ZyXEL Communications ZYWALL 5 - V4.04 Guía de usuario descargar pdf (Pagina 150)

ZyXEL Confidential

404XD3C0.docx

150/181

(1) Enable Firewall, setup a WAN2LAN firewall rule for H.323 service

(2) Enable NAT port forwarding for port 1720(H.323) to PC 192.168.1.33

(3) PC1 and PC2 use Netmeeting, PC2 call PC1.

(4) Netmeeting application traffic will be blocked by Firewall, you will see a lot of

Firewall blocked log in Centralized LOG.

48. [BUG FIX]

Symptom: After VPN tunnel is established, user will see DPD packet while traffic

still can be transferred through tunnel.

Condition:

PC1-------- ZyWALL-A ============= ZyWALL-B ------- PC2 IPSec tunnel

(1) Configure VPN tunnel between ZyWALL-A and ZyWALL-B.

(2) In ZyWALL-A eWC->VPN->Global Setting, set Output Idle Timer = 120.

(3) Reboot ZyWALL-A.

(4) PC1 ping PC2 to trigger tunnel.

(5) after tunnel is established, users will see ZyWALL-A's LOG show DPD packets.

49. [ENHANCEMENT] BWM children's bandwidth's sum will not exceed parent’s.

For example, the bandwidth of WAN interface is 50000 kbps. The sum of all

children's bandwidth can not exceed 50000 kbps

Modifications in V3.64(XD.0)b1 | 12/17/2004

1. [ENHANCEMENT] Redesign IPSec mechanism to comply with ICSA Labs 1.1D

IPSec Certification Testing.

New feature added :

(1) Multiple Proposal.

(2) Support Nail Up, Dead Peer Detection, Control Ping.

(3) Separate IPSec SA (Phase 2) from IKE SA (Phase 1), multiple IPSec SAs can bind

to one the same IKE SA. (Multiple policy)

(4) Add a “Global Setting” tab in eWC->VPN which contains some timer settings.

(5) IKE and manual key rules have their setting pages respectively in eWC->VPN.

(6) Remove the VPN setup page (SMT 27)

(7) Redesign lots of IPSec CI command.

2. [ENHANCEMENT] Support Port Restricted Cone NAT.

3. [ENHANCEMENT] Redesign eWC->BW MGMT->Class Setup page.

4. [ENHANCEMENT] Enable "ip alg" command in bridge mode.

5. [ENHANCEMENT] Add the eWC>CONTENT FILTER>Cache and

eWC>DNS>Cache GUI.

(1) Add total cache entry number info.

(2) Remove the "Port" info in URL Cache Entry table.

(3) The "Action" in URL Cache Entry table shows "Blocked" first by default.

(4) The URL entry in URL Cache Entry table aligns to the left.

(5) On the URL Cache Entry table, if the length of a URL entry is over 50, it will be

truncated to 50 characters, with three trailing dots (...) appended.

(6) To adjust the note font size in eWC>DNS>Cache GUI.

6. [ENHANCEMENT] Popup message improvement: "Delete this rule?" => "Delete

1 2 ... 145 146 147 148 149 150 151 152 153 154 155 ... 180 181

Comentarios a estos manuales

Sin comentarios

ZyXEL Communications ZYWALL 5 - V4.04 Guía de usuario Pagina 150

Comentarios a estos manuales

Relacionado con productos y manuales para Redes ZyXEL Communications ZYWALL 5 - V4.04