V antage CNM, and select the devices that should send log messages to the V antage Report instance. See Section 21.6 on page 316 . When you cli ck Apply , V antage CNM automatically conf igures the sel[...]

  • Página 306

    Chapter 20 VRPT Vantage CNM User’s Guide 306[...]

  • Página 307

    307 P ART VI CNM System Setting CNM System Setting (309) Maintenance (323) Device Owner (327) V antage CNM Software Upgrade (329) License (331) About CNM (333 )[...]

  • Página 308

    308[...]

  • Página 309

    Vantage CNM User’s Guide 309 C HAPTER 21 CNM System Setting Use these screens to configure V ant age CNM server se ttings such as servers configuration, system maintenance, create and define device owner , software upgrade, license management, and about. 21.1 Servers Configuration Y ou can configure the se servers as you install V antage CNM (in [...]

  • Página 310

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 310 Figure 174 CNM System Setting > Configuration > Serv ers > Configur ation The following table describes the fields in this screen. T able 149 CNM System Setting > Configuration > Servers > Configuration LABEL DESCRIPTION V antage CNM Server Public IP Address Select User[...]

  • Página 311

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 31 1 21.1.1 V ant age CNM Se rver Public IP Address If you change the V antage CNM server public IP ad dress, then each (V antage CNM- registered) device’ s Manager IP address must change too. 1 Go to the CNM System Settings > Configur ation > Servers > Configuration screen. 2 Ent[...]

  • Página 312

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 312 Figure 175 CNM System Settin g > Configuration > Servers > S tatus The following table describes the fields in this screen. 21.3 User Access A User is an administrator . Set the maximum number of administrators allowed to log into V antage CNM at one time, V antage CNM idle time[...]

  • Página 313

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 313 User lockout is a protection me chanism to di scourage brute-force passw ord guessing attacks on a device’ s mana gement interface . Y ou can specify a lockout period that must expire befo re entering a fourth password after three incorrect passwords have been entered. Y ou can also fo[...]

  • Página 314

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 314 21.4.1 Notifications Settings Use this screen to decide who should receive e-mail for device and CNM events that may warrant immediate attention such as a VPN tunn el down or a device reboot or a CNM log purge notificati on. De vice Owner is a variable that refers to the e-ma il address [...]

  • Página 315

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 315 21.5 Log Setting Use this screen to set how long the V antage CNM server stores logs and reports and which events the V antage CNM re cords logs for . T o open this screen, click CNM System Setting in the menu bar and then click Configuration > Log Setting in th e navigation panel. Fi[...]

  • Página 316

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 316 The following table describes the labels in this screen. 21.6 VRPT Management V antage CNM also includes V antage Report. See Chapt er 20 on page 303 for information about V a ntage Report in V ant age CNM. Use this screen to manage the V antage Report instances in V antage CNM. T o open[...]

  • Página 317

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 317 21.6.1 Add/Edit VRPT Management Use this screen to configure a VRP T server . T o open this sc reen, click Add or Edit in the CNM System Setting > Config uration > VRP T Management screen. Figure 180 CNM System Setting > Configuration > VRPT Manageme n t > Add/Edit The fol[...]

  • Página 318

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 318 21.7 Certificate Management Overview Some devices can provide certificates (also calle d digital IDs) for users to authenticate the device. Certificates are based on public-private key pairs. A certificate contains the certific ate owner's identity and p ublic key . Certificates pro[...]

  • Página 319

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 319 A certification path is the hierarchy of certif ication authority certificates that validate a certificate. The device does not trust a certificate if any certific ate on its path has expired or been revoke d. Certification authorities maintain directory ser vers with databases of valid [...]

  • Página 320

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 320 The following table describes the labels in this screen. 21.7.3 Create CSR Y ou can create certificate s by entering the requ ested information into th e fields below . Then click Apply . T able 156 CNM System Setting > Configurat ion > Certificate Management LABEL DESCRIPTION Cert[...]

  • Página 321

    Chapter 21 C NM System Setting Vantage CNM User’s Guide 321 Figure 182 CNM System Setting > Conf iguration > Certificate Management > Create CSR The following table describes the labels in this screen. T able 157 Cnm system Setting > Configuration > Certificate Management > Create CSR LABEL DESCRIPTION Certificate Alias T yp e a[...]

  • Página 322

    Chapter 21 CNM Syst em Setting Vantage CNM User’s Guide 322 21.7.4 Import Certificate In this screen, you can Browse for a certificate that has already been downloaded to your computer . Select Apply to complete the certificate import. Figure 183 CNM System Sett ing > Configu ration > Cer tificate Mana gement > Import Certificate The fol[...]

  • Página 323

    Vantage CNM User’s Guide 323 C HAPTER 22 Maintenance Use the Maintenance screens to manage, back up and restore V antage CNM system backup files. Data maintenance includes de vice firmware and configuration files you have uploaded to the V antage CNM server . Y ou c an back up or restore to your computer or V antage CNM. Y ou can choose what doma[...]

  • Página 324

    Chapter 22 Maintenance Vantage CNM User’s Guide 324 22.1.1 Backup Use this screen to save your curre nt V antage CN M system to the V antage CNM server or your computer . Y ou can enter extra information on the file in the Description text box. Backup configuration allo ws you to back up (sav e) the current configura tion to a file on the V antag[...]

  • Página 325

    Chapter 22 Maintenance Vantage CNM User’s Guide 325 22.2 Device Maintenance Use this screen to export or import a device lis t file from/to the V antage CNM. It’ s convenient for you to rebuild the managed device information quickly at one time if you want to reinstall the V antage CNM on the same or another computer . Figure 186 CNM System Set[...]

  • Página 326

    Chapter 22 Maintenance Vantage CNM User’s Guide 326 Figure 188 CNM System Setting > Maintenance > Device List Impor t Successful[...]

  • Página 327

    Vantage CNM User’s Guide 327 C HAPTER 23 Device Owner 23.1 Device Owner This screen list the address book wh ich is a list of personal details of people of device owners. Y ou can add, edit or remove a device owner in this screen. T o associate a device owner with a device, select the person’ s name in the Device Ow ner field when you add or ed[...]

  • Página 328

    Chapter 23 Device Own er Vantage CNM User’s Guide 328 Figure 190 CNM System setting > Device Owner > Add/Edit The following table describes the labels in this screen. T able 162 CNM System Setting > Dev ice Owner > Add/Edit LABEL DESCRIPTION Name T ype the person’s name. Description T ype some extra information about the person. Add[...]

  • Página 329

    Vantage CNM User’s Guide 329 C HAPTER 24 Vantage CNM Software Upgrade 24.1 CNM Sof tware Upgrade Use this screen to view the current V antage CNM software version or perform a software upgrade. Enter the full path of a software file in your computer or cl ick Browse... to locate a software file. Click Upgrade to perform V antag e CNM softwa re up[...]

  • Página 330

    Chapter 24 Vantage CNM Software Upgrade Vantage CNM User’s Guide 330[...]

  • Página 331

    Vantage CNM User’s Guide 331 C HAPTER 25 License 25.1 CNM Licence Use this screen to renew a standard license key to continuely use V antage CNM after the trial period or the old licen se key expires. Click CNM System Setting in the menu bar and then click License in the navigation panel to display the next screen. Figure 192 CNM System Setting &[...]

  • Página 332

    Chapter 25 Lice nse Vantage CNM User’s Guide 332 25.1.1 License Upgrade License key is a licence to manage a spe cific nu mber of ZyXEL devices. It can be found in the iCard. T ype a license ke y to the License Key field and click Apply to increase the maximum device number the V antage CNM is allowed to manage. Click Upgrade in the CNM Sys tem S[...]

  • Página 333

    Vantage CNM User’s Guide 333 C HAPTER 26 About CNM 26.1 About CNM Use this screen to see V antage CNM’ s software version, release date and the copyright. T o open this screen, click CNM System Setting in the menu bar and then click About in the navigation panel. Figure 194 CNM System Se tting > About[...]

  • Página 334

    Chapter 26 About CNM Vantage CNM User’s Guide 334[...]

  • Página 335

    335 P ART VII Account Management User Group (337) Account (341)[...]

  • Página 336

    336[...]

  • Página 337

    Vantage CNM User’s Guide 337 C HAPTER 27 User Group Use these screens to manage V antage CNM user groups. A group is associa ted with the privilege you defined and it is fo r one manageme nt domain. After you create a group, you can associate the user(s) with this group before th e user(s) can perform any functions in V antage CNM. " The use[...]

  • Página 338

    Chapter 27 User Group Vantage CNM User’s Guide 338 The following table describes the fields in this screen. 27.1.1 Add User Group Use this screen to create or edit a “user group” (administrator permission template). T o open this screen, click Add or Edit in the Account Management > Group screen. Figure 196 Account Management > Group &g[...]

  • Página 339

    Chapter 27 Us er Group Vantage CNM User’s Guide 339 The following table describes the fields in this screen. T able 165 Account Management > Group > Add LABEL DESCRIPTION Basic Information Group Name T ype a group name for this tempe rlate. Description T ype the description for the group. Device Access Privileges Click the icon a nd the ass[...]

  • Página 340

    Chapter 27 User Group Vantage CNM User’s Guide 340[...]

  • Página 341

    Vantage CNM User’s Guide 341 C HAPTER 28 Account An account is a user with permissions inhe rited from the associated group. “Root” is the predefined administrator belonging to the Super group. Only “root” or any accounts belonging to Super group can do everyth ing including managing the V antage CNM system. Custom administra tors have no[...]

  • Página 342

    Chapter 28 Accoun t Vantage CNM User’s Guide 342 28.3 Account Use this screen to display a list of all administ rators and root. T o open this sc reen, click Account Management in the menu ba r and then click Account in the navigation panel. Figure 197 Account Manage ment > Accoun t The following table describes the fields in this screen. 28.3[...]

  • Página 343

    Chapter 28 Ac count Vantage CNM User’s Guide 343 Figure 198 Account Manage ment > Accoun t > Add/Edit The following table describes the fields in this screen. T able 167 Account Management > Account > Add/Edit LABEL DESCRIPTION Username T ype the admin istrator login name a ssociated with the password that you log into V antage CNM wi[...]

  • Página 344

    Chapter 28 Accoun t Vantage CNM User’s Guide 344[...]

  • Página 345

    345 P ART VIII T roubleshooting T roubleshooting (347)[...]

  • Página 346

    346[...]

  • Página 347

    Vantage CNM User’s Guide 347 C HAPTER 29 Troubleshooting This chapter offers some sugg estions to solve problems you might encounter . The potential problems are divided in to following categories. • V antage C NM Access and Login • Device Management • Device Firmware Management • V antage Report 29.1 V ant age CNM Access and Login See th[...]

  • Página 348

    Chapter 29 Trou bleshooting Vantage CNM User’s Guide 348 29.2 Device Management V One device always keeps in On_Pending status in the device window . How can I do? A devices with the On_Pending status means there are some pending tasks the V antage CNM should set but has not set to the device. If the device keeps in the status for a long time (fo[...]

  • Página 349

    Chapter 29 Trou bleshooting Vantage CNM User’s Guide 349 29.4 V ant age Report V There is no information in any report for my device. 1 If you just added the device , wait for at least 5 minutes for informatio n to appear in each report. 2 Click CNM System Setting > Configuration > VRP T Management , Make sure the V angtage Report s erver ?[...]

  • Página 350

    Chapter 29 Trou bleshooting Vantage CNM User’s Guide 350[...]

  • Página 351

    351 P ART IX Appendices and Index Product Specification s (353) Setting up Y our Computer ’ s IP Address (357) Pop-up W indows, Java Scripts and Java Permissions (373) IP Addresses and Subnetting (379) IP Address Assignment Conflicts (387) Common Services (391) Importing Certificates (395) Open Software Announcements (401) Legal Information (425)[...]

  • Página 352

    352[...]

  • Página 353

    Vantage CNM User’s Guide 353 A PPENDIX A Product S pecifications This appendix summarizes V antage CNM’ s and V antage Rep ort’ s specifications. V ant age CNM S pecifications This section summarizes V antage CNM’ s specifications. T able 168 Firmware Specifications FEATURE DESCRIPTION Default User Name root Default Password root Object T r[...]

  • Página 354

    Appendix A Product Specifications Vantage CNM User’s Guide 354 Data Maintenance Back up and restor e entire V antage CN M config uration System Management V antage CNM server IP address FTP server Mail server Idle timeout Brute-force password protection Notifica tion recipients Administrator privileges T able 169 Feature Specifications FEATURE DE[...]

  • Página 355

    Appendix A Product Specifications Vantage CNM User’s Guide 355 entrustgsslca Jan 9, 2003 9D:66:6A:CC:FF:D5:F5:43:B4:BF: 8C:16:D1:2B:A8:99 thawtepersonalbasicca Feb 13, 1999 E6:0B:D2:C9:CA:2D: 88:DB:1A:71: 0E:4B:78:EB:02:41 verisignclass1ca Mar 26, 2004 97:60:E8:5 7:5F:D3:50:47:E5:43: 0C:94:36:8A:B0:62 verisignclass1g2ca Ma r 26, 2004 DB:23:3D:F 9[...]

  • Página 356

    Appendix A Product Specifications Vantage CNM User’s Guide 356 V ant age Report S pecifications This section summarizes V antage Report’ s specifications. Se e T able 1 on page 26 for specifications about the time it takes the V antag e Report se rver to process information from devices. baltimorecodesigningca May 1 0, 2002 90:F5:28:49:56:D1:5D[...]

  • Página 357

    Vantage CNM User’s Guide 357 A PPENDIX B Setting up Y our Computer ’ s IP Address All computers must have a 10M or 100M Et hernet adapter card and TCP/IP installed. W indows 95/98/Me/NT/2000/XP , Macin tosh OS 7 and later operating systems and all versions of UNIX/LINUX include the software components you need to install and use TCP/IP on your [...]

  • Página 358

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 358 Figure 199 WIndows 95/98 /Me: Networ k: Configura tion Inst alling Components The Network window Configuration tab displays a list of installed components. Y ou need a network adapter , the TCP/IP protocol and Client for Microsof t Networks. If you need the adapter: 1[...]

  • Página 359

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 359 Configuring 1 In the Network window Configuration tab, select your network adapter's TCP/IP entry and click Properties 2 Click the IP Address tab. • If your IP address is dynamic, select Obtain an IP address automatically . • If you have a static IP address, [...]

  • Página 360

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 360 Figure 201 Windows 95/98/Me : TCP/IP Pr operties: DNS Configuration 4 Click the Gateway tab. • If you do not know you r gateway’ s IP addr ess, remove previously installed gateways. • If you have a gateway IP address, type it in the New gateway field and click A[...]

  • Página 361

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 361 Figure 202 Windows XP: S t art Menu 2 In the Control Panel , double-click Network Connections ( Network and Dial-up Connections in W indow s 2000/NT). Figure 203 Windows XP: Control Panel 3 Right-click Local Area Connection and then click Pr operties .[...]

  • Página 362

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 362 Figure 204 Windows XP: Control Panel: Network Connections: Pro perties 4 Select Internet Protocol (TCP/IP) (under the Genera l tab in W in XP) and then click Properties . Figure 205 Windows XP: Local Area Conne ction Properties 5 The Internet Protocol TCP/IP Propertie[...]

  • Página 363

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 363 Figure 206 Windows XP: Internet Protocol (TCP/IP) Propert ies 6 If you do not know your gateway's IP ad dress, remove any previously installed gateways in the IP Settings tab and click OK . Do one or more of the fo llowing if you want to configure additi onal IP [...]

  • Página 364

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 364 Figure 207 Windows XP: Advanced TCP/IP Properties 7 In the Internet Protocol TCP/IP Pr operties window (the General tab in W indow s XP): • Click Obtain DNS server address automatically if yo u do not know your DNS server IP address(es). • If you know your DNS ser[...]

  • Página 365

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 365 Figure 208 Windows XP: Internet Protocol (TCP/IP) Propert ies 8 Click OK to close the Internet Protocol (TCP/IP) Properties window . 9 Click Close ( OK in W indows 2000/NT) to close the Local Area Connection Properties window . 10 Close the Network Connections w indow[...]

  • Página 366

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 366 Figure 209 Macintosh OS 8/9: Apple Menu 2 Select Ethernet built-in from the Connect via list. Figure 210 Macintosh O S 8/9: TC P/IP 3 For dynamically assigned settings, select Using DHCP Server from the Configure: list. 4 For statically assigned settings, do the follo[...]

  • Página 367

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 367 • T ype your IP address in the IP Address box. • T ype your subnet mask in the Subnet mask box. • T ype the IP address of your device in the Router addr ess box. 5 Close the TCP/IP Contr ol Panel . 6 Click Save if prompted, to save chan ges to your configuratio [...]

  • Página 368

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 368 Figure 212 Macintosh O S X: Netw ork 4 For statically assigned settings, do the following: •F r o m t h e Configure box, select Manually . • T ype your IP address in the IP Address box. • T ype your subnet mask in the Subnet mask box. • T ype the IP address of[...]

  • Página 369

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 369 " Make sure you are logged in as the root administrator . Using the K Desktop Environment (KDE) Follow the steps below to configure your computer IP address using the KDE. 1 Click the Red Hat button (located on the bottom left corner), select System Setting and c[...]

  • Página 370

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 370 • If you have a dyna mic IP address, click Automatically obtain IP address settings with and select dhcp from the drop down list. • If you have a static IP address, click S tatically set IP Addresses and fill in the Address , Sub net mask , and Default Gateway Add[...]

  • Página 371

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 371 Figure 217 Red Hat 9.0: Dynamic IP Address Setting in ifconfig-eth0 • If you have a static IP address, enter static in t he BOOTPROTO= field. T ype IPADDR = followed by the IP address (in do tted decimal notation) and type NETMASK = followed by the subnet mask. The [...]

  • Página 372

    Appendix B Setting up Your Computer’s IP Address Vantage CNM User’s Guide 372 V erifying Settings Enter ifconfig in a terminal screen to ch eck your TCP/IP properties. Figure 221 Red Hat 9.0: Checking TCP/IP Properties [root@localhost]# ifconfig eth0 Link encap:Ethernet HWadd r 00:50:BA:72:5B:44 inet addr:10.1.19.129 Bca st:10.1.19.255 Mask:255[...]

  • Página 373

    Vantage CNM User’s Guide 373 A PPENDIX C Pop-up Windows, Java Script s and Java Permissions In order to use the web configurator you need to allow: • W eb browser pop-up win dows from your device. • Java Scripts (enabled by defa ult). • Java permissions (enabled by default). " Internet Explorer 6 screens are used here. Screens for othe[...]

  • Página 374

    Appendix C Pop-up Windows, Java Scripts and Java Permissions Vantage CNM User’s Guide 374 2 Clear the Block pop-ups check box in the Pop-up Block e r section of the screen. This disables any web po p-up blockers you may have ena bled. Figure 223 Internet Options: Privacy 3 Click Apply to save this setting. Enable pop-up Blockers with Exceptions A[...]

  • Página 375

    Appendix C Pop-up Windows, Java Scr ipts and Java Permissions Vantage CNM User’s Guide 375 Figure 224 Internet Options: Privacy 3 T ype the IP address of your device (the web page that you do not want to have blocked) with the prefix “http://”. For example, http://192.168.167.1. 4 Click Add to move the IP address to the list of Allowed sites [...]

  • Página 376

    Appendix C Pop-up Windows, Java Scripts and Java Permissions Vantage CNM User’s Guide 376 5 Click Close to return to the Privacy screen. 6 Click Apply to save this setting. Java Script s If pages of the web configura tor do not display properly in Internet Explorer, check that Java Scripts are allowed. 1 In Internet Explorer , click T ools , Inte[...]

  • Página 377

    Appendix C Pop-up Windows, Java Scr ipts and Java Permissions Vantage CNM User’s Guide 377 Figure 227 Security Settings - Java Scripting Java Permissions 1 From Internet Explorer , click To o l s , Internet Options and then the Security tab. 2 Click the Custom Level... button. 3 Scroll down to Microsoft VM . 4 Under Java permissions make sure tha[...]

  • Página 378

    Appendix C Pop-up Windows, Java Scripts and Java Permissions Vantage CNM User’s Guide 378 JA V A (Sun) 1 From Internet Explorer , click To o l s , Internet Options and then the Advanced tab. 2 Make sure that Use Java 2 for <applet> under Java (Sun) is sele cted. 3 Click OK to clos e the window . Figure 229 Java (Sun)[...]

  • Página 379

    Vantage CNM User’s Guide 379 A PPENDIX D IP Addresses and Subnetting This appendix introduces IP addresses and subnet masks. IP addresses identify ind ividual devices on a network. Every networking device (includin g computers, servers, routers, printe rs, etc.) ne eds an IP address to communicate across the network. These networking devices a re[...]

  • Página 380

    Appendix D IP Addresses a nd Subnetting Vantage CNM User’s Guide 380 Figure 230 Network Number and Host ID How much of the IP address is the network number and how much is the host ID varies according to the s ubnet mask. Subnet Masks A subnet mask is used to dete rmine which bits are part of th e network number , and which bits are part of the h[...]

  • Página 381

    Appendix D IP Addresses and Subnetting Vantage CNM User’s Guide 381 Subnet masks are expressed in dotted decimal no tation just like IP addresses. The follow ing examples show the binary and decimal not ation for 8-bit, 16-bit, 24-bit an d 29-bit subnet masks. Network Size The size of the network number determines the maximum number of po ssible [...]

  • Página 382

    Appendix D IP Addresses a nd Subnetting Vantage CNM User’s Guide 382 Subnetting Y ou can use subnetting to divide one network into multiple sub-networks. In the following example a network administrator creates two sub-networks to isolate a group of servers from the rest of the c ompany network for security reasons. In this example, the company n[...]

  • Página 383

    Appendix D IP Addresses and Subnetting Vantage CNM User’s Guide 383 Figure 232 Subnetting Example: Af ter Subnetting In a 25-bit subnet the host ID has 7 bits , so each sub-network has a maximum of 2 7 – 2 or 126 possible hosts (a host ID of all zeroes is the subnet’ s address itself, all ones is the subnet’ s broadcast address). 192.168.1.[...]

  • Página 384

    Appendix D IP Addresses a nd Subnetting Vantage CNM User’s Guide 384 Example: Eight Subnet s Similarly , use a 27-bit mask to create eight subnets (000, 00 1, 010, 01 1, 100, 101, 1 10 and 111 ) . The following table shows IP address last octet values for each subnet. T able 181 Subnet 2 IP/SUBNET MASK NETWORK NUMBER LAST OCTET BIT VA L U E IP Ad[...]

  • Página 385

    Appendix D IP Addresses and Subnetting Vantage CNM User’s Guide 385 Subnet Planning The following table is a summary for su bnet planning on a network with a 24-bit network number . The following table is a summary for su bnet planning on a network with a 16-bit network number . 5 128 129 158 159 6 160 161 190 191 7 192 193 222 223 8 224 225 254 [...]

  • Página 386

    Appendix D IP Addresses a nd Subnetting Vantage CNM User’s Guide 386 Configuring IP Addresses Where you obtain your netwo rk number depends on your particular situation. If the ISP or your network administrator assigns yo u a bloc k of registered IP addresses, follow their instructions in selecting the IP addresses and the subnet mask. If the ISP[...]

  • Página 387

    Vantage CNM User’s Guide 387 A PPENDIX E IP Address Assignment Conflict s This appendix describes situations where IP addre ss conflicts may occur . Subscribers with duplicate IP addresses will not be able to access the Internet. Case A: The device is using the same LAN and W AN IP addresses The following figure shows an example where the device [...]

  • Página 388

    Appendix E IP Address Assignment Conflicts Vantage CNM User’s Guide 388 Figure 234 IP Address Conflicts: Case B T o solve this problem, make sure the device LAN IP address is not in the DHCP IP addre ss pool. Case C: The Subscriber IP address is the same as the IP address of a network device The following figure depicts an example where the subsc[...]

  • Página 389

    Appendix E IP Address Assignment Conflicts Vantage CNM User’s Guide 389 Figure 236 IP Address Conflicts: Case D This problem can be solved by adding a VLAN- enabled switch or set the computers to obtain IP addresses dynamically .[...]

  • Página 390

    Appendix E IP Address Assignment Conflicts Vantage CNM User’s Guide 390[...]

  • Página 391

    Vantage CNM User’s Guide 391 A PPENDIX F Common Services The following table l ists some commonly-used se rvices and their associated protocols and port numbers. For a comprehensive list of port numbers, ICMP type/code numbers and services, visit the IANA (Internet Assigned Number Authority) web site. • Name : This is a short, descrip tive name[...]

  • Página 392

    Appendix F Commo n Services Vantage CNM User’s Guide 392 FTP TCP TCP 20 21 File T ra nsfer Program, a program to enable fast transfe r of files, including large files that may not be possible by e-mail. H.323 TCP 1720 NetMeeting uses this protoco l. HTTP TCP 80 Hyper T ext T ransfer Protocol - a client/ server protocol for the world wide web. HTT[...]

  • Página 393

    Appendix F Common Services Vantage CNM User’s Guide 393 RTS P TCP/UDP 554 The Real Time S treaming (media control) Protocol (R TSP) is a remote control for multimedia on the Internet. SFTP TCP 11 5 Simple File Transfer Protocol. SMTP TCP 25 Simple Mail Transfer Protocol is the message-exchange standard for the Internet. SMTP enables you to mo ve [...]

  • Página 394

    Appendix F Commo n Services Vantage CNM User’s Guide 394[...]

  • Página 395

    Vantage CNM User’s Guide 395 A PPENDIX G Importing Certificates This appendix shows importing certificates ex amples using Netscape Na vigator and Internet Explorer 5. This appe ndix uses the ZyW ALL 70 as an example. Other models should be similar . Import V ant age CNM’ s Certificates into Net scape Navigator In Netscape Navigator , you ca n [...]

  • Página 396

    Appendix G Importing Certificates Vantage CNM User’s Guide 396 Figure 238 Login Screen 2 Click Install Certificate to open the Install Certificate wizard. Figure 239 Certificate General Information befor e Import 3 Click Next to begin the Install Certificate wizard.[...]

  • Página 397

    Appendix G Impor ting Certificates Vantage CNM User’s Guide 397 Figure 240 Certificate Import Wizard 1 4 Select where you would like to store the certificate and then click Next . Figure 241 Certificate Import Wizard 2 5 Click Finish to complete the Import Certificate wizard.[...]

  • Página 398

    Appendix G Importing Certificates Vantage CNM User’s Guide 398 Figure 242 Certificate Import Wizard 3 6 Click Ye s to add the V antage CNM certific ate to the root store. Figure 243 Root Certificate S tore[...]

  • Página 399

    Appendix G Impor ting Certificates Vantage CNM User’s Guide 399 Figure 244 Certificate General Information af ter Import[...]

  • Página 400

    Appendix G Importing Certificates Vantage CNM User’s Guide 400[...]

  • Página 401

    Vantage CNM User’s Guide 401 A PPENDIX H Open Sof tware Announcement s Notice Information herein is subject to change withou t notice. Companies, name s, and data used in examples herein are fictitious unless otherwise noted. No part may be reproduced or transmitted in any form or by any means, electronic or mechanical , for any purpos e, except [...]

  • Página 402

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 402 This Product includes ant -contrib 1.0b3 version, axis 1.2.1 version, a[ache-commoms quartz 1.5.2 version, log4j 10 2014 version, j2sh, xerce s 2.8.1 version, apache -any 1.6.5 version, and apache-tomcat 5.0 version under Apache S oftware License Apache License V ersion 2.0, Jan[...]

  • Página 403

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 403 2. Grant of Copyright License. Subject to the terms and conditions of this License, each Contributor hereby grants to Y ou a perpetual, worldwide, no n-exclusive, no-charge, royalty- free, irrevocable copyright license to reproduce, prepare Derivative W orks of, publicly display[...]

  • Página 404

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 404 6. T rademarks. This License does not grant perm ission to use the trade names, trademarks, service marks, or product names of the Licensor , exce pt as required for reasonable and customary use in describing the origin of the W ork and reproducing the conten t of the NOTICE fil[...]

  • Página 405

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 405 Products derived from this softwa re may not be called "Apache", nor may "Apache" ap pear in their name, without prior wr itten permission of the Apache Software Foundatio n. THIS SOFTW ARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED W ARRANT[...]

  • Página 406

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 406 T o protect your rights, we need to make restricti ons that forbid distributors to deny you th ese rights or to ask you to surrender these righ ts. These restrictions translate to certain responsibilities for you if you distribute co pies of the library or if you modify it. For [...]

  • Página 407

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 407 The precise terms and co nditions for copying, distribution and mod ification follow . Pay close attention to the difference between a "work ba sed on the library" and a "work that uses the library". The former contains code derived from the library , whereas[...]

  • Página 408

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 408 function must still compute square roots.) These requirements apply to th e modified work as a whole. If identifiable sections of t hat work are not derived from the Library , and can be reasonably considered independ ent and separate works in themse lves, then this License, and[...]

  • Página 409

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 409 6. As an exception to the Sections above, you ma y also combine or link a "work that uses the Library" with the Library to produce a work containing portions of t he Library , and distribute that work under terms of your choice, p rovided that the terms permit m odific[...]

  • Página 410

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 410 8. Y ou may not copy , modify , sublicense, link with, or distribute the Library except as expressly provided under this License. Any a tte mpt otherwise to copy , modify , sublicense, link with, or distribute the Library is void, and will automatically te rminate your rights un[...]

  • Página 411

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 41 1 14. If you wish to incorporate parts of the Library in to other free programs whose distribution conditions are incompatible with these, write to the author to ask for permission. For software which is copyrighted by the Free Software Fou n dation, write to the Free Software Fo[...]

  • Página 412

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 412 When we speak of free software, we are referri ng to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute co pies of free software (and charge for this serv ic e if you wish), that you receive source code or can get it[...]

  • Página 413

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 413 b) Y ou must cause any work that you distribute or p ublish, that in whole or in part contains or is derived from the Program or any part thereof, to be licensed as a whole at no charge to all third parties under the terms of this License. c) If the modified program norm ally re[...]

  • Página 414

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 414 4. Y ou may not copy , modify , sublicense, or distribute the Program except as expressly provided under this License. Any attempt otherw ise to copy , modify , sublicense or distribute the Program is void, and will au tomaticall y terminate your rights under this License. Howev[...]

  • Página 415

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 415 10. If you wish to incorporate parts of the Program into o ther free programs whose distribution conditions are different, write to the author to ask for permission. For software which is copyrighted by the Free Software Foun dation, write to the Free Software Foundation; we som[...]

  • Página 416

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 416 This software is provided "AS IS," with out a warranty of any kind. ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENT A TIO NS AND W ARRANTIES, INCLUDING ANY IMPLIED W ARRANTY OF MERCHANT ABILITY , FITNESS FOR A P AR TICULAR PURPOSE OR NON-INFRINGEMENT , A RE HEREBY EXCLUDE[...]

  • Página 417

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 417 DISTRIBUTING THE SOFTW ARE OR ITS DERIV A TIVES. IN NO EVENT WILL SUN MICROSYSTEMS, INC. OR ITS LICENS ORS BE LIABLE FOR ANY LOST REVENUE, PROFIT OR DA T A, OR FOR DIRECT , INDIRECT , SPECIAL, CONSEQUENTIAL, INCIDENT AL OR PUNITIVE DAMAGES, HOWEVER CAUSED AND REGARDLESS OF THE T[...]

  • Página 418

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 418 software intended to supersed e any component(s) of the Redi stributables (unless otherwise specified in the applicable README file), (iii) you do not remove or alter any proprietary legends or notices contained in o r on the Redistributables, (iv) you only distribute the Redist[...]

  • Página 419

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 419 8. T rademarks an d Logos. Y ou acknowledge and agree as between yo u and Sun that Sun owns the SUN, SOLARIS, JA V A, JINI, FOR TE, and iPLANET trademarks and all SUN, SOLARIS, JA V A, JINI, FOR TE, and iPLANET -related trademarks, service marks, logos and other brand designatio[...]

  • Página 420

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 420 20 W ARRANTIES OF MERCHANT ABILITY AND FITNESS FOR A P AR TICULAR PURPOSE ARE 21 DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR 22 ANY DIRECT , INDIRECT , INCIDENT AL, SPECIAL, EXEMPLAR Y , OR CONSEQUENTIAL DAMAGES 23 (INCLUDING , BUT NOT LIMITED[...]

  • Página 421

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 421 The Software a nd Documentation conta in mate rial that is protected by United States Copyright Law and trade secre t law , and by in ternational treaty provisions. All rights not granted to you herein are expressly reserved by ZyXEL. Y ou may not remove any proprietary notice o[...]

  • Página 422

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 422 BUSINESS INFORMA TION) ARISING OUT OF THE USE OF OR INABILITY T O USE THE PROGRAM, OR FOR ANY C LAIM BY ANY OTHER P AR TY , EV EN IF ZyXEL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. ZyXEL'S AGGREGA TE LIABILITY WITH RESPECT T O ITS OBLIGA TIONS UNDER THIS AGREEMEN[...]

  • Página 423

    Appendix H Open So ftware Announcements Vantage CNM User’s Guide 423 only be effective if it is in writing and signed by both parties hereto. If any part of this License Agreement is found invalid or unenforceable by a court of competent jurisdiction, the remainder of this License Agreement shall be interpreted so as to reasonably effect the inte[...]

  • Página 424

    Appendix H Open Softwa re Announcements Vantage CNM User’s Guide 424[...]

  • Página 425

    Vantage CNM User’s Guide 425 A PPENDIX I Legal Information Copyright Copyright © 2008 by ZyXEL Communications Corporation. The contents of this publication may not be reprod uced in any part or as a whole, transcribed, stored in a retrieval system, tran slated into any language, or transmitted in any form or by any means, el ectronic, mechanical[...]

  • Página 426

    Appendix I Legal Info rmation Vantage CNM User’s Guide 426 Note Repair or replacement, as provided under this warranty , is the exclusive remedy of the purchaser . This warranty is in lieu of all othe r warranties, express or implied, including any implied warranty of merchantability or fitness fo r a particular use or purpose. ZyXEL shall in no [...]

  • Página 427

    Vantage CNM User’s Guide 427 A PPENDIX J Customer Support In the event of problems that cannot be solved by using this manual, you should contact your vendor . If you cannot contact yo ur vendor , then contac t a ZyXEL office for the region in which you bought the dev ice. Regional of fices are listed below (see also http:// www .zyxel.com/web/co[...]

  • Página 428

    Appendix J Custo mer Support Vantage CNM User’s Guide 428 • Address: 1005F , ShengGao Internationa l T ower , No.137 XianXia Rd., Shanghai • W eb: http://www .zyxel.cn Cost a Rica • Support E-mail: soporte@zyxel.co.cr • Sales E-mail: sales@zyxel.co.cr • T elephone: +506-2017878 • Fax: +506-2 015098 • W eb: www .zyxel.co.cr • Re g [...]

  • Página 429

    Appendix J Customer Support Vantage CNM User’s Guide 429 Germany • Support E-mail: support@zyxel.de • Sales E-mail: sales@zyxel.de • T elephone: +49-2405-6909-69 • Fax: +49-2405-6909-99 • W eb: www .zyxel.de • Re g u la r M ai l : ZyXEL Deutschland GmbH., Adenauerstr . 20/A2 D-52146, W uerselen, Germany Hungary • Support E-mail: sup[...]

  • Página 430

    Appendix J Custo mer Support Vantage CNM User’s Guide 430 Malaysia • Support E-mail: support@zyxel.com.my • Sales E-mail: sales@zyxel.com.my • T elephone: +603-8076-9933 • Fax: +603-8076- 9833 • W eb: http://www .zyxel.com.my • Regular Mail: ZyXEL Malaysia Sdn Bhd., 1-02 & 1-03, Jalan Kenari 17F , Bandar Puchong Jaya, 47100 Puchon[...]

  • Página 431

    Appendix J Customer Support Vantage CNM User’s Guide 431 Singapore • Support E-mail: support@zyxel.com.sg • Sales E-mail: sales@zyxel.com.sg • T elephone: +65-6899-6678 • Fax: +65-6899-8887 • W eb: http://www .zyxel.com.sg • Regular Mail: ZyXEL Singapore Pte Ltd., No. 2 International Business Park, The Strategy #03-28, Sin gapore 6099[...]

  • Página 432

    Appendix J Custo mer Support Vantage CNM User’s Guide 432 T urkey • Support E-mail: cso@zyxel.com.tr • T elephone: +90 212 222 55 22 • Fax: +90-212-220-2 526 • W eb: http:www .zyxel.com.tr • Address: Kaptanpasa Mahallesi Piyalep asa Bulvari Ortadogu Plaza N:14/13 K:6 Okmeydani/Sisli Istanbul/T urkey Ukraine • Support E-mail: su pport@[...]

  • Página 433

    Index Vantage CNM User’s Guide 433 Index Numerics 3G introduction 85 3G . see third generation 85 A administrators idle timeout 312 maximum number logged in 312 root 341 storing in address book 327 super 341 types of 341 ADP (Anomaly Detection and Prevention) 165 AES 134 , 138 alarms 283 classifications 283 clearing 283 notifying device owners 31[...]

  • Página 434

    Index Vantage CNM User’s Guide 434 icons 38 right-click 39 FTP server 309 Full Mesh 259 , 260 function window 45 G group configuration 291 , 294 , 296 H h_CNMSystem_DevOwner 327 Hub & S poke 259 , 260 I IANA 386 icons devices 40 folders 38 views 38 idle timeout 36 , 312 IE 7.0 security risk messages 48 inconsistencies between CNM and device 2[...]

  • Página 435

    Index Vantage CNM User’s Guide 435 monitoring 253 restoring 233 updating 253 SMTP server 309 status monitor 298 , 299 subnet 379 subnet mask 380 subnetting 382 subscription services activating 253 monitoring licenses 252 notifications 313 , 314 upgrading 253 super administrators 341 syntax conventions 5 system certificate 318 log messages 301 sys[...]

  • Página 436

    Index Vantage CNM User’s Guide 436[...]

  • Página 437

    Index Vantage CNM User’s Guide 437[...]

  • Página 438

    Index Vantage CNM User’s Guide 438[...]