ZyXEL Communications 91-009-073003B 931

Index

Internet Protocol Security, see IPSec Internet Protocol (IP) 497

intrusions host 510 network 511

Intrusion, Detection and Prevention see IDP 479 IP address 32

IP alias, see virtual interfaces IP decoy portscan 526

IP distributed portscan 526 IP options 498, 503

IP policy routing, see policy routes IP pool 416

IP portscan 525 IP portsweep 526 IP protocols 605

and service objects 606 ICMP, see ICMP

TCP, see TCP UDP, see UDP

IP security option 498

IP static routes, see static routes IP stream identifier 498

IP v4 packet headers 497 IP (Internet Protocol) 497 IPSec 375

active protocol 383 AH 383

and certificates 378 authentication 384 basic troubleshooting 767 certificates 394 connections 378 connectivity check 384 encapsulation 383 encryption 384

ESP 383

established in two phases 376 local network 375

local policy 383 manual key 383 NetBIOS 382 peer 375

Perfect Forward Secrecy 384 PFS 384

phase 2 settings 383 policy enforcement 383

remote access 382 remote IPSec router 375 remote network 375 remote policy 383 replay detection 382 SA life time 383

SA monitor 191

SA see also IPSec SA 405 see also VPN

site-to-site with dynamic peer 382 static site-to-site 382

transport encapsulation 383 tunnel encapsulation 383 VPN gateway 378

IPSec SA

active protocol 405 and firewall 360, 768

and to-ZyWALL firewall 768 authentication algorithms 399, 400 authentication key (manual keys) 407 destination NAT for inbound traffic 409 encapsulation 406

encryption algorithms 400 encryption key (manual keys) 407 local policy 405

manual keys 407

NAT for inbound traffic 408 NAT for outbound traffic 408 Perfect Forward Secrecy (PFS) 406 proposal 406

remote policy 405 search by name 192 search by policy 192

Security Parameter Index (SPI) (manual keys) 407

	931
ZyWALL USG 50 User’s Guide	931