ZyWALL 5/35/70 Series User’s Guide
Table 105 VPN Rules (Manual) Edit (continued)
LABEL | DESCRIPTION |
|
|
Local Network | Local IP addresses must be static and correspond to the remote IPSec router's |
| configured remote IP addresses. |
| Two active SAs cannot have the local and remote IP address(es) both the same. |
| Two active SAs can have the same local or remote IP address, but not both. You |
| can configure multiple SAs between the same local and remote IP addresses, as |
| long as only one is active at any time. |
Address Type | Use the |
| Subnet Address. Select Single Address for a single IP address. Select Range |
| Address for a specific range of IP addresses. Select Subnet Address to specify |
| IP addresses on a network by their subnet mask. |
Starting IP | When the Address Type field is configured to Single Address, enter a (static) IP |
Address | address on the LAN behind your ZyWALL. When the Address Type field is |
| configured to Range Address, enter the beginning (static) IP address, in a range |
| of computers on the LAN behind your ZyWALL. When the Address Type field is |
| configured to Subnet Address, this is a (static) IP address on the LAN behind your |
| ZyWALL. |
Ending IP | When the Address Type field is configured to Single Address, this field is N/A. |
Address/Subnet | When the Address Type field is configured to Range Address, enter the end |
Mask | (static) IP address, in a range of computers on the LAN behind your ZyWALL. |
| When the Address Type field is configured to Subnet Address, this is a subnet |
| mask on the LAN behind your ZyWALL. |
Remote Network | Remote IP addresses must be static and correspond to the remote IPSec router's |
| configured local IP addresses. |
| Two active SAs cannot have the local and remote IP address(es) both the same. |
| Two active SAs can have the same local or remote IP address, but not both. You |
| can configure multiple SAs between the same local and remote IP addresses, as |
| long as only one is active at any time. |
Address Type | Use the |
| Subnet Address. Select Single Address with a single IP address. Select Range |
| Address for a specific range of IP addresses. Select Subnet Address to specify |
| IP addresses on a network by their subnet mask. |
Starting IP | When the Address Type field is configured to Single Address, enter a (static) IP |
Address | address on the network behind the remote IPSec router. When the Addr Type field |
| is configured to Range Address, enter the beginning (static) IP address, in a |
| range of computers on the network behind the remote IPSec router. When the |
| Address Type field is configured to Subnet Address, enter a (static) IP address |
| on the network behind the remote IPSec router. |
Ending IP | When the Address Type field is configured to Single Address, this field is N/A. |
Address/Subnet | When the Address Type field is configured to Range Address, enter the end |
Mask | (static) IP address, in a range of computers on the network behind the remote |
| IPSec router. When the Address Type field is configured to Subnet Address, |
| enter a subnet mask on the network behind the remote IPSec router. |
Gateway Policy |
|
Information |
|
333 | Chapter 19 VPN Screens |