ZyXEL Communications Internet Security Gateway ZyWALL 2 Series User Manual

ZyWALL 2 Series User’s Guide

Remote Management Screens

17-3

data), authentication (one party can identify the other party) and data integrity (you know if data has been
changed).

It relies upon certificates, public keys, and private keys (see the Certificates chapter for more information).

HTTPS on the ZyWALL is used so that you may securely access the ZyWALL using the web configurator.
The SSL protocol specifies that the SSL server (the ZyWALL) must always authenticate itself to the SSL
client (the computer which requests the HTTPS connection with the ZyWALL), whereas the SSL client only
should authenticate itself when the SSL server requires it to do so (select Authenticate Client Certificates in
the REMOTE MGMT, WWW screen). Authenticate Client Certificates is optional and if selected means
the SSL-client must send the ZyWALL a certificate. You must apply for a certificate for the browser from a
CA that is a trusted CA on the ZyWALL.

Please refer to the following figure.

1. HTTPS connection requests from an SSL-aware web browser go to port 443 (by default) on the

ZyWALL’s WS (web server).

2. HTTP connection requests from a web browser go to port 80 (by default) on the ZyWALL’s WS

(web server).

Figure 17-1 HTTPS Implementation