ZyXEL Communications 10 User Manual

Page 372

Advertising
background image

ZyWALL 10~100 Series Internet Security Gateway

29-14

VPN/IPSec

Setup

Table 29-8 Menu 27.1.1: IPSec Setup

FIELD DESCRIPTION

EXAMPLE

Content

This field is N/A when you select IP in the Peer ID Type field (the ZyWALL
uses the IP address in the Secure Gateway Addr field.

When you select DNS in the Peer ID Type field, type a domain name (up
to 31 characters) by which to identify the remote IPSec router.

When you select E-mail in the Peer ID Type field, type an e-mail address
(up to 31 characters) by which to identify the remote IPSec router.

The domain name or e-mail address that you use in the Content field is
used for identification purposes only and does not need to be a real
domain name or e-mail address. The domain name also does not have to
match the remote router’s IP address or what you configure in the Secure
Gateway Addr field below.

Secure
Gateway Addr

Type the IP address or the domain name (up to 31 characters) of the
IPSec router with which you’re making the VPN connection.

Set this field to 0.0.0.0 if the remote IPSec router has a dynamic WAN IP
address (the Key Management field must be set to IKE, see later). See
section 29.3.4 for more details.

Zw50test.com.

tw

Protocol

Enter 1 for ICMP, 6 for TCP, 17 for UDP, etc. 0 is the default and signifies
any protocol.

0

Local

Local IP addresses must be static and correspond to the remote IPSec
router’s configured remote IP addresses.

Two active SAs cannot have the local and remote IP address(es) both the
same. Two active SAs can have the same local or remote IP address, but
not both. You can configure multiple SAs between the same local and
remote IP addresses, as long as only one is active at any time.

Addr Type Press [SPACE BAR] to choose SINGLE, RANGE, or SUBNET and press

[ENTER]. Select SINGLE with a single IP address. Select RANGE for a
specific range of IP addresses. Select SUBNET to specify IP addresses on
a network by their subnet mask.

SINGLE

IP Addr Start When the Addr Type field is configured to Single, enter a static IP

address on the LAN behind your ZyWALL.

When the Addr Type field is configured to Range, enter the beginning
(static) IP address, in a range of computers on your LAN behind your
ZyWALL.

When the Addr Type is configured to SUBNET, this is a (static) IP
address on the LAN behind your ZyWALL.

192.168.1.35

Advertising
Popular Brands
Popular manuals