Chapter 17 SSL VPN
ZyWALL (ZLD) CLI Reference Guide
150
1
First of all, configure 10.1.1.254/24 for the IP address of interface ge2 which is an
external interface for public SSL VPN to access. Configure 172.16.10.254/24 for the IP
address of interface ge3 which is an internal network.
2
Create four address objects for the SSL VPN DHCP pool, DNS servers and the local
network for SSL VPN authenticated users to access.
3
Create an endpoint security profile named EPS-1. SSL VPN users’ computers must
install Windows XP and TrendMicro PC-Cillin Internet Security 2007. Besides, the PC-
Cillin anti-virus must be activated.
4
Create the SSL VPN user account named tester with password 1234,
Router(config)# interface ge2
Router(config-if-ge)# ip address 10.1.1.254 255.255.255.0
Router(config-if-ge)# exit
Router(config)# interface ge3
Router(config-if-ge)# ip address 172.16.10.254 255.255.255.0
Router(config-if-ge)# exit
Router(config)# address-object IP-POOL 192.168.100.1-192.168.100.10
Router(config)# address-object DNS1 172.16.5.1
Router(config)# address-object DNS2 172.16.5.2
Router(config)# address-object NETWORK1 172.16.10.0/24
Router(config)# eps profile EPS-1
Router(eps EPS-1)# matching-criteria all
Router(eps EPS-1)# os-type windows
Router(eps EPS-1)# windows-version windows-xp
Router(eps EPS-1)# anti-virus activate
Router(eps EPS-1)# anti-virus TrendMicro_PC-Cillin_Internet_Security_2007
detect-auto-protection enable
Router(eps EPS-1)# exit
Router(config)# username tester password 1234 user-type user
Содержание ZyWall
Страница 2: ......
Страница 6: ...Document Conventions ZyWALL ZLD CLI Reference Guide 6 ...
Страница 10: ...10 ...
Страница 26: ...Chapter 1 Command Line Interface ZyWALL ZLD CLI Reference Guide 26 ...
Страница 46: ...46 ...
Страница 84: ...Chapter 6 Interfaces ZyWALL ZLD CLI Reference Guide 84 ...
Страница 98: ...Chapter 8 Route ZyWALL ZLD CLI Reference Guide 98 ...
Страница 106: ...Chapter 10 Zones ZyWALL ZLD CLI Reference Guide 106 ...
Страница 110: ...Chapter 11 DDNS ZyWALL ZLD CLI Reference Guide 110 ...
Страница 116: ...Chapter 12 Virtual Servers ZyWALL ZLD CLI Reference Guide 116 ...
Страница 120: ...Chapter 13 HTTP Redirect ZyWALL ZLD CLI Reference Guide 120 ...
Страница 124: ...Chapter 14 ALG ZyWALL ZLD CLI Reference Guide 124 ...
Страница 125: ...125 PART III Firewall Firewall 127 ...
Страница 126: ...126 ...
Страница 134: ...Chapter 15 Firewall ZyWALL ZLD CLI Reference Guide 134 ...
Страница 135: ...135 PART IV VPN IPSec VPN 137 SSL VPN 147 L2TP VPN 153 ...
Страница 136: ...136 ...
Страница 146: ...Chapter 16 IPSec VPN ZyWALL ZLD CLI Reference Guide 146 ...
Страница 152: ...Chapter 17 SSL VPN ZyWALL ZLD CLI Reference Guide 152 ...
Страница 160: ...Chapter 18 L2TP VPN ZyWALL ZLD CLI Reference Guide 160 ...
Страница 161: ...161 PART V Application Patrol Application Patrol 163 ...
Страница 162: ...162 ...
Страница 174: ...Chapter 19 Application Patrol ZyWALL ZLD CLI Reference Guide 174 ...
Страница 175: ...175 PART VI Anti X Anti Virus 177 IDP Commands 185 Content Filtering 203 Anti Spam 215 ...
Страница 176: ...176 ...
Страница 202: ...Chapter 21 IDP Commands ZyWALL ZLD CLI Reference Guide 202 ...
Страница 214: ...Chapter 22 Content Filtering ZyWALL ZLD CLI Reference Guide 214 ...
Страница 224: ...Chapter 23 Anti Spam ZyWALL ZLD CLI Reference Guide 224 ...
Страница 225: ...225 PART VII Device HA Device HA 227 ...
Страница 226: ...226 ...
Страница 236: ...236 ...
Страница 248: ...Chapter 26 Addresses ZyWALL ZLD CLI Reference Guide 248 ...
Страница 252: ...Chapter 27 Services ZyWALL ZLD CLI Reference Guide 252 ...
Страница 262: ...Chapter 29 AAA Server ZyWALL ZLD CLI Reference Guide 262 ...
Страница 266: ...Chapter 30 Authentication Objects ZyWALL ZLD CLI Reference Guide 266 ...
Страница 272: ...Chapter 31 Certificates ZyWALL ZLD CLI Reference Guide 272 ...
Страница 276: ...Chapter 32 ISP Accounts ZyWALL ZLD CLI Reference Guide 276 ...
Страница 280: ...Chapter 33 SSL Application ZyWALL ZLD CLI Reference Guide 280 ...
Страница 288: ...Chapter 34 Endpoint Security ZyWALL ZLD CLI Reference Guide 288 ...
Страница 289: ...289 PART IX System System 291 System Remote Management 299 ...
Страница 290: ...290 ...
Страница 298: ...Chapter 35 System ZyWALL ZLD CLI Reference Guide 298 ...
Страница 314: ...314 ...
Страница 332: ...Chapter 37 File Manager ZyWALL ZLD CLI Reference Guide 332 Figure 55 Startup Complete ...
Страница 344: ...Chapter 39 Reports and Reboot ZyWALL ZLD CLI Reference Guide 344 ...
Страница 346: ...Chapter 40 Session Timeout ZyWALL ZLD CLI Reference Guide 346 ...
Страница 348: ...Chapter 41 Diagnostics ZyWALL ZLD CLI Reference Guide 348 ...
Страница 362: ...Chapter 44 Watchdog Timer ZyWALL ZLD CLI Reference Guide 362 ...
Страница 363: ...363 PART XI Command List List of Commands Alphabetical 365 ...
Страница 364: ...364 ...
Страница 394: ...List of Commands Alphabetical ZyWALL ZLD CLI Reference Guide 394 ...