|
| ||
| Table 52 Security > VPN > Rule Setup: IKE (Basic) (continued) | ||
| LABEL | DESCRIPTION |
|
|
|
|
|
| Remote Address | For a single IP address, enter a (static) IP address on the network behind the |
|
|
| remote IPSec router. |
|
|
| For a specific range of IP addresses, enter the beginning (static) IP address, in a |
|
|
| range of computers on the network behind the remote IPSec router. |
|
|
| To specify IP addresses on a network by their subnet mask, enter a (static) IP |
|
|
| address on the network behind the remote IPSec router. |
|
|
|
|
|
| Remote Address | When the remote IP address is a single address, type it a second time here. |
|
| End /Mask | When the remote IP address is a range, enter the end (static) IP address, in a |
|
|
| range of computers on the network behind the remote IPSec router. |
|
|
| When the remote IP address is a subnet address, enter a subnet mask on the |
|
|
| network behind the remote IPSec router. |
|
|
|
|
|
| Authentication |
|
|
| Method |
|
|
|
|
|
|
| My IP Address | Enter the ZyXEL Device's static WAN IP address (if it has one) or leave the field |
|
|
| set to 0.0.0.0. |
|
|
| The ZyXEL Device uses its current WAN IP address (static or dynamic) in setting |
|
|
| up the VPN tunnel if you leave this field as 0.0.0.0. If the WAN connection goes |
|
|
| down, the ZyXEL Device uses the dial backup IP address for the VPN tunnel |
|
|
| when using dial backup or the LAN IP address when using traffic redirect. |
|
|
| Otherwise, you can enter one of the dynamic domain names that you have |
|
|
| configured (in the DDNS screen) to have the ZyXEL Device use that dynamic |
|
|
| domain name's IP address. |
|
|
| The VPN tunnel has to be rebuilt if My IP Address changes after setup. |
|
|
|
|
|
| Local ID Type | Select IP to identify this ZyXEL Device by its IP address. |
|
|
| Select DNS to identify this ZyXEL Device by a domain name. |
|
|
| Select |
|
|
|
|
|
| Local Content | When you select IP in the Local ID Type field, type the IP address of your |
|
|
| computer in the Local Content field. The ZyXEL Device automatically uses the |
|
|
| IP address in the My IP Address field (refer to the My IP Address field |
|
|
| description) if you configure the Local Content field to 0.0.0.0 or leave it blank. |
|
|
| It is recommended that you type an IP address other than 0.0.0.0 in the Local |
|
|
| Content field or use the Domain Name or |
|
|
| situations. |
|
|
| • When there is a NAT router between the two IPSec routers. |
|
|
| • When you want the remote IPSec router to be able to distinguish between |
|
|
| VPN connection requests that come in from IPSec routers with dynamic WAN |
|
|
| IP addresses. |
|
|
| When you select Domain Name or |
|
|
| domain name or |
|
|
| Local Content field. Use up to 31 ASCII characters including spaces, although |
|
|
| trailing spaces are truncated. The domain name or |
|
|
| identification purposes only and can be any string. |
|
|
|
|
|
Chapter 13 IPSec VPN | 151 |