Index

transport encapsulation 399 tunnel encapsulation 399 VPN gateway 394

IPSec SA

active protocol 421 and firewall 376, 733

and to-ZyWALL firewall 733 authentication algorithms 415, 416 authentication key (manual keys) 423 destination NAT for inbound traffic 425 encapsulation 422

encryption algorithms 416 encryption key (manual keys) 423 local policy 421

manual keys 423

NAT for inbound traffic 424 NAT for outbound traffic 424 Perfect Forward Secrecy (PFS) 422 proposal 422

remote policy 421 search by name 197 search by policy 197

Security Parameter Index (SPI) (manual keys) 423

see also IPSec see also VPN

source NAT for inbound traffic 425 source NAT for outbound traffic 424 status 196

transport mode 422 tunnel mode 422

when IKE SA is disconnected 421

IPSec VPN

configuration overview 101 prerequisites 100, 101 see also IPSec troubleshooting 732 tutorial 116

where used 101

ISP account CHAP 613 CHAP/PAP 613 MPPE 613 MSCHAP 613 MSCHAP-V2 613 PAP 613

ISP accounts 611

and PPPoE/PPTP interfaces 233, 611 authentication type 613

encryption method 613 stac compression 614

J

Java 510

permissions 43

JavaScripts 43

K

key pairs 589

L

LAND attack 482 lastgood.conf 696, 700

LDAP 573

and users 540 Base DN 576 Bind DN 576, 579 directory 573 directory structure 575 Distinguished Name, see DN DN 576, 577, 579, 580 password 579

port 578, 581

search time limit 579 SSL 579

user attributes 553

least load first load balancing 290 LED troubleshooting 727 legitimate e-mail 521

license key 215 upgrading 215

licensing 211

Lightweight Directory Access Protocol, see

LDAP

load balancing 289 algorithms 290, 294 least load first 290 round robin 295

948

 

ZyWALL USG 20/20W User’s Guide