ZyWALL 5/35/70 Series User’s Guide

 

Table 45 DMZ (continued)

 

 

 

 

LABEL

DESCRIPTION

 

 

 

 

RIP Version

The RIP Version field controls the format and the broadcasting method of the RIP

 

 

packets that the ZyWALL sends (it recognizes both formats when receiving). RIP-

 

 

1 is universally supported but RIP-2 carries more information. RIP-1 is probably

 

 

adequate for most networks, unless you have an unusual network topology. Both

 

 

RIP-2Band RIP-2Msends the routing data in RIP-2 format; the difference being

 

 

that RIP-2Buses subnet broadcasting while RIP-2Muses multicasting.

 

 

Multicasting can reduce the load on non-router machines since they generally do

 

 

not listen to the RIP multicast address and so will not receive the RIP packets.

 

 

However, if one router uses multicasting, then all routers on your network must

 

 

use multicasting, also. By default, RIP direction is set to Both and the Version set

 

 

to RIP-1.

 

Multicast

Select IGMP V-1or IGMP V-2or None. IGMP (Internet Group Multicast Protocol)

 

 

is a network-layer protocol used to establish membership in a Multicast group - it

 

 

is not used to carry user data. IGMP version 2 (RFC 2236) is an improvement

 

 

over version 1 (RFC 1112) but IGMP version 1 is still in wide use. If you would like

 

 

to read more detailed information about interoperability between IGMP version 2

 

 

and version 1, please see sections 4 and 5 of RFC 2236.

 

DHCP Setup

 

 

 

 

 

DHCP

DHCP (Dynamic Host Configuration Protocol, RFC 2131 and RFC 2132) allows

 

 

individual clients (workstations) to obtain TCP/IP configuration at startup from a

 

 

server. Unless you are instructed by your ISP, leave this field set to Server. When

 

 

configured as a server, the ZyWALL provides TCP/IP configuration for the clients.

 

 

When set as a server, fill in the IP Pool Starting Address and Pool Size fields.

 

 

Select Relay to have the ZyWALL forward DHCP requests to another DHCP

 

 

server. When set to Relay, fill in the DHCP Server Address field.

 

 

Select None to stop the ZyWALL from acting as a DHCP server. When you select

 

 

None, you must have another DHCP server on your LAN, or else the computers

 

 

must be manually configured.

 

IP Pool Starting

This field specifies the first of the contiguous addresses in the IP address pool.

 

Address

 

 

Pool Size

This field specifies the size, or count of the IP address pool.

 

 

 

 

DHCP Server

Type the IP address of the DHCP server to which you want the ZyWALL to relay

 

Address

DHCP requests. Use dotted decimal notation. Alternatively, click the right mouse

 

 

button to copy and/or paste the IP address.

 

Windows

 

 

Networking

 

 

(NetBIOS over

 

 

TCP/IP)

 

 

Allow between DMZ

Select this check box to forward NetBIOS packets from the LAN to the DMZ and

 

and LAN

from the DMZ to the LAN. If your firewall is enabled with the default policy set to

 

 

block DMZ to LAN traffic, you also need to enable the default DMZ to LAN firewall

 

 

rule that forwards NetBIOS traffic.

 

 

Clear this check box to block all NetBIOS packets going from the LAN to the DMZ

 

 

and from the DMZ to the LAN.

 

Allow between DMZ

Select this check box to forward NetBIOS packets from the WAN to the DMZ and

 

and WAN

from the DMZ to the WAN.

 

 

Clear this check box to block all NetBIOS packets going from the WAN to the

 

 

DMZ and from the DMZ to the WAN.

Chapter 8 DMZ Screens

160