ZyXEL Communications ZyWall - Page 154

ZyXEL Communications ZyWall

386 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter 18 SSL VPN

ZyWALL (ZLD) CLI Reference Guide

154

1 First of all, configure 10.1.1.254/24 for the IP address of interface ge2 which is an external

interface for public SSL VPN to access. Configure 172.16.10.254/24 for the IP address of interface

ge3 which is an internal network.

2 Create four address objects for the SSL VPN DHCP pool, DNS servers and the local network for SSL

VPN authenticated users to access.

3 Create an endpoint security profile named EPS-1. SSL VPN users’ computers must install Windows

XP and TrendMicro PC-Cillin Internet Security 2007. Besides, the PC-Cillin anti-virus must be

activated.

4 Create the SSL VPN user account named tester with password 1234.

5 Create an SSL VPN rule named SSL_VPN_TEST. Enable it and apply objects you just created.

Router(config)# interface ge2

Router(config-if-ge)# ip address 10.1.1.254 255.255.255.0

Router(config-if-ge)# exit

Router(config)# interface ge3

Router(config-if-ge)# ip address 172.16.10.254 255.255.255.0

Router(config-if-ge)# exit

Router(config)# address-object IP-POOL 192.168.100.1-192.168.100.10

Router(config)# address-object DNS1 172.16.5.1

Router(config)# address-object DNS2 172.16.5.2

Router(config)# address-object NETWORK1 172.16.10.0/24

Router(config)# eps profile EPS-1

Router(eps EPS-1)# matching-criteria all

Router(eps EPS-1)# os-type windows

Router(eps EPS-1)# windows-version windows-xp

Router(eps EPS-1)# anti-virus activate

Router(eps EPS-1)# anti-virus TrendMicro_PC-Cillin_Internet_Security_2007 detect-

auto-protection enable

Router(eps EPS-1)# exit

Router(config)# username tester password 1234 user-type user

Router(config)# sslvpn policy SSL_VPN_TEST

Router(policy SSL_VPN_TEST)# activate

Router(policy SSL_VPN_TEST)# user tester

Router(policy SSL_VPN_TEST)# network-extension activate

Router(policy SSL_VPN_TEST)# network-extension ip-pool IP-POOL

Router(policy SSL_VPN_TEST)# network-extension 1st-dns DNS1

Router(policy SSL_VPN_TEST)# network-extension 2nd-dns DNS2

Router(policy SSL_VPN_TEST)# network-extension network NETWORK1

Router(policy SSL_VPN_TEST)# eps activate

Router(policy SSL_VPN_TEST)# eps 1 EPS-1

Router(policy SSL_VPN_TEST)# exit

Table of Contents

Other manuals for ZyXEL Communications ZyWall

Troubleshooting26 pages

Related product manuals

Preview: ZyXEL Communications ZYWALL 5

ZyXEL Communications ZYWALL 5

Preview: ZyXEL Communications ZYWALL 35

ZyXEL Communications ZYWALL 35

ZyXEL Communications ZyWALL 310

Preview: ZyXEL Communications ZyWall 110

ZyXEL Communications ZyWall 110

Preview: ZyXEL Communications ZyWALL 1100

ZyXEL Communications ZyWALL 1100

Preview: ZyWALL 2 Plus

Preview: ZyWALL USG-Series

ZyWALL USG-Series

Preview: ZyWall ATP series

ZyWall ATP series

Preview: ZyWALL USG 50

Preview: ZyWall USG20-VPN

ZyWall USG20-VPN

Preview: ZyWALL USG 100 Series

ZyWALL USG 100 Series