ZyXEL Communications ZyWALL 5 Support Notes page 51
Hide thumbs
Also See for ZyWALL 5:
- User manual (668 pages) ,
- Quick start manual (139 pages) ,
- Specifications (2 pages)
Table of Contents
Advertisement
ISDN) which are not supported by IPSec gateway. This example gives some guideline for configuring
ZyWALL behind NAT router.
1) UDP 500 (IKE) must be forwarded to ZyWALL to accept incoming VPN connection from peer VPN
gateway or client.
2) If Firewall is running on the same NAT router, make sure a firewall rule is configured to allow
IKE/IPSec (AH/ESP) traffic to pass-through.
Configuration on Local ZyWALL
WAN->WAN1 or WAN2
VPN->VPN Rule (IKE) on ZyWALL
3
VPN->VPN Rule (IKE) on ZyWALL
3) On ZyWALL, enable "NAT Traversal" no matter if the front NAT router supports NAT Traversal
(IPSec pass-through) or not. With this option enabled, ZyWALL can detect if it is placed behind NAT
when peer VPN entity also support NAT Traversal function. If yes, the IPSec traffic will be
encapsulated in UDP packet to avoid traversal problem on NAT routers.
Configuration on Peer VPN gateway
4
VPN->VPN Rule (IKE) on ZyWALL
6
All contents copyright (c) 2006 ZyXEL Communications Corporation.
ZyWALL 5 Support Notes
5
51
Advertisement
Table of Contents
Related Manuals for ZyXEL Communications ZyWALL 5
Related Products for ZyXEL Communications ZyWALL 5
- ZyXEL Communications ZyXEL ZyWALL 35
- ZyXEL Communications ZyXEL ZyWALL USG-1000
- ZyXEL Communications Omni 56K
- ZyXEL Communications Omni 56K II
- ZyXEL Communications Omni 56K II, 56K Plus II
- ZyXEL Communications ZYWALL 5 - V4.04
- ZyXEL Communications ZYWALL 5 - V4.03
- ZyXEL Communications 56K Plus Series