Chapter 3 Wizard Setup
3.4 VPN Wizard Network Setting
Use this screen to name the VPN network policy (IPSec SA) and identify the devices behind the IPSec routers at either end of a VPN tunnel.
Two active SAs cannot have the local and remote IP address(es) both the same. Two active SAs can have the same local or remote IP address, but not both. You can configure multiple SAs between the same local and remote IP addresses, as long as only one is active at any time.
Figure 29 VPN Wizard: Network Setting
The following table describes the labels in this screen.
Table 17 VPN Wizard: Network Setting
LABEL | DESCRIPTION |
Network Policy |
|
Property |
|
|
|
Active | If the Active check box is selected, packets for the tunnel trigger the ZyWALL to build |
| the tunnel. |
| Clear the Active check box to turn the network policy off. The ZyWALL does not |
| apply the policy. Packets for the tunnel do not trigger the tunnel. |
|
|
Name | Type up to 32 characters to identify this VPN network policy. You may use any |
| character, including spaces, but the ZyWALL drops trailing spaces. |
|
|
Network Policy |
|
Setting |
|
|
|
Local Network | Local IP addresses must be static and correspond to the remote IPSec router's |
| configured remote IP addresses. |
| Select Single for a single IP address. Select Range IP for a specific range of IP |
| addresses. Select Subnet to specify IP addresses on a network by their subnet |
| mask. |
|
|
92 |
| |
ZyWALL 2WG User’s Guide |
| |
|
|
|