ZyWALL 2 Series User’s Guide
| Table |
|
|
LABEL | DESCRIPTION |
|
|
Ending IP | When the Address Type field is configured to Single Address, this field is N/A. When the |
Address/ Subnet | Address Type field is configured to Range Address, enter the end (static) IP address, in |
Mask | a range of computers on the network behind the remote IPSec router. When the Address |
| Type field is configured to Subnet Address, enter a subnet mask on the network behind |
| the remote IPSec router. |
|
|
DNS Server (for | If there is a private DNS server that services the VPN, type its IP address here. The |
IPSec VPN) | ZyWALL assigns this additional DNS server to the ZyWALL's DHCP clients that have IP |
| addresses in this IPSec rule's range of local addresses. |
| A DNS server allows clients on the VPN to find other computers and servers on the VPN |
| by their (private) domain names. |
|
|
Authentication Key
Select the | |
| shared key identifies a communicating party during a phase 1 IKE negotiation. It is called |
| |
| with them over a secure connection. |
| Type from 8 to 31 |
| |
| counted as part of the 16 to 62 character range for the key. For example, in |
| "0x0123456789ABCDEF", “0x” denotes that the key is hexadecimal and |
| “0123456789ABCDEF” is the key itself. |
| Both ends of the VPN tunnel must use the same |
| “PYLD_MALFORMED” (payload malformed) packet if the same |
| used on both ends. |
|
|
Certificate | Select the Certificate radio button to identify the ZyWALL by a certificate. This feature is |
| not available on the ZyWALL 2WE. |
| Use the |
| have certificates already configured in the My Certificates screen. Click My Certificates |
| to go to the My Certificates screen where you can view the ZyWALL's list of certificates. |
|
|
VPN Screens |