Chapter 14 IPSec VPN
Table 92 SECURITY > VPN > VPN Rules (Manual) > Edit (continued)
LABEL | DESCRIPTION |
Allow NetBIOS | This field is not available when the ZyWALL is in bridge mode. |
Traffic Through | NetBIOS (Network Basic Input/Output System) are TCP or UDP packets that |
IPSec Tunnel | enable a computer to find other computers. It may sometimes be necessary to |
| allow NetBIOS packets to pass through VPN tunnels in order to allow local |
| computers to find computers on the remote network and vice versa. |
| Select this check box to send NetBIOS packets through the VPN connection. |
|
|
Local Network | Specify the IP addresses of the devices behind the ZyWALL that can use the VPN |
| tunnel. The local IP addresses must correspond to the remote IPSec router's |
| configured remote IP addresses. |
| Two active SAs cannot have the local and remote IP address(es) both the same. |
| Two active SAs can have the same local or remote IP address, but not both. You |
| can configure multiple SAs between the same local and remote IP addresses, as |
| long as only one is active at any time. |
|
|
Address Type | Use the |
| Subnet Address. Select Single Address for a single IP address. Select Range |
| Address for a specific range of IP addresses. Select Subnet Address to specify |
| IP addresses on a network by their subnet mask. |
|
|
Starting IP | When the Address Type field is configured to Single Address, enter a (static) IP |
Address | address on the LAN behind your ZyWALL. When the Address Type field is |
| configured to Range Address, enter the beginning (static) IP address, in a range |
| of computers on the LAN behind your ZyWALL. When the Address Type field is |
| configured to Subnet Address, this is a (static) IP address on the LAN behind |
| your ZyWALL. |
|
|
Ending IP | When the Address Type field is configured to Single Address, this field is N/A. |
Address/Subnet | When the Address Type field is configured to Range Address, enter the end |
Mask | (static) IP address, in a range of computers on the LAN behind your ZyWALL. |
| When the Address Type field is configured to Subnet Address, this is a subnet |
| mask on the LAN behind your ZyWALL. |
|
|
Remote Network | Specify the IP addresses of the devices behind the remote IPSec router that can |
| use the VPN tunnel. The remote IP addresses must correspond to the remote |
| IPSec router's configured local IP addresses. |
| Two active SAs cannot have the local and remote IP address(es) both the same. |
| Two active SAs can have the same local or remote IP address, but not both. You |
| can configure multiple SAs between the same local and remote IP addresses, as |
| long as only one is active at any time. |
|
|
Address Type | Use the |
| Subnet Address. Select Single Address with a single IP address. Select Range |
| Address for a specific range of IP addresses. Select Subnet Address to specify |
| IP addresses on a network by their subnet mask. |
|
|
Starting IP | When the Address Type field is configured to Single Address, enter a (static) IP |
Address | address on the network behind the remote IPSec router. When the Addr Type field |
| is configured to Range Address, enter the beginning (static) IP address, in a |
| range of computers on the network behind the remote IPSec router. When the |
| Address Type field is configured to Subnet Address, enter a (static) IP address |
| on the network behind the remote IPSec router. |
|
|
Ending IP | When the Address Type field is configured to Single Address, this field is N/A. |
Address/Subnet | When the Address Type field is configured to Range Address, enter the end |
Mask | (static) IP address, in a range of computers on the network behind the remote |
| IPSec router. When the Address Type field is configured to Subnet Address, |
| enter a subnet mask on the network behind the remote IPSec router. |
|
|
Gateway Policy |
|
Information |
|
|
|
336 |
| |
ZyWALL 2WG User’s Guide |
| |
|
|
|