ZyXEL Communications ZyWall USG 50-H Series User Manual page 69

Table 14 VPN Express Wizard: Step 2 (continued)
LABEL
Site-to-site with
Dynamic Peer
Remote
Access (Server
Role)
Remote
Access (Client
Role)
Back
Next
Figure 34 VPN Express Wizard: Step 3
The following table describes the labels in this screen.
Table 15 VPN Express Wizard: Step 3
LABEL
Secure
Gateway
Pre-Shared
Key
ZyWALL USG 50-H User's Guide
DESCRIPTION
Choose this if the remote IPSec router has a dynamic IP address. Only the remote
IPSec router can initiate the VPN tunnel.
Choose this to allow incoming connections from IPSec VPN clients. The clients have
dynamic IP addresses and are also known as dial-in users. Only the clients can
initiate the VPN tunnel.
Choose this to connect to an IPSec server. This ZyWALL is the client (dial-in user)
and can initiate the VPN tunnel.
Click Back to return to the previous screen.
Click Next to continue.
DESCRIPTION
If Any displays in this field, it is not configurable for the chosen scenario.
If this field is configurable, enter the WAN IP address or domain name of the remote
IPSec router (secure gateway) to identify the remote IPSec router by its IP address
or a domain name.
Type your pre-shared key in this field. A pre-shared key identifies a communicating
party during a phase 1 IKE negotiation. It is called "pre-shared" because you have to
share it with another party before you can communicate with them over a secure
connection.
Type from 8 to 31 case-sensitive ASCII characters or from 16 to 62 hexadecimal ("0-
9", "A-F") characters. Precede hexadecimal characters with "0x".
Both ends of the VPN tunnel must use the same pre-shared key. You will receive a
PYLD_MALFORMED (payload malformed) packet if the same pre-shared key is not
used on both ends.
Chapter 4 Wizard Setup
69