The Vpn Connection Add/Edit (Ike) Screen - ZyXEL Communications ZyWALL 110 User Manual
Hide thumbs
Also See for ZyWALL 110:
- User manual (1090 pages) ,
- Handbook (749 pages) ,
- Handbook & instructions (255 pages)
Table of Contents
Advertisement
Each field is discussed in the following table.
Table 164 Configuration > VPN > IPSec VPN > VPN Connection
LABEL
Global Setting
Use Policy
Route to
control
dynamic
IPSec rules
Ignore
"Don't
Fragment"
setting in
packet
header
IPv4 / IPv6
Configuration
Add
Edit
Remove
Activate
Inactivate
Connect
Disconnect
Object
Reference
#
Status
Name
VPN Gateway
Gateway IP
Version
Policy
Apply
Reset
22.2.1 The VPN Connection Add/Edit (IKE) Screen
The VPN Connection Add/Edit Gateway screen allows you to create a new VPN connection
policy or edit an existing one. To access this screen, go to the Configuration > VPN Connection
screen (see
Chapter 22 IPSec VPN
DESCRIPTION
The following two fields are for all IPSec VPN policies.
Click on the VPN icon to go to the ZyXEL VPN Client product page at the ZyXEL website.
Select this to be able to use policy routes to manually specify the destination addresses of
dynamic IPSec rules. You must manually create these policy routes. The ZyWALL/USG
automatically obtains source and destination addresses for dynamic IPSec rules that do not
match any of the policy routes.
Clear this to have the ZyWALL/USG automatically obtain source and destination addresses
for all dynamic IPSec rules.
Select this to fragment packets larger than the MTU (Maximum Transmission Unit) that have
the "Don't Fragment" bit in the IP header turned on. When you clear this the ZyWALL/USG
drops packets larger than the MTU that have the "Don't Fragment" bit in the header turned
on.
Click this to create a new entry.
Double-click an entry or select it and click Edit to open a screen where you can modify the
entry's settings.
To remove an entry, select it and click Remove. The ZyWALL/USG confirms you want to
remove it before doing so.
To turn on an entry, select it and click Activate.
To turn off an entry, select it and click Inactivate.
To connect an IPSec SA, select it and click Connect.
To disconnect an IPSec SA, select it and click Disconnect.
Select an entry and click Object Reference to open a screen that shows which settings use
the entry. See
Section 9.3.2 on page 205
This field is a sequential value, and it is not associated with a specific connection.
The activate (light bulb) icon is lit when the entry is active and dimmed when the entry is
inactive.
The connect icon is lit when the interface is connected and dimmed when it is disconnected.
This field displays the name of the IPSec SA.
This field displays the VPN gateway in use for this VPN connection.
This field displays what IP version the associated VPN gateway(s) is using. An IPv4 gateway
may use an IKEv1 or IKEv2 SA. An IPv6 gateway may use IKEv2 only.
This field displays the local policy and the remote policy, respectively.
Click Apply to save your changes back to the ZyWALL/USG.
Click Reset to return the screen to its last-saved settings.
Section 22.2 on page
390), and click either the Add icon or an Edit icon.
ZyWALL/USG Series User's Guide
for an example.
391
- Quick Links:
- Web Configurator
- Web Configurator Access
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
