ZyXEL Communications ZyWALL 2 Compact Manual page 38
Internet security gateway
Hide thumbs
Also See for ZyWALL 2:
- User manual (686 pages) ,
- Quick start manual (137 pages) ,
- Firmware release notes (43 pages)
Table of Contents
Advertisement
Content
The configuration of the peer content depends on the peer ID type.
Do the following when you set Authentication Method to Pre-shared Key.
It is recommended that you type an IP address other than 0.0.0.0 or use the DNS or E-mail ID type in
the following situations:
Do the following when you set Authentication Method to Certificate.
Regardless of how you configure the ID Type and Content fields, two active SAs cannot have both
the local and remote IP address ranges overlap between rules.
My IP Address
Enter the WAN IP address of your ZyWALL. The VPN tunnel has to be rebuilt if this IP address
changes.
The following applies if this field is configured as 0.0.0.0:
For IP, type the IP address of the computer with which you will make the VPN connection. If
you configure this field to 0.0.0.0 or leave it blank, the ZyWALL will use the address in the
Secure Gateway Address field (refer to the Secure Gateway Address field description).
For DNS or E-mail, type a domain name or e-mail address by which to identify the remote
IPSec router. Use up to 31 ASCII characters including spaces, although trailing spaces are
truncated. The domain name or e-mail address is for identification purposes only and can
be any string.
When there is a NAT router between the two IPSec routers.
When you want the ZyWALL to distinguish between VPN connection requests that come in
from remote IPSec routers with dynamic WAN IP addresses.
For IP, type the IP address from the subject alternative name field of the certificate the
remote IPSec router will use for this VPN connection. If you configure this field to 0.0.0.0 or
leave it blank, the ZyWALL will use the address in the Secure Gateway Address field
(refer to the Secure Gateway Address field description).
For DNS or E-mail, type the domain name or e-mail address from the subject alternative
name field of the certificate the remote IPSec router will use for this VPN connection.
For Subject Name, type the subject name of the certificate the remote IPSec router will use
for this VPN connection.
For Any, the peer Content field is not available.
The ZyWALL uses the current ZyWALL WAN IP address (static or dynamic) to set up the VPN
tunnel.
If the WAN connection goes down, the ZyWALL uses the dial backup IP address for the VPN
tunnel when using dial backup or the LAN IP address when using traffic redirect. See the User's
Guide for details on dial backup and traffic redirect.
ZyWALL 2
38
Advertisement
Table of Contents
Related Manuals for ZyXEL Communications ZyWALL 2
Related Products for ZyXEL Communications ZyWALL 2
- ZyXEL Communications 2R-P1C
- ZyXEL Communications Prestige 2304R-P1
- ZyXEL Communications 802.11g ADSL 2+ 4-Port Security Gateway HW-D Series
- ZyXEL Communications Prestige 2302R Series
- ZyXEL Communications ZyXEL ZyWALL 2WE
- ZyXEL Communications PRESTIGE 2302RL -
- ZyXEL Communications ZYWALL 20W -
- ZyXEL Communications Prestige 2602HW-C Series