Chapter 6 Device Security Settings
Vantage CNM User’s Guide
141
The following table describes the labels in this screen.
Table 50
Device Operation > Device Configuration > Security > VPN > VPN Rules
(IKE) > Gateway Policy Add/Edit
LABEL
DESCRIPTION
Property
NAT Traversal
Select this check box to enable NAT traversal. NAT traversal allows
you to set up a VPN connection when there are NAT routers
between the two IPSec routers.
Note: The remote IPSec router must also have NAT traversal
enabled.
You can use NAT traversal with ESP protocol using Transport or
Tunnel mode, but not with AH protocol nor with manual key
management. In order for an IPSec router behind a NAT router to
receive an initiating IPSec packet, set the NAT router to forward
UDP port 500 to the IPSec router behind the NAT router.
Name
Type up to 32 characters to identify this VPN gateway policy. You
may use any character, including spaces, but the device drops
trailing spaces.
Gateway Policy Information
My ZyWALL
Address Type
This field specifies how the IP address of the device is specified.
IP Address: The device’s IP address is a static IP address.
Domain Name: The device’s IP address is the IP address mapped
to a specified domain name.
DDNS Domain Name: The device’s IP address is the IP address
mapped to a specified DDNS domain name.
The VPN tunnel has to be rebuilt if the device’s IP address changes
after setup.
My ZyWALL IP
Address
This field is enabled if My ZyWALL Address Type is IP Address.
Enter the device's static WAN IP address or leave the field set to
0.0.0.0. The following applies if this field is configured as 0.0.0.0:
• When the WAN port operation mode is set to Active/Passive,
the device uses the IP address (static or dynamic) of the WAN
port that is in use.
• When the WAN port operation mode is set to Active/Active, the
device uses the IP address (static or dynamic) of the primary
(highest priority) WAN port to set up the VPN tunnel as long as
the corresponding WAN1 or WAN2 connection is up. If the
corresponding WAN1 or WAN2 connection goes down, the device
uses the IP address of the other WAN port.
• If both WAN connections go down, the device uses the dial
backup IP address for the VPN tunnel when using dial backup or
the LAN IP address when using traffic redirect. See the chapter
on WAN for details on dial backup and traffic redirect.
My ZyWALL Domain
Name
This field is enabled if My ZyWALL Address Type is IP Address.
Enter the domain name associated with the device in the VPN
tunnel.
Summary of Contents for VANTAGE CNM
Page 2: ......
Page 20: ...New Template User s Guide 20...
Page 23: ...23 PART I Introduction Introducing Vantage CNM 21 GUI Introduction 25...
Page 24: ...24...
Page 46: ...46...
Page 50: ...Chapter 3 Load or Save Building Blocks BB Vantage CNM User s Guide 50...
Page 140: ...Chapter 6 Device Security Settings Vantage CNM User s Guide 140 IKE Gateway Policy Add Edit...
Page 242: ...Chapter 8 Device Log Vantage CNM User s Guide 242...
Page 246: ...246...
Page 346: ...Chapter 11 IPSec VPN Vantage CNM User s Guide 346...
Page 356: ...Chapter 13 L2TP VPN Vantage CNM User s Guide 356...
Page 384: ...Chapter 14 Vantage CNM User s Guide 384...
Page 408: ...408...
Page 456: ...Chapter 18 Firmware Management Vantage CNM User s Guide 456...
Page 474: ...474...
Page 494: ...494...
Page 534: ...Chapter 26 Device Alarm Vantage CNM User s Guide 534...
Page 535: ...535 PART VII Log Report Device Operation Report 537 CNM Logs 553 VRPT 555...
Page 536: ...536...
Page 552: ...Chapter 27 Device Operation Report Vantage CNM User s Guide 552...
Page 560: ...560...
Page 580: ...Chapter 30 CNM System Setting Vantage CNM User s Guide 580...
Page 588: ...Chapter 33 Vantage CNM Software Upgrade Vantage CNM User s Guide 588...
Page 592: ...Chapter 35 About CNM Vantage CNM User s Guide 592...
Page 593: ...593 PART IX Account Management User Group 595 Account 599...
Page 594: ...594...
Page 598: ...Chapter 36 User Group Vantage CNM User s Guide 598...
Page 603: ...603 PART X Troubleshooting Troubleshooting 605...
Page 604: ...604...
Page 610: ...610...
Page 616: ...Appendix A Product Specifications Vantage CNM User s Guide 616...
Page 634: ...Appendix B Setting up Your Computer s IP Address Vantage CNM User s Guide 634...
Page 656: ...Appendix E IP Address Assignment Conflicts Vantage CNM User s Guide 656...
Page 666: ...Appendix G Importing Certificates Vantage CNM User s Guide 666...