ZyXEL Communications ZyXEL ZyWALL 2WE User Manual page 312
Zyxel internet security gateway user's guide
Hide thumbs
Also See for ZyXEL ZyWALL 2WE:
- Compact manual (42 pages) ,
- Specifications (2 pages) ,
- User manual (614 pages)
Table of Contents
Advertisement
ZyWALL 2 and ZyWALL 2WE
LABEL
Secure Gateway
Address
Peer ID Type
Peer Content
IKE Phase 1
Negotiation Mode
Encryption Algorithm
Authentication
Algorithm
27-18
Table 27-8 Advanced
Type the WAN IP address or the URL (up to 31 characters) of the remote secure
gateway with which you're making the VPN connection. Set this field to 0.0.0.0 if the
remote secure gateway has a dynamic WAN IP address (the Key Management field
must be set to IKE).
Select IP to identify the remote IPSec router by its IP address.
Select DNS to identify the remote IPSec router by a domain name.
Select E-mail to identify the remote IPSec router by an e-mail address.
When you select IP in the Peer ID Type field, type the IP address of the computer with
which you will make the VPN connection or leave the field blank to have the ZyWALL
automatically use the address in the Secure Gateway field.
When you select DNS in the Peer ID Type field, type a domain name (up to 31
characters) by which to identify the remote IPSec router.
When you select E-mail in the Peer ID Type field, type an e-mail address (up to 31
characters) by which to identify the remote IPSec router.
The domain name or e-mail address that you use in the Content field is used for
identification purposes only and does not need to be a real domain name or e-mail
address. The domain name also does not have to match the remote router's IP address
or what you configure in the Secure Gateway Addr field below.
A phase 1 exchange establishes an IKE SA (Security Association).
Select Main or Aggressive from the drop-down list box. The ZyWALL's negotiation
mode should be identical to that on the remote secure gateway.
Select DES or 3DES from the drop-down list box. The ZyWALL's encryption algorithm
should be identical to the secure remote gateway. When DES is used for data
communications, both sender and receiver must know the same secret key, which can
be used to encrypt and decrypt the message. The DES encryption algorithm uses a 56-
bit key. Triple DES (3DES) is a variation on DES that uses a 168-bit key. As a result,
3DES is more secure than DES. It also requires more processing power, resulting in
increased latency and decreased throughput.
Select SHA1 or MD5 from the drop-down list box. The ZyWALL's authentication
algorithm should be identical to the secure remote gateway. MD5 (Message Digest 5)
and SHA1 (Secure Hash Algorithm) are hash algorithms used to authenticate the
source and integrity of packet data. The SHA1 algorithm is generally considered
stronger than MD5, but is slower. Select SHA-1 for maximum security.
IKE VPN Rule Setup
DESCRIPTION
VPN/IPSec Setup
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyXEL ZyWALL 2WE
Related Products for ZyXEL Communications ZyXEL ZyWALL 2WE
- ZyXEL Communications 2R-P1C
- ZyXEL Communications Prestige 2304R-P1
- ZyXEL Communications 802.11g ADSL 2+ 4-Port Security Gateway HW-D Series
- ZyXEL Communications Prestige 2302R Series
- ZyXEL Communications PRESTIGE 2302RL -
- ZyXEL Communications ZYWALL 20W -
- ZyXEL Communications ZyXEL ZyWALL 30W
- ZyXEL Communications ZyXEL ZYWALL10
- ZyXEL Communications ZyXEL ZyWALL IDP 10
- ZyXEL Communications ZYWALL 2WG - V4.03
- ZyXEL Communications ZYWALL 2WG - V4.04
- ZyXEL Communications ZYWALL 2 WG
- ZyXEL Communications ISDN 202H Plus
- ZyXEL Communications Prestige 2602HWNLI-D7A
- ZyXEL Communications Prestige 202H Series
- ZyXEL Communications Prestige 2002L