ZyXEL Communications ZyXEL ZyWALL 2WE User Manual page 305
Zyxel internet security gateway user's guide
Hide thumbs
Also See for ZyXEL ZyWALL 2WE:
- Compact manual (42 pages) ,
- Specifications (2 pages) ,
- User manual (614 pages)
Table of Contents
Advertisement
LABEL
Peer Content
Encapsulation Mode
IPSec Protocol
Pre-Shared Key
VPN/IPSec Setup
Table 27-7 Basic IKE VPN Rule Setup
When you select IP in the Peer ID Type field, type the IP address of the computer with
which you will make the VPN connection or leave the field blank to have the ZyWALL
automatically use the address in the Secure Gateway field.
When you select DNS in the Peer ID Type field, type a domain name (up to 31
characters) by which to identify the remote IPSec router.
When you select E-mail in the Peer ID Type field, type an e-mail address (up to 31
characters) by which to identify the remote IPSec router.
The domain name or e-mail address that you use in the Content field is used for
identification purposes only and does not need to be a real domain name or e-mail
address. The domain name also does not have to match the remote router's IP
address or what you configure in the Secure Gateway Addr field below.
Select Tunnel mode or Transport mode from the drop-down list box.
Select ESP if you want to use ESP (Encapsulation Security Payload). The ESP
protocol (RFC 2406) provides encryption as well as some of the services offered by
AH. If you select ESP here, you must select options from the Encryption Algorithm
and Authentication Algorithm fields (described next).
Select AH if you want to use AH (Authentication Header Protocol). The AH protocol
(RFC 2402) was designed for integrity, authentication, sequence integrity (replay
resistance), and non-repudiation but not for confidentiality, for which the ESP was
designed. If you select AH here, you must select options from the Authentication
Algorithm field (described later).
Type your pre-shared key in this field. A pre-shared key identifies a communicating
party during a phase 1 IKE negotiation. It is called "pre-shared" because you have to
share it with another party before you can communicate with them over a secure
connection.
Both ends of the VPN tunnel must use the same pre-shared key. You will receive a
"PYLD_MALFORMED" (payload malformed) packet if the same pre-shared key is not
used on both ends.
ZyWALL 2 and ZyWALL 2WE
DESCRIPTION
27-11
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyXEL ZyWALL 2WE
Related Products for ZyXEL Communications ZyXEL ZyWALL 2WE
- ZyXEL Communications 2R-P1C
- ZyXEL Communications Prestige 2304R-P1
- ZyXEL Communications 802.11g ADSL 2+ 4-Port Security Gateway HW-D Series
- ZyXEL Communications Prestige 2302R Series
- ZyXEL Communications PRESTIGE 2302RL -
- ZyXEL Communications ZYWALL 20W -
- ZyXEL Communications ZyXEL ZyWALL 30W
- ZyXEL Communications ZyXEL ZYWALL10
- ZyXEL Communications ZyXEL ZyWALL IDP 10
- ZyXEL Communications ZYWALL 2WG - V4.03
- ZyXEL Communications ZYWALL 2WG - V4.04
- ZyXEL Communications ZYWALL 2 WG
- ZyXEL Communications ISDN 202H Plus
- ZyXEL Communications Prestige 2602HWNLI-D7A
- ZyXEL Communications Prestige 202H Series
- ZyXEL Communications Prestige 2002L