ZyXEL Communications 100 Series, 200 Series Configuration Basics, 5.1Object-basedConfiguration

Configuration Basics

This section provides information to help you configure the ZyWALL effectively. Some of it is helpful when you are just getting started. Some of it is provided for your reference when you configure various features in the ZyWALL.

•Section 5.1 on page 109 introduces the ZyWALL’s object-based configuration.

•Section 5.2 on page 110 introduces zones, interfaces, and port roles.

•Section 5.3 on page 112 introduces some differences in terminology and organization between the ZyWALL and other routers, particularly ZyNOS routers.

•Section 5.4 on page 113 identifies the features you should configure before and after you configure the main screens for each feature. For example, if you want to configure a trunk for load-balancing, you should configure the member interfaces before you configure the trunk. After you configure the trunk, you should configure a policy route for it as well.

(You might also have to configure criteria for the policy route.)

•Section 5.5 on page 121 identifies the objects that store information used by other features.

•Section 5.6 on page 122 introduces some of the tools available for system management.

5.1Object-based Configuration

The ZyWALL stores information or settings as objects. You use these objects to configure many of the ZyWALL’s features and settings. Once you configure an object, you can reuse it in configuring other features.

When you use the Objects screens to change the setting or information in an object, the ZyWALL automatically updates all the settings or rules that use the object. For example, if you create a schedule object, you can have firewall, application patrol, content filter, and other settings use it. If you modify the schedule, all the firewall, application patrol, content filter, and other settings that use the schedule will apply the updated schedule.

You can create address objects based on an interface’s IP address, subnet, or gateway. The ZyWALL automatically updates every rule or setting that uses these objects whenever the interface’s IP address settings change. For example, if you change LAN1’s IP address, the ZyWALL automatically updates the rules or settings that use the interface-based, LAN1 subnet address object.

You can use the Objects screens to create objects before you configure features that use them. If you are in a screen that uses objects, you can also usually select Create Object to open a screen where you can configure a new object.

For a list of common objects, see Section 5.5 on page 121.

	109
ZyWALL USG 100/200 Series User’s Guide	109