Table of Contents

7.3 How to Configure Load Balancing ......................................................................................

115

7.3.1 Set Up Available Bandwidth on Ethernet Interfaces .................................................

115

7.3.2 Configure the WAN Trunk .........................................................................................

116

7.4 How to Set Up an IPSec VPN Tunnel .................................................................................

118

7.4.1 Set Up the VPN Gateway ..........................................................................................

119

7.4.2 Set Up the VPN Connection .....................................................................................

120

7.4.3 Configure Security Policies for the VPN Tunnel .......................................................

121

7.5 How to Configure User-aware Access Control ..................................................................

122

7.5.1 Set Up User Accounts ..............................................................................................

122

7.5.2 Set Up User Groups .................................................................................................

123

7.5.3 Set Up User Authentication Using the RADIUS Server ...........................................

124

7.5.4 Web Surfing Policies With Bandwidth Restrictions ..................................................

126

7.5.5 Set Up MSN Policies ................................................................................................

129

7.5.6 Set Up Firewall Rules ...............................................................................................

130

7.6 How to Use a RADIUS Server to Authenticate User Accounts based on Groups .............

131

7.7 How to Use Endpoint Security and Authentication Policies ...............................................

133

7.7.1 Configure the Endpoint Security Objects .................................................................

133

7.7.2 Configure the Authentication Policy .........................................................................

135

7.8 How to Configure Service Control .....................................................................................

136

7.8.1 Allow HTTPS Administrator Access Only From the LAN .........................................

137

7.9 How to Allow Incoming H.323 Peer-to-peer Calls .............................................................

139

7.9.1 Turn On the ALG ......................................................................................................

140

7.9.2 Set Up a NAT Policy For H.323 ................................................................................

140

7.9.3 Set Up a Firewall Rule For H.323 ............................................................................

142

7.10 How to Allow Public Access to a Web Server ..................................................................

143

7.10.1 Create the Address Objects ...................................................................................

144

7.10.2 Configure NAT ........................................................................................................

144

7.10.3 Set Up a Firewall Rule ...........................................................................................

145

7.11 How to Use an IPPBX on the DMZ ..................................................................................

146

7.11.1 Turn On the ALG ....................................................................................................

148

7.11.2 Create the Address Objects ...................................................................................

148

7.11.3 Setup a NAT Policy for the IPPBX ..........................................................................

149

7.11.4 Set Up a WAN to DMZ Firewall Rule for SIP ..........................................................

150

7.11.5 Set Up a DMZ to LAN Firewall Rule for SIP ...........................................................

151

7.12 How to Use Multiple Static Public WAN IP Addresses for LAN to WAN Traffic ...............

152

7.12.1 Create the Public IP Address Range Object ..........................................................

152

7.12.2 Configure the Policy Route ....................................................................................

153

Part II: Technical Reference ................................................................

155

Chapter 8

 

Dashboard .............................................................................................................................

157

14

 

ZyWALL USG 50 User’s Guide