ZyXEL Communications ZyWall 10W User Manual page 547
Zywall series internet security gateway
Hide thumbs
Also See for ZyWall 10W:
- User manual (708 pages) ,
- Quick start manual (9 pages) ,
- Specifications (2 pages)
Table of Contents
Advertisement
FIELD
Content
Peer ID
Type
IP
DNS or
E-Mail
It is recommended that you type an IP address other than 0.0.0.0 or use
the DNS or E-mail Peer ID Type with the following situations:
With either Authentication Method (Pre-Shared Key or Certificate) in
menu 27.1.1.1, if you use IP as the peer ID type and configure the content
as 0.0.0.0 (or blank) and the Secure Gateway Address is also configured
as 0.0.0.0, the ZyWALL does not check the peer's ID content.
Regardless of how you configure the ID Type and Content fields, active
rules cannot have overlapping local and remote IP address ranges.
Secure
Type the IP address or the domain name (up to 31 characters) of the
Gateway
IPSec router with which you're making the VPN connection.
Address
Set this field to 0.0.0.0 if the remote IPSec router has a dynamic WAN IP
address (the Key Management field must be set to IKE, see later).
Protocol
Enter 1 for ICMP, 6 for TCP, 17 for UDP, etc. 0 is the default and signifies
any protocol.
Local
Local IP addresses must be static and correspond to the remote IPSec
router's configured remote IP addresses.
Two active SAs cannot have the local and remote IP address(es) both the
same. Two active SAs can have the same local or remote IP address, but
not both. You can configure multiple SAs between the same local and
remote IP addresses, as long as only one is active at any time.
VPN/IPSec Setup
Table 40-2 Menu 27.1.1: IPSec Setup
DESCRIPTION
Peer ID Content when you set Authentication Method to
Pre-Shared Key.
Type the IP address of the computer with which you will
make the VPN connection. If you configure this field to
0.0.0.0 or leave it blank, the ZyWALL will use the address in
the Secure Gateway Address field.
Type a domain name or e-mail address by which to identify
the remote IPSec router. Use up to 31 ASCII characters
including spaces, although trailing spaces are truncated.
The domain name or e-mail address is for identification
purposes only and can be any string.
There is a NAT router between the two IPSec routers.
You want the ZyWALL to distinguish between VPN connection
requests coming in from remote IPSec routers with dynamic WAN
IP addresses.
ZyWALL Series Internet Security Gateway
EXAMPLE
Zw50test.com.
tw
0
40-9
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall 10W
Related Products for ZyXEL Communications ZyWall 10W
- ZyXEL Communications 1
- ZyXEL Communications 802.11g Wireless Firewall Router 1-P-320W
- ZyXEL Communications Prestige 128L
- ZyXEL Communications Prestige 128IMH
- ZyXEL Communications PRESTIGE 153
- ZyXEL Communications PRESTIGE 153X
- ZyXEL Communications ZyXEL Prestige 100MH
- ZyXEL Communications ZyXEL Prestige 100WH