Chapter 6 Configuration Basics

6.3 Terminology in the ZyWALL

This section highlights some terminology or organization for ZLD-based ZyWALLs.

Table 15 ZLD ZyWALL Terminology

FEATURE / TERM

ZLD ZYWALL FEATURE / TERM

IP alias

Virtual interface

 

 

Gateway policy

VPN gateway

 

 

Network policy (IPSec SA)

VPN connection

 

 

Source NAT (SNAT)

Policy route

 

 

Trigger port, port triggering

Policy route

 

 

Address mapping

Policy route

 

 

Address mapping (VPN)

IPSec VPN

 

 

Interface bandwidth management

Interface

(outbound)

 

 

 

OSI level-7 bandwidth

Application patrol

management

 

 

 

General bandwidth management

Policy route

 

 

6.4 Packet Flow

Here is the order in which the ZyWALL applies its features and checks.

Traffic in > Defragmentation > ALG > Destination NAT > Routing > Stateful Firewall > ADP > Application Classification > IDP > Anti-virus > Application Patrol > Content Filter > Anti-Spam > SNAT > Bandwidth Management > Traffic Out.

 

91

ZyWALL USG 50 User’s Guide