Chapter 2 Features and Applications

Application Patrol

Application patrol (App. Patrol) manages instant messenger (IM), peer-to-peer (P2P) applications like MSN and BitTorrent. You can even control the use of a particular application’s individual features (like text messaging, voice, video conferencing, and file transfers). Application patrol has powerful bandwidth management including traffic prioritization to enhance the performance of delay-sensitive applications like voice and video. You can also use an option that gives SIP priority over all other traffic. This maximizes SIP traffic throughput for improved VoIP call sound quality.

2.2 Packet Flow

The following is the key used to describe the packet flow in the ZyWALL.

Table 4 Packet Flow Key

Ethernet

The interface on which the packet is received or sent

 

 

VLAN

Virtual LAN

 

 

Encap

The PPPoE or PPTP encapsulation used

 

 

 

 

ALG

Application Layer Gateway

 

 

DNAT

Destination NAT

 

 

 

 

Routing

Routing includes policy routes, interface routing, static routes and load balancing

 

for example.

 

 

 

 

FW

Firewall (Through ZyWALL)

 

 

zFW

Firewall (To ZyWALL)

 

 

IDP

Intrusion Detection & Protection

 

 

ADP

Anomaly Detection and Protection

 

 

AP

Application Patrol

 

 

AS

Anti-spam

 

 

CF

Content Filtering

 

 

 

 

SNAT

Source NAT

 

 

IPSec D/E

VPN Decryption/Encryption

 

 

BWM

Bandwidth Management

 

 

RM

Remote Management (System)

 

 

AV

Anti-Virus

 

 

2.2.1 Interface to Interface (Through ZyWALL)

Ethernet -> VLAN -> Encap -> ALG -> DNAT-> Routing -> FW -> IDP -> AP-> CF -> AV -> AS -> SNAT -> BWM -> Encap -> VLAN -> Ethernet

 

59

ZyWALL USG 100/200 Series User’s Guide