Vpn Overview; Vpn Wizard - ZyXEL Communications ZyWALL 5 User Manual
Internet security appliance
Hide thumbs
Also See for ZyWALL 5:
- User manual (668 pages) ,
- Support notes (305 pages) ,
- Quick start manual (139 pages)
Table of Contents
Advertisement
3.3
VPN Overview
A VPN (Virtual Private Network) provides secure communications between sites without the expense
of leased site-to-site lines. A secure VPN is a combination of tunneling, encryption, authentication,
access control and auditing technologies/services used to transport traffic over the Internet or any
insecure network that uses the TCP/IP protocol suite for communication.
3.3.1 IPSec
Internet Protocol Security (IPSec) is a standards-based VPN that offers flexible solutions for secure
data communications across a public network like the Internet. IPSec is built around a number of
standardized cryptographic techniques to provide confidentiality, data integrity and authentication at
the IP layer.
3.3.2 Security Association
A Security Association (SA) is a contract between two parties indicating what security parameters,
such as keys and algorithms they will use.
3.4
VPN Wizard
Use the VPN wizard screens to configure a VPN rule that use a pre-shared key. If you want to set the
rule to use a certificate, please go to the VPN screens for configuration.
3.4.1 My IP Address
My IP Address is the WAN IP address of the ZyWALL. The ZyWALL has to rebuild the VPN tunnel
if the My IP Address changes after setup.
The following applies if this field is configured as 0.0.0.0:
The ZyWALL uses the current ZyWALL WAN IP address (static or dynamic) to set up the VPN
tunnel.
If the WAN connection goes down, the ZyWALL uses the dial backup IP address for the VPN
tunnel when using dial backup or the LAN IP address when using traffic redirect. See the chapter
on WAN for details on dial backup and traffic redirect.
3.4.2 Secure Gateway Address
Secure Gateway Address is the WAN IP address or domain name of the remote IPSec router (secure
gateway).
If the remote secure gateway has a static WAN IP address, enter it in the Secure Gateway Address
field. You may alternatively enter the remote secure gateway's domain name (if it has one) in the
Secure Gateway Address field.
You can also enter a remote secure gateway's domain name in the Secure Gateway Address field if
the remote secure gateway has a dynamic WAN IP address and is using DDNS. The ZyWALL has to
rebuild the VPN tunnel each time the remote secure gateway's WAN IP address changes (there may
be a delay until the DDNS servers are updated with the remote gateway's new WAN IP address).
Wizard Setup
ZyWALL 5 Internet Security Appliance
3-9
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
