Home » ZyXEL Manuals » Networking » ZyXEL EX3510-B0 » Manual Viewer

ZyXEL EX3510-B0 User Guide - Page 202

Access Control

Add to My Manuals
Save this manual to your list of manuals

Page 202 highlights

Chapter 16 Firewall The following table describes the labels in this screen. Table 79 Security > Firewall > Protocol: Add/Edit LABEL DESCRIPTION Service Name Enter a unique name (up to 32 printable English keyboard characters, including spaces) for your customized port. Description Enter a description for your customized port. Protocol Choose the IP protocol (TCP, UDP, ICMP, ICMPv6, or Other) that defines your customized port from the drop-down list box. Select Other to be able to enter a protocol number. Protocol Number This field is displayed if you select Other as the protocol. Enter the protocol number of your customized port. Source Port This field is displayed if you select either the TCP or UDP protocol. You may set it to Any, Single, or Range and enter the Port Number or range of Port Numbers for your source port. Destination Port This field is displayed if you select either the TCP or UDP protocol. You may set it to Any, Single, or Range and enter the Port Number or range of Port Numbers for your destination port. ICMPv6type This field is displayed if you select the ICMPv6 protocol. From the drop-down menu, select which type value you would like to use. Cancel Click Cancel to exit this screen without saving any changes. OK Click OK to save your changes. 16.4 Access Control Click Security > Firewall > Access Control to display the following screen. An Access Control List (ACL) rule is a manually-defined rule that can accept, reject, or drop incoming or outgoing packets from your network. This screen displays a list of the configured incoming or outgoing filtering rules. Figure 124 Security > Firewall > Access Control The following table describes the labels in this screen. Table 80 Security > Firewall > Access Control LABEL DESCRIPTION Add New ACL Rule Click this to add a filter rule for incoming or outgoing IP traffic. # This is the index number of the entry. Status The yellow bulb signifies that the Access Control List rule is active. Name This displays the name of the rule. Src IP This displays the source IP addresses to which this rule applies. Please note that a blank source address is equivalent to Any. Dst IP This displays the destination IP addresses to which this rule applies. Please note that a blank destination address is equivalent to Any. EX3510-B0 User's Guide 202

Section	Page
EX3510-B0	1
Document Conventions	3
Contents Overview	4
Table of Contents	6
User’s Guide	15
Introducing the Zyxel Device	16
1.1 Overview	16
1.2 Example Applications	16
1.2.1 Internet Access	16
1.2.2 Dual-Band WiFi	17
1.3 Ways to Manage the Zyxel Device	18
1.4 Good Habits for Managing the Zyxel Device	19
1.5 Hardware	19
1.5.1 Front Panel	19
1.5.2 Rear Panel	21
1.5.3 WPS Button	23
1.5.4 RESET Button	23
Web Configurator	24
2.1 Overview	24
2.1.1 Accessing the Web Configurator	24
2.2 Web Configurator Layout	27
2.2.1 Navigation Panel	27
Quick Start Wizard	33
3.1 Overview	33
3.2 Wizard Setup	33
3.2.1 Time Zone	33
3.2.2 Internet	34
3.2.3 WiFi	36
Tutorials	38
4.1 Overview	38
4.2 Setting Up a Secure Wireless Network	38
4.2.1 Configuring the Wireless Network Settings	38
4.2.2 Using WPS	40
4.2.3 Without WPS	44
4.3 Setting Up Multiple Wireless Groups	45
4.4 Configuring Static Route for Routing to Another Network	49
4.5 Configuring QoS Queue and Class Setup	51
4.6 Access the Zyxel Device Using DDNS	55
4.6.1 Registering a DDNS Account on www.dyndns.org	55
4.6.2 Configuring DDNS on Your Zyxel Device	56
4.6.3 Testing the DDNS Setting	56
4.7 Configuring the MAC Address Filter	57
Technical Reference	59
Connection Status	60
5.1 Overview	60
5.1.1 Layout Icon	60
5.1.2 Connectivity	61
5.1.3 System Info	62
5.2 WiFi Settings	64
5.3 Guest WiFi Settings	66
5.4 LAN Settings	68
5.5 Parental Control	69
5.5.1 Create/Edit a Parental Control Profile	70
5.5.2 Define a Schedule	71
Broadband	73
6.1 Overview	73
6.1.1 What You Can Do in this Chapter	73
6.1.2 What You Need to Know	73
6.1.3 Before You Begin	76
6.2 Broadband Settings	76
6.2.1 Add/Edit Internet Connection	77
6.3 Technical Reference	84
Wireless	87
7.1 Wireless Overview	87
7.1.1 What You Can Do in this Chapter	87
7.1.2 What You Need to Know	87
7.2 Wireless General Settings	88
7.2.1 No Security	91
7.2.2 More Secure (Recommended)	91
7.3 Guest/More AP	93
7.3.1 Edit Guest/More AP Settings	93
7.4 MAC Authentication	96
7.4.1 Add/Edit MAC Addresses	97
7.5 WPS Settings	97
7.6 WMM Settings	99
7.7 Others Settings	100
7.8 Channel Status Settings	102
7.9 MESH	103
7.10 Technical Reference	104
7.10.1 Wireless Network Overview	104
7.10.2 Additional Wireless Terms	106
7.10.3 Wireless Security Overview	106
7.10.4 Signal Problems	108
7.10.5 BSS	108
7.10.6 MBSSID	109
7.10.7 Preamble Type	109
7.10.8 WiFi Protected Setup (WPS)	110
Home Networking	117
8.1 Home Networking Overview	117
8.1.1 What You Can Do in this Chapter	117
8.1.2 What You Need To Know	117
8.1.3 Before You Begin	119
8.2 LAN Setup	119
8.3 LAN Static DHCP	123
8.4 UPnP Settings	125
8.4.1 Turning on UPnP in Windows 7 Example	126
8.4.2 Turning on UPnP in Windows 10 Example	128
8.5 LAN Additional Subnet	130
8.6 STB Vendor ID	132
8.7 Wake on LAN	132
8.8 TFTP Server Name	133
8.9 Technical Reference	134
8.9.1 LANs, WANs and the Zyxel Device	134
8.9.2 DHCP Setup	134
8.9.3 DNS Server Addresses	135
8.9.4 LAN TCP/IP	135
Routing	137
9.1 Overview	137
9.2 Static Route Settings	137
9.2.1 Add/Edit Static Route	138
9.3 DNS Route	140
9.3.1 Add DNS Route	140
9.4 Policy Route	141
9.4.1 Add/Edit Policy Route	143
9.5 RIP Settings	144
Quality of Service (QoS)	145
10.1 QoS Overview	145
10.1.1 What You Can Do in this Chapter	145
10.2 What You Need to Know	146
10.3 Quality of Service General Settings	147
10.4 Queue Setup	149
10.4.1 Adding a QoS Queue	150
10.5 QoS Classification Setup	151
10.5.1 Add/Edit QoS Class	152
10.6 QoS Shaper Setup	156
10.6.1 Add/Edit a QoS Shaper	157
10.7 QoS Policer Setup	157
10.7.1 Add/Edit a QoS Policer	158
10.8 QoS Monitor	160
10.9 Technical Reference	161
Network Address Translation (NAT)	166
11.1 NAT Overview	166
11.1.1 What You Can Do in this Chapter	166
11.1.2 What You Need To Know	166
11.2 Port Forwarding	167
11.2.1 Add/Edit Port Forwarding	169
11.3 Port Triggering	171
11.3.1 Add/Edit Port Triggering Rule	173
11.4 DMZ Settings	174
11.5 ALG Settings	175
11.6 Address Mapping	176
11.6.1 Add/Edit Address Mapping Rule	177
11.7 NAT Sessions	178
11.8 Technical Reference	179
11.8.1 NAT Definitions	179
11.8.2 What NAT Does	180
11.8.3 How NAT Works	180
11.8.4 NAT Application	181
Dynamic DNS Setup	183
12.1 DNS Overview	183
12.1.1 What You Can Do in this Chapter	183
12.1.2 What You Need To Know	183
12.2 DNS Entry	184
12.2.1 Add/Edit DNS Entry	184
12.3 Dynamic DNS	185
IGMP/MLD	187
13.1 IGMP/MLD Overview	187
13.1.1 What You Need To Know	187
13.2 IGMP/MLD Settings	187
VLAN Group	190
14.1 Overview	190
14.1.1 What You Can Do in this Chapter	190
14.2 VLAN Group Settings	191
14.2.1 Add/Edit a VLAN Group	191
Interface Grouping	193
15.1 Interface Grouping Overview	193
15.1.1 What You Can Do in this Chapter	193
15.2 Interface Grouping Setup	193
15.2.1 Interface Group Configuration	194
15.2.2 Interface Grouping Criteria	196
Firewall	198
16.1 Firewall Overview	198
16.1.1 What You Can Do in this Chapter	198
16.1.2 What You Need to Know	199
16.2 Firewall Settings	199
16.3 Protocol Settings	200
16.3.1 Add New/Edit Protocol Entry	201
16.4 Access Control	202
16.4.1 Add/Edit an ACL Rule	203
16.5 DoS Settings	205
MAC Filter	207
17.1 MAC Filter Overview	207
17.2 MAC Filter Settings	207
Parental Control	209
18.1 Parental Control Overview	209
18.2 Parental Control Settings	209
18.2.1 Add/Edit a Parental Control Profile	210
Scheduler Rule	216
19.1 Scheduler Rule Overview	216
19.2 Scheduler Rule Settings	216
19.2.1 Add/Edit a Schedule Rule	217
Certificates	218
20.1 Certificates Overview	218
20.1.1 What You Can Do in this Chapter	218
20.2 What You Need to Know	218
20.3 Local Certificates	218
20.3.1 Create Certificate Request	220
20.3.2 View Certificate Request	220
20.4 Trusted CA	222
20.4.1 View Trusted CA Certificate	223
20.4.2 Import Trusted CA Certificate	224
Log	225
21.1 Log Overview	225
21.1.1 What You Can Do in this Chapter	225
21.1.2 What You Need To Know	225
21.2 System Log	226
21.3 Security Log	227
Traffic Status	228
22.1 Traffic Status Overview	228
22.1.1 What You Can Do in this Chapter	228
22.2 WAN Status	228
22.3 LAN Status	229
22.4 NAT Status	230
ARP Table	231
23.1 ARP Table Overview	231
23.1.1 How ARP Works	231
23.2 ARP Table Settings	232
Routing Table	233
24.1 Routing Table Overview	233
24.2 Routing Table Settings	233
Multicast Status	236
25.1 Multicast Status Overview	236
25.2 IGMP Status	236
25.3 MLD Status	237
WLAN Station Status	238
26.1 WLAN Station Status Overview	238
System	240
27.1 System Overview	240
27.2 System Settings	240
User Account	241
28.1 User Account Overview	241
28.2 User Account Settings	241
28.2.1 User Account Add/Edit	242
Remote Management	244
29.1 Remote Management Overview	244
29.1.1 What You Can Do in this Chapter	244
29.2 MGMT Services	244
29.3 Trust Domain	246
29.3.1 Add Trust Domain	246
SNMP	248
30.1 SNMP Overview	248
30.2 SNMP Settings	249
Time Settings	251
31.1 Time Settings Overview	251
31.2 Time	251
E-mail Notification	255
32.1 E-mail Notification Overview	255
32.2 E-mail Notification Settings	255
32.2.1 E-mail Notification Edit	256
Log Setting	258
33.1 Logs Setting Overview	258
33.2 Log Settings	258
33.2.1 Example E-mail Log	260
Firmware Upgrade	262
34.1 Firmware Upgrade Overview	262
34.2 Firmware Upgrade Settings	262
Backup/Restore	265
35.1 Backup/Restore Overview	265
35.1.1 What You Can Do in this Chapter	265
35.2 Backup/Restore Settings	265
35.3 Reboot	268
Diagnostic	269
36.1 Diagnostic Overview	269
36.1.1 What You Can Do in this Chapter	269
36.2 What You Need to Know	269
36.3 Ping & TraceRoute & NsLookup	270
36.4 802.1ag (CFM)	271
36.5 802.3ah (OAM)	272
Troubleshooting and Appendices	274
Troubleshooting	275
37.1 Power, Hardware Connections, and LEDs	275
37.2 Zyxel Device Access and Login	276
37.3 Internet Access	277
37.4 Wireless Internet Access	279
37.5 UPnP	279
37.6 IP Address Setup	280
Customer Support	283
IPv6	289
Services	297
Legal Information	301

Match case Limit results 1 per page

Chapter 16 Firewall

EX3510-B0 User’s Guide

202

The following table describes the labels in this screen.

16.4

Access Control

Click

Security > Firewall > Access Control

to display the following screen. An Access Control List (ACL)

rule is a manually-defined rule that can accept, reject, or drop incoming or outgoing packets from your

network. This screen displays a list of the configured incoming or outgoing filtering rules.

Figure 124

Security > Firewall > Access Control

The following table describes the labels in this screen.

Table 79

Security > Firewall > Protocol: Add/Edit

LABEL

DESCRIPTION

Service Name

Enter a unique name (up to 32 printable English keyboard characters, including spaces) for your

customized port.

Description

Enter a description for your customized port.

Protocol

Choose the IP protocol (

TCP

UDP

ICMP

ICMPv6

, or

Other

) that defines your customized port

from the drop-down list box. Select

Other

to be able to enter a protocol number.

Protocol

Number

This field is displayed if you select

Other

as the protocol.

Enter the protocol number of your customized port.

Source Port

This field is displayed if you select either the

TCP

UDP

protocol. You may set it to

Any

Single

, or

Range

and enter the Port Number or range of Port Numbers for your source port.

Destination Port

This field is displayed if you select either the

TCP

UDP

protocol. You may set it to

Any

Single

, or

Range

and enter the Port Number or range of Port Numbers for your destination port.

ICMPv6type

This field is displayed if you select the

ICMPv6

protocol. From the drop-down menu, select which

type value you would like to use.

Cancel

Click

Cancel

to exit this screen without saving any changes.

Click

to save your changes.

Table 80

Security > Firewall > Access Control

LABEL

DESCRIPTION

Add New ACL

Rule

Click this to add a filter rule for incoming or outgoing IP traffic.

This is the index number of the entry.

Status

The yellow bulb signifies that the Access Control List rule is active.

Name

This displays the name of the rule.

Src IP

This displays the source IP addresses to which this rule applies. Please note that a blank source

address is equivalent to

Any

Dst IP

This displays the destination IP addresses to which this rule applies. Please note that a blank

destination address is equivalent to

Any