• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Anyone have experience with Zyxel "Zywall 1"?

W

Woodie

Platinum Member
I've spent a bit of time trying to compare DSL router-firewalls (thanks JackMDS 🙂), and I think I've decided on the Zywall 1.

This is for my home network, which is about to get DSL.

Main reasons are:
Flexibility
Firewall strength
Decent reviews

Does anyone have one of these? Have an opinion, or can share experience?

Thanks!
 
I've used the ZyWall 1 and the best part, in my opinion, is the firewall. Unlike your regular cheapie Linksys and Netgear routers, the ZyWall 1 has a REAL firewall capable of stateful packet inspection, as opposed to a simplistic NAT-based firewall. The logging functions also go way beyond most consumer level routers.

Doing a search of "zywall 1 review" puts two review links right on the top. Check em out.
 
I am not familiar with the ZyWall 1, and I read few good reviews about it.

However, I learned long time ago in this business that facts matters more then name calling.

I have a cheappo SMC Barricade 7004BR.

The following is the Menu for Packet Inspection:

Inbound Packet Filter
Item Setting

Inbound Filter Enable

Allow all to pass except those match the following rules.

Deny all to pass except those match the following rules.

ID Source IP : Ports Destination IP : Ports Enable
1 : :
2 : :
3 : :
4 : :
5 : :
6 : :
7 : :
8 : :


Similar Menu is available for Outbound Packets.

I am curious to know what the ZyWall 1 has in this specific matter in addition to the above.
 
Hmmm you are right, the 7004BR does indeed have SPI. That's news to me, cause most consumer-level routers don't have SPI. Technically the ZyWall 1 isn't a consumer-level router since it also has functions like hardware VPN handling. The important advantage of the ZyWall 1 is that it is designed from the ground up as a firewall device as much as a router, and the logging functions are quite useful. Indeed, the 7004BR doesn't have a log of the actions taken by its SPI firewall.

Thanks for the heads-up though JackMDS...looks like you found a winner with that SMC router.
 
Actually few of the Entry Level Cable/DSL Routers, got SPI through Firmware upgrade, and most of the new el-cheappos comes with SPI and better support for VPN.

When it comes to the mid price Routers ($100-$200) some of them are just overpriced, and sold to businesses that don¡¦t ask questions. Some like the ZyWall 1 have better support for safety protocols.

However, one has to look at the list, and make sure that he needs the extras (like alerts via e-mail), and is it worth is while paying more.

===========================================
ZyWall 1 Pros, and Cons (source: http://www.practicallynetworked.com/review.asp?pid=477).

Pros:
- Highly customizable
- Support for Dynamic DNS
- Detailed logging and alerts via e-mail
- Supports up to 50 VPN Tunnels (ZyWALL 50)
- Excellent content filtering

Cons:
- No auto-sensing ports
- User Guide on CD only
- No integrated switch (ZyWALL 50)
- Firewall rule creation can be confusing

ZyXEL designed both of these products to support numerous routing protocols. These include TCP/IP, RIP-1, RIP-2, ICMP, ARP, IP Multicast and IP Alias. An abundance of security protocols provide network users with even greater protection.
========================================
BTW, to maintain perspective the ZyWall 50 which is a real power house is over $500.
 
All these reviews are driving me nuts!

What I want to do is go to the router section of PracticallyNetworked, and mark the checkboxes for the features I want, and have them return a list of the routers that have those particular features. The comparison thing only works across a single page, and there are three pages (if you restrict the list to the "recommended" only).

At any rate: Now I have to take a closer look at the one that JackMDS is using.

Speculation:
I am under the impression that the Zywall 1 supports more rules than the "consumer-level" routers.

There's a distinct need for a *current* comparison of the available broadband router/firewall devices. PracticallyNetworked still lists devices that were discontinued in 2000.
 
You are absolutely nuts, it drives me nuts too.

I posted the above to try to create a frame of reference. The only way is to ask you what you really want, and find one or two that can do it, once I decide on one or two; I log to the manufacturer site and download the Manual to know what is really in the ?Gizmo?.

As an example, the key for the ZyWall 1 difference from low end entry level, is

Detailed logging and alerts via e-mail - My Router can not do it.

Excellent content filtering. ? I don?t know how many rules the ZyWall 1 supports, mine support only 8 inbound, and 8 outbound.

These include TCP/IP, RIP-1, RIP-2, ICMP, ARP, IP Multicast and IP Alias - Some are not supported by mine.

The most important thing is VPN; a lot of the Entry level really doesn?t work well with any thing then very basic VPN.

Practicallynetworked.com changed hands about a year ago, since then they shifted more toward business type of hardware, rather then Home / SOHO hardware.
 
Well, the key features of the Zywall for me are:

Detailed logging to a syslog
Excellent content filtering
and to a lesser degree, the VPN stuff.
Found at buy.com for $130

I *think* I've narrowed the field enough to start reading user manuals, but that takes more of my time than tracking down the reviews/comparisons.

I'm going to try SmoothWall, but I have to take down my current dial-on-demand gateway in order to try an install. It's also only a 486, so we'll have to see how it performs. On the bright side, that'll be free (no capital costs), although my time is NOT. 🙂

The phone company has two large holes in my lawn right now, so I'm waiting to find out if DSL will really work on my line. The workers told me that a neighbor is having static problems, so they're going to redo at least 2 splices, with the newer sealers/containers.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top