Chapter 4 Create Site-to-Site VPN Tunnels
Figure 439 CONFIGURATION > VPN > IPSec VPN > VPN Connection > Create new Object
Set Local Policy to be Hub_HQ and Remote Policy to Branch_A which are newly created. Click
OK.
Figure 440 CONFIGURATION > VPN > IPSec VPN > VPN Connection > Policy
4.9.3 Hub_HQ-to-Branch_B
Go to CONFIGURATION > VPN > IPSec VPN > VPN Gateway, select Enable. Type the VPN
1
Gateway Name used to identify this VPN gateway.
Then, configure the Primary Gateway IP as the Branch B's wan1 IP address (in the example,
172.16.30.1) and Secondary Gateway IP as the Branch B's wan2 IP address (in the example,
172.100.130.1). Select Fall back to Primary Peer Gateway when possible and set desired Fall
Back Check Interval time.
Type a secure Pre-Shared Key (8-32 characters) which must match your Branch A's Pre-Shared
Key and click OK.
ZyWALL/USG Series User's Guide
189