Wireless LAN Solution Scenario - ZyXEL UK
Wireless LAN Solution Scenario - ZyXEL UK
Wireless LAN Solution Scenario - ZyXEL UK
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Security <strong>Solution</strong> <strong>Scenario</strong><br />
Less than 10 PC Users<br />
To secure an office with a single<br />
broadband Internet connection, provide<br />
secure remote access, and protect<br />
endpoint devices. Measures mitigating<br />
application-level attacks should be taken.<br />
10 to 50 PC Users<br />
Requires site-to-site and remote VPN access<br />
capabilities with firewall protection at the<br />
main and branch offices. In addition, each<br />
endpoint device needs to be secured.<br />
Measures to mitigate application-level<br />
attacks should be taken so that valuable<br />
information assets will be well protected.<br />
ZyWALL 2WG<br />
ZyWALL 2WG<br />
ZyWALL 2WG<br />
<strong>LAN</strong>/DMZ<br />
PWR 1 2 3 4<br />
WAN AUX W<strong>LAN</strong> CARD<br />
10/100 10/100 10/100 10/100<br />
<strong>LAN</strong>/DMZ<br />
PWR 1 2 3 4<br />
WAN AUX W<strong>LAN</strong> CARD<br />
10/100 10/100 10/100 10/100<br />
ZyWALL 2WG<br />
Vantage CNM<br />
ES-3124<br />
3G<br />
2 4 5 8 10 12 14 16 18 20 22 24<br />
LNK/<br />
BPS<br />
PWR<br />
SYS<br />
ALM<br />
2 4 6 8<br />
10 12 14 16<br />
18 20 22 24<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
FDX<br />
FDX<br />
LNK<br />
LNK<br />
CONSOLE<br />
10 100<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
1 3 5 7<br />
9<br />
FDX<br />
11<br />
FDX<br />
13 15<br />
17 19 21 23<br />
ACT<br />
ACT MGMT<br />
ACT<br />
PoE<br />
LNK/<br />
ACT<br />
PoE<br />
1 3 5 7 9 11 13 15 17 19 21 23<br />
ES-3124<br />
3G<br />
3G<br />
2 4 5 8 10 12 14 16 18 20 22 24<br />
LNK/<br />
BPS<br />
PWR<br />
SYS<br />
ALM<br />
2 4 6 8<br />
10 12 14 16<br />
18 20 22 24<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
FDX<br />
FDX<br />
LNK<br />
LNK<br />
CONSOLE<br />
10 100<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
1 3 5 7<br />
FDX<br />
9 FDX<br />
11 13 15<br />
17 19 21 23<br />
ACT<br />
ACT MGMT<br />
ACT<br />
PoE<br />
LNK/<br />
ACT<br />
PoE<br />
1 3 5 7 9 11 13 15 17 19 21 23<br />
<strong>LAN</strong><br />
3G<br />
26<br />
28<br />
25<br />
27<br />
27<br />
<strong>LAN</strong><br />
Main Office<br />
28<br />
26<br />
28<br />
25<br />
27<br />
ZyWALL USG 200<br />
PWR AUX<br />
SYS CARD RESET<br />
ZyWALL USG 200<br />
Main Office<br />
27<br />
28<br />
DMZ<br />
SMTP, Web, DNS,<br />
FTP Server<br />
USB<br />
WAN1 WAN2 OPT<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
1 2<br />
ZyWALL USG 200<br />
PWR AUX<br />
SYS CARD RESET<br />
ZyWALL USG 100/200<br />
Remote<br />
Access<br />
VPN<br />
3G<br />
USB<br />
WAN1 WAN2 OPT<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
1 2<br />
3G<br />
VPN Tunnel<br />
Internet<br />
Internet<br />
Teleworker<br />
Teleworker<br />
Site-to-Site VPN<br />
ZyWALL USG 100<br />
PWR AUX<br />
SYS CARD RESET<br />
USB<br />
WAN1 WAN2<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
1 2<br />
VPN Tunnel<br />
ZyWALL USG 200<br />
PWR AUX<br />
SYS CARD RESET<br />
ZyWALL USG 100<br />
USB<br />
WAN1 WAN2 OPT<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
1 2<br />
VPN Gateway<br />
Partner Site<br />
Branch Office<br />
50 to 200 PC Users<br />
A comprehensive protection<br />
mechanism should be deployed<br />
to protect the entire cooperate<br />
network from viruses, worms, trojans<br />
and remote attacks. Requires site<br />
to-site and remote VPN access<br />
capabilities with firewall protection<br />
in a distributed network. Also, each<br />
endpoint device needs to be secured.<br />
There is a need for high availability of<br />
Internet access and quality of service<br />
management at the main office.<br />
200 to 500 PC Users<br />
Requires site-to-site and remote<br />
access VPN capabilities with firewall<br />
protection in a distributed network.<br />
Threats from the Internet should be<br />
stopped at the network perimeter.<br />
For a network of this size, centralised<br />
management is desired. Also, each<br />
endpoint device needs to be secured.<br />
There is a need to ensure reliable<br />
performance and uninterrupted<br />
access to resources. The quality of<br />
service management is also required<br />
at the main office.<br />
<strong>Wireless</strong> AP<br />
Vantage<br />
CNM<br />
Main Office<br />
Clientless Secure Access<br />
6 7<br />
ZyAIR<br />
ES-3124<br />
2 4 5 8 10 12 14 16 18 20 22 24<br />
LNK/<br />
1 3 5 7 9 11 13 15 17 19 21 23<br />
BPS<br />
PWR<br />
SYS<br />
ALM<br />
2 4 6 8<br />
10 12 14 16<br />
18 20 22 24<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
FDX<br />
FDX<br />
LNK<br />
LNK<br />
CONSOLE<br />
10 100<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
1 3 5 7<br />
9<br />
FDX<br />
11<br />
FDX<br />
13 15<br />
17 19 21 23<br />
ACT<br />
ACT MGMT<br />
ACT<br />
PoE<br />
LNK/<br />
ACT<br />
PoE<br />
ZyWALL USG 200<br />
USB<br />
WAN1 WAN2 OPT<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
PWR AUX<br />
SYS CARD RESET<br />
1 2<br />
<strong>Wireless</strong><br />
AP Vantage<br />
CNM<br />
ZyAIR<br />
ES-3124<br />
2 4 5 8 10 12 14 16 18 20 22 24<br />
LNK/<br />
BPS<br />
PWR<br />
SYS<br />
ALM<br />
26<br />
28<br />
25<br />
27<br />
27<br />
ZyWALL<br />
USG 100/200<br />
2 4 6 8<br />
10 12 14 16<br />
18 20 22 24<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
FDX<br />
FDX<br />
LNK<br />
LNK<br />
CONSOLE<br />
10 100<br />
LNK/<br />
LNK/<br />
ACT<br />
ACT<br />
1 3 5 7<br />
9<br />
FDX<br />
11<br />
FDX<br />
13 15<br />
17 19 21 23<br />
ACT<br />
ACT MGMT<br />
ACT<br />
PoE<br />
LNK/<br />
ACT<br />
PoE<br />
1 3 5 7 9 11 13 15 17 19 21 23<br />
ZyWALL USG 300<br />
PWR AUX<br />
SYS CARD1 RESET<br />
CARD2<br />
1 2 3 4 5 USB<br />
6 7<br />
AUX<br />
CONSOLE<br />
1<br />
2<br />
10/100/1000<br />
28<br />
26<br />
28<br />
25<br />
27<br />
ZyWALL<br />
USG 300<br />
27<br />
28<br />
ZyWALL USG 1000<br />
EXTENSION CARD SLOT<br />
1 2<br />
USB<br />
3 4 5<br />
PWR ACT RESET<br />
SYS HDD<br />
10/100/1000<br />
DMZ<br />
SMTP, Web, DNS,<br />
FTP Server<br />
ZyWALL USG 1000<br />
3G<br />
DIAL BACKUP<br />
CONSOLE<br />
ZyWALL USG 2000<br />
Main Office<br />
3G<br />
HDD SLOT<br />
SSL VPN<br />
VPN<br />
Tunnel<br />
3G<br />
DMZ<br />
SMTP, Web, DNS,<br />
FTP Server<br />
SSL VPN<br />
Internet<br />
3G<br />
ZyWALL USG 200<br />
USB<br />
WAN1 WAN2 OPT<br />
<strong>LAN</strong>1/<strong>LAN</strong>2/DMX<br />
P1 P2 P3 P4 P5 P6 P7<br />
PWR AUX<br />
SYS CARD RESET<br />
1 2<br />
ZyWALL USG 100/200<br />
Remote<br />
Access VPN<br />
ZyWALL OTP<br />
VPN Tunnel unnel<br />
Internet<br />
ZyWALL USG 300<br />
PWR AUX<br />
SYS CARD1 RESET<br />
CARD2<br />
1 2 3 4 5 USB<br />
6 7<br />
AUX<br />
CONSOLE<br />
1<br />
2<br />
ZyWALL USG 300<br />
Branch Office<br />
Teleworker<br />
Remote<br />
Access VPN<br />
ZyWALL OTP<br />
ZyWALL USG 1000<br />
PWR ACT RESET<br />
SYS HDD<br />
Teleworker<br />
Clientless Secure Access<br />
10/100/1000<br />
EXTENSION CARD SLOT<br />
1 2<br />
USB<br />
3 4 5<br />
10/100/1000<br />
DIAL BACKUP<br />
CONSOLE<br />
ZyWALL USG 1000<br />
HDD SLOT<br />
Branch Office