Chapter 5 Configuration Basics
5.5 Objects
Objects store information and are referenced by other features. If you update this information in response to changes, the ZyWALL automatically propagates the change through the features that use the object.
The following table introduces the objects. You can also use this table when you want to delete an object because you have to delete references to the object first.
Table 29 Objects Overview
OBJECT | WHERE USED |
user/group | See the User/Group section for details on users and user groups. |
|
|
address | VPN connections (local / remote network, NAT), policy routes (criteria, |
| [HOST], NAT), firewall, application patrol (source, destination), content filter, |
| virtual server (HOST), user settings (force user authentication), address groups, |
| remote management (System) |
|
|
address group | Policy routes (criteria), firewall, application patrol (source, destination), content |
| filter, user settings (force user authentication), address groups, remote |
| management (System) |
|
|
service, service | Policy routes (criteria, port triggering), firewall, service groups, log (criteria) |
group |
|
|
|
schedule | Policy routes (criteria), firewall, application patrol, content filter, user settings |
| (force user authentication) |
|
|
AAA server | Authentication methods |
|
|
authentication | VPN gateways (extended authentication), WWW (client authentication), L2TP |
methods | VPN, WLAN security |
|
|
certificates | VPN gateways, WWW, SSH, FTP |
|
|
SSL Application | SSL VPN |
|
|
5.5.1 User/Group
Use these screens to configure the ZyWALL’s administrator and user accounts. The ZyWALL provides the following user types.
Table 30 User Types
TYPE | ABILITIES |
Admin | Change ZyWALL configuration (web, CLI) |
|
|
Look at ZyWALL configuration (web) | |
|
|
User | Access network services, browse |
|
|
Guest | Access network services |
|
|
The same as a User or a Guest. The ZyWALL looks for the specific type in an | |
| external authentication server. If the type is not available, the ZyWALL applies |
| default settings. |
|
|
If you want to force users to log in to the ZyWALL before the ZyWALL routes traffic for them, you might have to configure prerequisites first.
MENU ITEM(S) | Object > User/Group | |
PREREQUISITES | Addresses, address groups, schedules. The prerequisites are only used in | |
policies to force user authentication | ||
| ||
|
|
| 121 |
ZyWALL USG 100/200 Series User’s Guide | |
|
|