ZyXEL Communications P-202 User Manual

P-202H Plus v2 Support Notes

IKE is more secure than manual key, because IKE negotiation can generate new
keys and SPIs randomly for the VPN connection.

P-202H Plus v2 VPN

1. How do I configure P-202H Plus v2 VPN?

You can configure P-202H Plus v2 for VPN using SMT or Web configurator. P-
202H Plus v2 1 supports Web only.

2. How many VPN connections does P-202H Plus v2 support?

One P-202H Plus v2 202H Plus supports 2 VPN connections.

3. What VPN protocols are supported by P-202H Plus v2 VPN?

All P-202H Plus v2 series support ESP (protocol number 50) and AH (protocol
number 51).

4. What types of encryption does P-202H Plus v2 VPN support?

P-202H Plus v2 supports 56-bit DES and 168-bit 3DES.

5. What types of authentication does P-202H Plus v2 VPN support?

VPN vendors support a number of different authentication methods. P-202H Plus
v2 VPN supports both SHA1 and MD5.

AH provides authentication, integrity, and replay protection (but not
confidentiality). Its main difference with ESP is that AH also secures parts of the
IP header of the packet (like the source/destination addresses), but ESP does
not.

ESP can provide authentication, integrity, replay protection, and confidentiality of
the data (it secures everything in the packet that follows the header). Replay
protection requires authentication and integrity (these two go always together).
Confidentiality
(encryption) can be used with or without authentication/integrity. Similarly, one
could use authentication/integrity with or without confidentiality.

6. I am planning my P-202H Plus v2-to-P-202H Plus v2 VPN configuration.
What do I need to know?

All contents copyright © 2006 ZyXEL Communications Corporation.

30