Chapter 6 Configuration Basics

6.6 Objects

Objects store information and are referenced by other features. If you update this information in response to changes, the ZyWALL automatically propagates the change through the features that use the object. Move your cursor over a configuration object that has a magnifying-glass icon (such as a user group, address, address group, service, service group, zone, or schedule) to display basic information about the object.

The following table introduces the objects. You can also use this table when you want to delete an object because you have to delete references to the object first.

Table 18 Objects Overview

OBJECT

WHERE USED

user/group

See the User/Group section on page 114 for details on users and user

 

groups.

 

 

address

VPN connections (local / remote network, NAT), policy routes

 

(criteria, next-hop [HOST], NAT), authentication policies, firewall,

 

application patrol (source, destination), content filter, NAT (HOST),

 

user settings (force user authentication), address groups, remote

 

management (System)

 

 

address group

Policy routes (criteria), firewall, application patrol (source,

 

destination), content filter, user settings (force user authentication),

 

address groups, remote management (System)

 

 

service, service

Policy routes (criteria, port triggering), firewall, service groups, log

group

(criteria)

 

 

schedule

Policy routes (criteria), authentication policies, firewall, application

 

patrol, content filter, user settings (force user authentication)

 

 

AAA server

Authentication methods

 

 

authentication

VPN gateways (extended authentication), WWW (client

methods

authentication), L2TP VPN

 

 

certificates

VPN gateways, WWW, SSH, FTP

 

 

SSL Application

SSL VPN

 

 

Endpoint Security

Authentication policies, SSL VPN

 

 

6.6.1 User/Group

Use these screens to configure the ZyWALL’s administrator and user accounts. The ZyWALL provides the following user types.

Table 19 User Types

TYPE

ABILITIES

admin

Change ZyWALL configuration (web, CLI)

 

 

limited-admin

Look at ZyWALL configuration (web)

 

 

user

Access network services, browse user-mode commands (CLI)

 

 

114

 

ZyWALL USG 2000 User’s Guide