3 my ip address, 4 secure gateway address, 3 my ip address 14.4 secure gateway address – ZyXEL Communications ZyXEL ZyWALL 35 User Manual

Page 242: Table 71 esp and ah

Advertising
background image

ZyWALL 35 User’s Guide

240

Chapter 14 VPN Screens

14.3 My IP Address

My IP Address identifies the WAN IP address of the ZyWALL. You can select IP Address
and enter the ZyWALL's static WAN IP address (if it has one) or leave the field set to 0.0.0.0.
Otherwise you can select My Domain Name and choose one of the dynamic domain names
that you have configured (in the DDNS screen) to have the ZyWALL use that dynamic
domain name's IP address. The ZyWALL has to rebuild the VPN tunnel if the My IP Address
changes after setup.

14.4 Secure Gateway Address

Secure Gateway Address is the WAN IP address or domain name of the remote IPSec router
(secure gateway).
If the remote secure gateway has a static WAN IP address, enter it in the Secure Gateway
Address
field. You may alternatively enter the remote secure gateway’s domain name (if it
has one) in the Secure Gateway Address field.

Table 71 ESP and AH

ESP

AH

Encryption

DES (default)

Data Encryption Standard (DES) is a

widely used method of data encryption

using a secret key. DES applies a 56-bit

key to each 64-bit block of data.

3DES

Triple DES (3DES) is a variant of DES,

which iterates three times with three

separate keys (3 x 56 = 168 bits),

effectively doubling the strength of DES.

AES

Advanced Encryption Standard is a

newer method of data encryption that

also uses a secret key. This

implementation of AES applies a 128-bit

key to 128-bit blocks of data. AES is

faster than 3DES.

Select NULL to set up a phase 2 tunnel

without encryption.

Authentication

MD5 (default)
MD5 (Message Digest 5) produces a

128-bit digest to authenticate packet

data.

MD5 (default)
MD5 (Message Digest 5) produces a

128-bit digest to authenticate packet

data.

SHA1
SHA1 (Secure Hash Algorithm) produces

a 160-bit digest to authenticate packet

data.

SHA1
SHA1 (Secure Hash Algorithm) produces

a 160-bit digest to authenticate packet

data.

Select MD5 for minimal security and SHA-1 for maximum security.

Advertising