ZyXEL Communications ZYWALL 70 - V4.03 Informacje Techniczne Pobierz pdf (Strona 9)

(bridge mode) (NAT router) (router mode)

PC1------(LAN)ZyWALL(WAN)----VSG-1200----IPSec gateway----PC2

(1) Build a VPN tunnel between ZyWALL and IPSec gateway.

(2) Ping PC2 from PC1.

(3) Tunnel can be established, but no PING response.

10. [BUG FIX] SPR ID: 070809666

Symptom: ZyWALL crashes when receive pop3 mail from WAN.

Condition:

PC1-----(192.168.100.33)router(192.168.1.33)----(LAN)ZyWALL(WAN1)----mailserver

(1) Enable Anti-spam WAN1->LAN direction and external DB on ZyWALL.

(2) Add a static route (dest 192.168.100.0/24, gateway 192.168.1.33) in ZyWALL.

(3) PC1 user uses MS Outlook to receive mails.

(4) ZyWALL crashes.

11. [BUG FIX] SPR ID: 071114971

Symptom: IKE SA Leak in customer site.

Topology:

|----ZyWALL1

ZyWALL_DUT(WAN)----(WAN)NAT Router(LAN)----|

|----ZyWALL2

Condition:

(1) Configure one IKE rule IKE1 in ZyWALL_DUT, set NAT Router as "Remote

Gateway".

(2) Add two IPSec rules under IKE1 in ZyWALL_DUT.

IPSec1: ZyWALL_DUT--ZyWALL1

IPSec2: ZyWALL_DUT--ZyWALL2.

(3) In ZyWALL1, configure IKE and IPsec rule. Enable Nailup. Make sure the Tunnel

can be built successfully.

(4) In ZyWALL2, configure IKE rule and IPsec rule correctly except Pre-shared Key.

Enable Nail up. Make sure the Tunnel couldn't build successfully.

(5) After long time run, ZyWALL_DUT will crash because of IKE SA leak.

12. [BUG FIX] SPR ID: 070726881

Symptom: ZyWALL doesn't forward "no answer section" to DNS client.

Condition:

(1) Configure ZyWALL as DNS Server on Linux PC.

(2) Execute "host -t MX www.playboy.com"

(3) PC waits the response until timeout.

(4)If DNS server is not ZyWALL, PC gets response immediately.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 ... 81 82

Brak uwag

ZyXEL Communications ZYWALL 70 - V4.03 Informacje Techniczne Strona 9