3 my ip address, 4 secure gateway address, 3 my ip address 14.4 secure gateway address – ZyXEL Communications ZyXEL ZyWALL 35 User Manual
Page 242: Table 71 esp and ah

ZyWALL 35 User’s Guide
240
Chapter 14 VPN Screens
14.3 My IP Address
My IP Address identifies the WAN IP address of the ZyWALL. You can select IP Address
and enter the ZyWALL's static WAN IP address (if it has one) or leave the field set to 0.0.0.0.
Otherwise you can select My Domain Name and choose one of the dynamic domain names
that you have configured (in the DDNS screen) to have the ZyWALL use that dynamic
domain name's IP address. The ZyWALL has to rebuild the VPN tunnel if the My IP Address
changes after setup.
14.4 Secure Gateway Address
Secure Gateway Address is the WAN IP address or domain name of the remote IPSec router
(secure gateway).
If the remote secure gateway has a static WAN IP address, enter it in the Secure Gateway
Address field. You may alternatively enter the remote secure gateway’s domain name (if it
has one) in the Secure Gateway Address field.
Table 71 ESP and AH
ESP
AH
Encryption
DES (default)
Data Encryption Standard (DES) is a
widely used method of data encryption
using a secret key. DES applies a 56-bit
key to each 64-bit block of data.
3DES
Triple DES (3DES) is a variant of DES,
which iterates three times with three
separate keys (3 x 56 = 168 bits),
effectively doubling the strength of DES.
AES
Advanced Encryption Standard is a
newer method of data encryption that
also uses a secret key. This
implementation of AES applies a 128-bit
key to 128-bit blocks of data. AES is
faster than 3DES.
Select NULL to set up a phase 2 tunnel
without encryption.
Authentication
MD5 (default)
MD5 (Message Digest 5) produces a
128-bit digest to authenticate packet
data.
MD5 (default)
MD5 (Message Digest 5) produces a
128-bit digest to authenticate packet
data.
SHA1
SHA1 (Secure Hash Algorithm) produces
a 160-bit digest to authenticate packet
data.
SHA1
SHA1 (Secure Hash Algorithm) produces
a 160-bit digest to authenticate packet
data.
Select MD5 for minimal security and SHA-1 for maximum security.