Index

IP static routes. See static routes. IP stream identifier 434

IP v4 packet headers 433

IPSec 291

basic troubleshooting 297 connections 296 Default_L2TP_VPN_Connection 346 Default_L2TP_VPN_Connection example 353 Default_L2TP_VPN_GW 346 Default_L2TP_VPN_GW example 351 established in two phases 291

L2TP VPN 345 local network 291 remote IPSec router 291 remote network 291 SA 292

SA monitor 320 See also VPN.

IPSec SA

active protocol 292 and firewall 280, 297

and to-ZyWALL firewall 297 authentication algorithms 307, 308 authentication key (manual keys) 294 configuration overview 116 destination NAT for inbound traffic 296 encapsulation 293

encryption algorithms 307, 308 encryption key (manual keys) 294 local policy 292

manual keys 294

NAT for inbound traffic 294 NAT for outbound traffic 294 overlapping policies 305

Perfect Forward Secrecy (PFS) 293 policy enforcement 301 prerequisites 116

proposal 293 remote policy 292 search by name 321 search by policy 321

Security Parameter Index (SPI) (manual keys) 294 source NAT for inbound traffic 295

source NAT for outbound traffic 295 status 320

transport mode 293 tunnel mode 293

when IKE SA is disconnected 292 where used 116

IPSec SA. See also VPN.

ISP accounts 563

and PPPoE/PPTP interfaces 211, 563 authentication type 565

encryption method 565 stac compression 565

J

Java 479

K

kick out user 327 kill user session 327

L

L2TP VPN 345

configuring in Windows 2000 361 configuring in Windows XP 356 Default_L2TP_VPN_Connection 346 Default_L2TP_VPN_Connection example 353 Default_L2TP_VPN_GW 346 Default_L2TP_VPN_GW example 351

DNS 348 example 351, 354 IPSec configuration 345 policy route 346

policy route example 354 remote user configuration 355 session monitor 348

WINS 348 LAND attack 453 lastgood.conf 617

Layer 2 Tunneling Protocol Virtual Private Network, See L2TP VPN. 345

LDAP 532

and users 504 CN identifier 534 user attributes 504

LDAP (Lightweight Directory Access Protocol) 531 LDAP directory structure 532

least load first (for load balancing) 220 license key 169

load balancing 219 algorithms 220, 223 least load first 220 session-oriented 220 spillover 221

weighted round robin 221 load balancing. See also trunks. local user database 531

log messages 627 categories 631, 634, 635 debugging 625 regular 625

772

 

ZyWALL USG 1000 User’s Guide