Chapter 18 VPN Screens
Table 109 Edit VPN Policies
LABEL | DESCRIPTION |
End / Subnet Mask | When the Remote Address Type field is configured to Single, this field is N/A. |
| When the Remote Address Type field is configured to Range, enter the end |
| (static) IP address, in a range of computers on the network behind the remote |
| IPSec router. When the Remote Address Type field is configured to Subnet, |
| enter a subnet mask on the network behind the remote IPSec router. |
|
|
Address |
|
Information |
|
|
|
Local ID Type | Select IP to identify this ZyXEL Device by its IP address. |
| Select DNS to identify this ZyXEL Device by a domain name. |
| Select |
Content | When you select IP in the Local ID Type field, type the IP address of your |
| computer in the local Content field. The ZyXEL Device automatically uses the IP |
| address in the My IP Address field (refer to the My IP Address field description) |
| if you configure the local Content field to 0.0.0.0 or leave it blank. |
| It is recommended that you type an IP address other than 0.0.0.0 in the local |
| Content field or use the DNS or |
| When there is a NAT router between the two IPSec routers. |
| When you want the remote IPSec router to be able to distinguish between VPN |
| connection requests that come in from IPSec routers with dynamic WAN IP |
| addresses. |
| When you select DNS or |
| or |
| field. Use up to 31 ASCII characters including spaces, although trailing spaces |
| are truncated. The domain name or |
| only and can be any string. |
|
|
My IP Address | Enter the WAN IP address of your ZyXEL Device. The VPN tunnel has to be |
| rebuilt if this IP address changes. |
| The following applies if this field is configured as 0.0.0.0: |
| The ZyXEL Device uses the current ZyXEL Device WAN IP address (static or |
| dynamic) to set up the VPN tunnel. |
| If the WAN connection goes down, the ZyXEL Device uses the dial backup IP |
| address for the VPN tunnel when using dial backup or the LAN IP address when |
| using traffic redirect. See Chapter 7 on page 101 for details on dial backup and |
| traffic redirect. |
|
|
Peer ID Type | Select IP to identify the remote IPSec router by its IP address. |
| Select DNS to identify the remote IPSec router by a domain name. |
| Select |
|
|
Content | The configuration of the peer content depends on the peer ID type. |
| For IP, type the IP address of the computer with which you will make the VPN |
| connection. If you configure this field to 0.0.0.0 or leave it blank, the ZyXEL |
| Device will use the address in the Secure Gateway Address field (refer to the |
| Secure Gateway Address field description). |
| For DNS or |
| the remote IPSec router. Use up to 31 ASCII characters including spaces, |
| although trailing spaces are truncated. The domain name or |
| identification purposes only and can be any string. |
| It is recommended that you type an IP address other than 0.0.0.0 or use the DNS |
| or |
| When there is a NAT router between the two IPSec routers. |
| When you want the ZyXEL Device to distinguish between VPN connection |
| requests that come in from remote IPSec routers with dynamic WAN IP |
| addresses. |
|
|
286 |
| |
| ||
|
|
|