The Vpn Rules (Ike) Gateway Policy Edit Screen - ZyXEL Communications 5 Series User Manual

Table 100 SECURITY > VPN > VPN Rules (IKE) (continued)
LABEL
Gateway Policies
My
ZyWALL
Remote
Gateway
Network Policies
Y/N
Local
Network
Remote
Network
Recycle Bin

19.3 The VPN Rules (IKE) Gateway Policy Edit Screen

In the VPN Rule (IKE) screen, click the add gateway policy (
to display the VPN-Gateway Policy -Edit screen.
ZyWALL 5/35/70 Series User's Guide
DESCRIPTION
The first row of each VPN rule represents the gateway policy.
The gateway policy identifies the IPSec routers at either end of a VPN tunnel (My
ZyWALL and Remote Gateway) and specifies the authentication, encryption and
other settings needed to negotiate a phase 1 IKE SA (click the edit icon to display
the other settings).
This represents your ZyWALL.
The WAN IP address, domain name or dynamic domain name of your ZyWALL
displays in router mode.
The ZyWALL's IP address displays in bridge mode.
This represents the remote secure gateway.
The IP address, domain name or dynamic domain name of the remote IPSec
router displays if you specify it, otherwise Dynamic displays.
Click this icon to add a VPN network policy.
The subsequent rows in a VPN rule are network policies. A network policy
identifies the devices behind the IPSec routers at either end of a VPN tunnel and
specifies the authentication, encryption and other settings needed to negotiate a
phase 2 IPSec SA.
This field displays whether the network policy is active (Y) or not (N). Click the
setting to change it.
This is the network behind the ZyWALL. A network policy specifies which devices
(behind the IPSec routers) can use the VPN tunnel.
This is the remote network behind the remote IPsec router.
Click this icon to display a screen in which you can associate a network policy to a
gateway policy or move it to the recycle bin.
Click this icon to display a screen in which you can change the settings of a
gateway or network policy.
Click this icon to delete a gateway or network policy. When you delete a gateway,
the ZyWALL automatically moves the associated network policy(ies) to the recycle
bin. When you delete a network policy, it is just deleted.
Click this icon to establish a VPN connection to a remote network.
Click this icon to drop a VPN connection to a remote network.
The recycle bin appears when you have any network policies that are not
associated to a gateway policy.
• When you delete a gateway, the ZyWALL automatically moves the associated
network policy(ies) to the recycle bin.
• You can also manually move a network policy that you do not need (but may
want to use again later) to the recycle bin. Click the network policy's move or
edit icon and set its Gateway Policy to Recycle Bin.
Chapter 19 IPSec VPN
) icon or the edit ( ) icon
361