Table 76 Telecommuters Using Unique VPN Rules Example
TELECOMMUTERS
All Telecommuter Rules:
My ZyWALL 0.0.0.0
Remote Gateway Address: bigcompanyhq.com
Remote Network - Single IP Address:
192.168.1.10
Peer ID Type: E-mail
Peer ID Content: bob@bigcompanyhq.com
Telecommuter A (telecommutera.dydns.org)
Local ID Type: IP
Local ID Content: 192.168.2.12
Local IP Address: 192.168.2.12
Telecommuter B (telecommuterb.dydns.org)
Local ID Type: DNS
Local ID Content: telecommuterb.com
Local IP Address: 192.168.3.2
Telecommuter C (telecommuterc.dydns.org)
Local ID Type: E-mail
Local ID Content: myVPN@myplace.com
Local IP Address: 192.168.4.15
14.16 VPN and Remote Management
You can allow someone to use a service (like Telnet or HTTP) through a VPN tunnel to
manage the ZyWALL. One of the ZyWALL's ports must be part of the VPN rule's local
network. This can be the ZyWALL's LAN port if you do not want to allow remote
management on the WAN port. You also have to configure remote management (REMOTE
MGMT) to allow management access for the service through the specific port.
In the following example, the VPN rule's local network (A) includes the ZyWALL's LAN IP
address of 192.168.1.7. Someone in the remote network (B) can use a service (like HTTP for
example) through the VPN tunnel to access the ZyWALL's LAN interface. Remote
management must also be configured to allow HTTP access on the ZyWALL's LAN interface.
ZyWALL 2 Plus User's Guide
Chapter 14 IPSec VPN
HEADQUARTERS
All Headquarters Rules:
My ZyWALL: bigcompanyhq.com
Local Network - Single IP Address: 192.168.1.10
Local ID Type: E-mail
Local ID Content: bob@bigcompanyhq.com
Headquarters ZyWALL Rule 1:
Peer ID Type: IP
Peer ID Content: 192.168.2.12
Remote Gateway Address:
telecommutera.dydns.org
Remote Address 192.168.2.12
Headquarters ZyWALL Rule 2:
Peer ID Type: DNS
Peer ID Content: telecommuterb.com
Remote Gateway Address:
telecommuterb.dydns.org
Remote Address 192.168.3.2
Headquarters ZyWALL Rule 3:
Peer ID Type: E-mail
Peer ID Content: myVPN@myplace.com
Remote Gateway Address:
telecommuterc.dydns.org
Remote Address 192.168.4.15
291