ZyXEL Communications Internet Security Gateway ZyWALL 2 Series User Manual

Page 236

Advertising
background image

ZyWALL 2 Series User’s Guide

14-30

VPN Screens

The following table describes the labels in this screen.

Table 14-9 VPN Manual Setup

LABEL DESCRIPTION

Active

Select this check box to activate this VPN policy.

Name

Type up to 32 characters to identify this VPN policy. You may use any character,
including spaces, but the ZyWALL drops trailing spaces.

Key Management

Select IKE or Manual Key (or Manual) from the drop-down list box. Manual Key is a
useful option for troubleshooting if you have problems using IKE key management.

Local:

Local IP addresses must be static and correspond to the remote IPSec router's configured remote IP
addresses.

Two active SAs cannot have the local and remote IP address(es) both the same. Two active SAs can have
the same local or remote IP address, but not both. You can configure multiple SAs between the same local
and remote IP addresses, as long as only one is active at any time.

Client to Site

Select this radio button to build a client to site VPN connection.

Local IP Address Enter a static local IP address. The local IP address must correspond to the remote

IPSec router's configured remote IP addresses.

Site to Site

Select this radio button to establish a VPN between two sites (groups of IP
addresses).

Address Type Use the drop-down list box to choose Range Address or Subnet Address. Select

Range Address for a specific range of IP addresses. Select Subnet Address to
specify IP addresses on a network by their subnet mask.

Starting IP

Address

When the Address Type field is configured to Range Address, enter the beginning
(static) IP address, in a range of computers on the LAN behind your ZyWALL. When
the Address Type field is configured to Subnet Address, this is a (static) IP address
on the LAN behind your ZyWALL.

Ending IP

Address/Subnet

Mask

When the Address Type field is configured to Range Address, enter the end (static)
IP address, in a range of computers on the LAN behind your ZyWALL. When the
Address Type field is configured to Subnet Address, this is a subnet mask on the
LAN behind your ZyWALL.

Advertising
Popular Brands
Popular manuals