ZyWALL 2WG Support Notes
All contents copyright (c) 2006 ZyXEL Communications Corporation. 253
If firewall is turned on in ZyWALL, you must forward IKE port in Internet interface.
If NAT are also enabled in ZyWALL, NAT server is required for non-secure connections, NAT server is
not required for secure connections and the physical private IP is used.
For example:
host----ZyWALL----NAT Router----Internet----Secure host
\
\
Non-secure host
F26. Where can I configure Phase 1 ID in ZyWALL?
Phase 1 ID can be configured in VPN setup menu as following..
F27. How can I keep a tunnel alive?
To keep a tunnel alive, you can check "Nailed-up" option when configuring your VPN tunnel. With this
option, the ZyWALL will keep IPSec tunnel up at all time. With “Nailed-up”, the ZyWALL will try to
establish whenever tunnel is terminated due to any unknown reason.