ZyXEL Communications 2WE 311

	ZyWALL 2 and ZyWALL 2WE
	Table 27-8 Advanced IKE VPN Rule Setup

LABEL	DESCRIPTION

	Enter a port number in this field to define a port range. This port number must be
Local Port End	greater than that specified in the previous field (or equal to it for configuring an individual
	port).

Remote Address	Enter the beginning (static) IP address, in a range of computers behind the remote
Remote Address	secure gateway. This address should be specific to the remote computer using the VPN
Start	tunnel. If you wish to configure the tunnel for a single IP address, enter it in this field and
	again in the Remote Address End field.

Remote Address	Enter the end (static) IP address, in a range of computers on behind the remote secure
Remote Address	gateway. This address should be specific to the remote computer using the VPN tunnel.
End/Mask	If you wish to configure the tunnel for a single IP address, enter it in both the Remote
	Address Start field and here.

Remote Port Start	0 is the default and signifies any port. Type a port number from 0 to 65535. Some of the
Remote Port Start	most common IP ports are: 21, FTP; 53, DNS; 23, Telnet; 80, HTTP; 25, SMTP; 110,
	POP3

Remote Port End	Enter a port number in this field to define a port range. This port number must be
Remote Port End	greater than that specified in the previous field (or equal to it for configuring an individual
	port).

My IP Address	Enter the WAN IP address of your ZyWALL. The ZyWALL uses its current WAN IP
My IP Address	address (static or dynamic) in setting up the VPN tunnel if you leave this field as 0.0.0.0.
	The VPN tunnel has to be rebuilt if this IP address changes.

	Select IP to identify this ZyWALL by its IP address.
Local ID Type	Select DNS to identify this ZyWALL by a domain name.
	Select E-mailto identify this ZyWALL by an e-mail address.

	When you select IP in the Local ID Type field, type the IP address of your computer or
	leave the field blank to have the ZyWALL automatically use its own IP address.
	When you select DNS in the Local ID Type field, type a domain name (up to 31
	characters) by which to identify this ZyWALL.
Local Content	When you select E-mailin the Local ID Type field, type an e-mail address (up to 31
	characters) by which to identify this ZyWALL.
	The domain name or e-mail address that you use in the Content field is used for
	identification purposes only and does not need to be a real domain name or e-mail
	address.

VPN/IPSec Setup

27-17