ZyXEL Communications ZyWall Reference Manual page 146
Hide thumbs
Also See for ZyWall:
- Support note (44 pages) ,
- Troubleshooting manual (26 pages) ,
- Quick start manual (2 pages)
Table of Contents
Advertisement
Chapter 17 IPSec VPN
Table 72 crypto Commands: IPSec SAs (continued)
COMMAND
[no] nail-up
[no] replay-detection
[no] netbios-broadcast
[no] out-snat activate
out-snat source address_name destination
address_name snat address_name
[no] in-snat activate
in-snat source address_name destination
address_name snat address_name
[no] in-dnat activate
in-dnat delete <1..10>
in-dnat move <1..10> to <1..10>
in-dnat append protocol {all | tcp | udp}
original-ip address_name <0..65535>
<0..65535> mapped-ip address_name
<0..65535> <0..65535>
in-dnat insert <1..10> protocol {all |
tcp | udp} original-ip address_name
<0..65535> <0..65535> mapped-ip
address_name <0..65535> <0..65535>
in-dnat <1..10> protocol {all | tcp |
udp} original-ip address_name <0..65535>
<0..65535> mapped-ip address_name
<0..65535> <0..65535>
146
DESCRIPTION
Automatically re-negotiates the SA as needed. The
does not.
Enables replay detection. The
Enables NetBIOS broadcasts through the IPSec SA. The
command disables NetBIOS broadcasts through the IPSec SA.
Enables out-bound traffic SNAT over IPSec. The
disables out-bound traffic SNAT over IPSec.
Configures out-bound traffic SNAT in the IPSec SA.
Enables in-bound traffic SNAT in the IPSec SA. The
disables in-bound traffic SNAT in the IPSec SA.
Configures in-bound traffic SNAT in the IPSec SA.
Enables in-bound traffic DNAT in the IPSec SA. The
disables in-bound traffic DNAT in the IPSec SA.
Deletes the specified rule for in-bound traffic DNAT in the specified
IPSec SA.
Moves the specified rule (first rule number) to the specified
location (second rule number) for in-bound traffic DNAT.
Maps the specified IP address and port range (original-ip) to the
specified IP address and port range (mapped-ip) and appends this
rule to the end of the rule list for in-bound traffic DNAT.
Maps the specified IP address and port range (original-ip) to the
specified IP address and port range (mapped-ip) and inserts this
rule before the specified rule.
Creates or revises the specified rule and maps the specified IP
address and port range (original-ip) to the specified IP address and
port range (mapped-ip).
command
no
command disables it.
no
no
command
no
command
no
command
no
ZyWALL (ZLD) CLI Reference Guide
- Quick Links:
- Command Line Interface
Hide quick links:
Advertisement
Table of Contents
Related Manuals for ZyXEL Communications ZyWall
Related Products for ZyXEL Communications ZyWall
- ZyXEL Communications Internet Security Appliance ZyWALL5UTM 4.0
- ZyXEL Communications ZyWALL USG Series
- ZyXEL Communications ZYWALL - CLI
- ZyXEL Communications ZYWALL OTPV2 - SUPPORT NOTE V1
- ZyXEL Communications ZYWALL2 ET 2WE
- ZyXEL Communications ZyWALL USG 50
- ZyXEL Communications ZYWALL 10W - GUIDE D'INSTALLATION
- ZyXEL Communications ZYWALL TURBO CARD