Chapter 14 IPSec VPN
ZyWALL 2 Plus User’s Guide
267
Fall back to
Primary Remote
Gateway when
possible
Select this to have the ZyWALL change back to using the primary remote
gateway if the connection becomes available again.
Fall Back Check
Interval*
Set how often the ZyWALL should check the connection to the primary remote
gateway while connected to the redundant remote gateway.
Each gateway policy uses one or more network policies. If the fall back check
interval is shorter than a network policy’s SA life time, the fall back check interval
is used as the check interval and network policy SA life time. If the fall back check
interval is longer than a network policy’s SA life time, the SA lifetime is used as
the check interval and network policy SA life time.
Authentication Key
Pre-Shared Key
Select the
Pre-Shared Key
radio button and type your pre-shared key in this
field. A pre-shared key identifies a communicating party during a phase 1 IKE
negotiation. It is called "pre-shared" because you have to share it with another
party before you can communicate with them over a secure connection.
Type from 8 to 31 case-sensitive ASCII characters or from 16 to 62 hexadecimal
("0-9", "A-F") characters. You must precede a hexadecimal key with a "0x (zero
x), which is not counted as part of the 16 to 62 character range for the key. For
example, in "0x0123456789ABCDEF", 0x denotes that the key is hexadecimal
and 0123456789ABCDEF is the key itself.
Both ends of the VPN tunnel must use the same pre-shared key. You will receive
a PYLD_MALFORMED (payload malformed) packet if the same pre-shared key
is not used on both ends.
Certificate
Select the
Certificate
radio button to identify the ZyWALL by a certificate.
Use the drop-down list box to select the certificate to use for this VPN tunnel. You
must have certificates already configured in the
My Certificates
screen. Click
My
Certificates
to go to the
My Certificates
screen where you can view the
ZyWALL's list of certificates.
Local ID Type
Select
IP
to identify this ZyWALL by its IP address.
Select
DNS
to identify this ZyWALL by a domain name.
Select
to identify this ZyWALL by an e-mail address.
You do not configure the local ID type and content when you set
Authentication
Key
to
Certificate
. The ZyWALL takes them from the certificate you select.
Content
When you select
IP
in the
Local ID Type
field, type the IP address of your
computer in the local
Content
field. The ZyWALL automatically uses the IP
address in the
My ZyWALL
field (refer to the
My
ZyWALL field description) if you
configure the local
Content
field to
0.0.0.0
or leave it blank.
It is recommended that you type an IP address other than
0.0.0.0
in the local
Content
field or use the
DNS
or
ID type in the following situations.
1. When there is a NAT router between the two IPSec routers.
2. When you want the remote IPSec router to be able to distinguish between VPN
connection requests that come in from IPSec routers with dynamic WAN IP
addresses.
When you select
DNS
or
in the
Local ID Type
field, type a domain name
or e-mail address by which to identify this ZyWALL in the local
Content
field. Use
up to 31 ASCII characters including spaces, although trailing spaces are
truncated. The domain name or e-mail address is for identification purposes only
and can be any string.
Table 67
SECURITY > VPN > VPN Rules (IKE) > Edit Gateway Policy (continued)
LABEL
DESCRIPTION
Содержание ADSL 2+ Security Gateway
Страница 1: ...www zyxel com ZyWALL 2 Plus Internet Security Appliance User s Guide Version 4 03 12 2007 Edition 1 ...
Страница 2: ......
Страница 25: ...Table of Contents ZyWALL 2 Plus User s Guide 25 Index 679 ...
Страница 26: ...Table of Contents ZyWALL 2 Plus User s Guide 26 ...
Страница 46: ...46 ...
Страница 88: ...Chapter 3 Wizard Setup ZyWALL 2 Plus User s Guide 88 ...
Страница 131: ...131 PART II Network LAN Screens 133 Bridge Screens 145 WAN Screens 151 DMZ Screens 171 Wireless LAN 181 ...
Страница 132: ...132 ...
Страница 144: ...Chapter 6 LAN Screens ZyWALL 2 Plus User s Guide 144 ...
Страница 180: ...Chapter 9 DMZ Screens ZyWALL 2 Plus User s Guide 180 ...
Страница 190: ...190 ...
Страница 209: ...Chapter 11 Firewall ZyWALL 2 Plus User s Guide 209 Figure 138 SECURITY FIREWALL Rule Summary Edit ...
Страница 221: ...Chapter 11 Firewall ZyWALL 2 Plus User s Guide 221 Figure 149 My Service Firewall Rule Example Rule Summary Completed ...
Страница 222: ...Chapter 11 Firewall ZyWALL 2 Plus User s Guide 222 ...
Страница 252: ...Chapter 13 Content Filtering Reports ZyWALL 2 Plus User s Guide 252 ...
Страница 265: ...Chapter 14 IPSec VPN ZyWALL 2 Plus User s Guide 265 Figure 178 SECURITY VPN VPN Rules IKE Edit Gateway Policy ...
Страница 274: ...Chapter 14 IPSec VPN ZyWALL 2 Plus User s Guide 274 Figure 181 SECURITY VPN VPN Rules IKE Edit Network Policy ...
Страница 306: ...Chapter 15 Certificates ZyWALL 2 Plus User s Guide 306 Figure 203 SECURITY CERTIFICATES My Certificates Create Basic ...
Страница 328: ...Chapter 16 Authentication Server ZyWALL 2 Plus User s Guide 328 ...
Страница 330: ...330 ...
Страница 346: ...Chapter 17 Network Address Translation NAT ZyWALL 2 Plus User s Guide 346 ...
Страница 350: ...Chapter 18 Static Route ZyWALL 2 Plus User s Guide 350 ...
Страница 398: ...Chapter 21 Remote Management ZyWALL 2 Plus User s Guide 398 ...
Страница 416: ...Chapter 24 ALG Screen ZyWALL 2 Plus User s Guide 416 ...
Страница 417: ...417 PART V Logs and Maintenance Logs Screens 419 Maintenance 447 ...
Страница 418: ...418 ...
Страница 423: ...Chapter 25 Logs Screens ZyWALL 2 Plus User s Guide 423 Figure 274 LOGS Log Settings ...
Страница 466: ...466 ...
Страница 474: ...Chapter 27 Introducing the SMT ZyWALL 2 Plus User s Guide 474 ...
Страница 496: ...Chapter 30 LAN Setup ZyWALL 2 Plus User s Guide 496 ...
Страница 504: ...Chapter 32 DMZ Setup ZyWALL 2 Plus User s Guide 504 ...
Страница 508: ...Chapter 33 Wireless Setup ZyWALL 2 Plus User s Guide 508 ...
Страница 556: ...Chapter 38 Filter Configuration ZyWALL 2 Plus User s Guide 556 ...
Страница 570: ...Chapter 40 System Information Diagnosis ZyWALL 2 Plus User s Guide 570 ...
Страница 586: ...Chapter 41 Firmware and Configuration File Maintenance ZyWALL 2 Plus User s Guide 586 ...
Страница 594: ...Chapter 42 System Maintenance Menus 8 to 10 ZyWALL 2 Plus User s Guide 594 ...
Страница 598: ...Chapter 43 Remote Management ZyWALL 2 Plus User s Guide 598 ...
Страница 603: ...603 PART VII Troubleshooting and Specifications Troubleshooting 605 Product Specifications 613 ...
Страница 604: ...604 ...
Страница 612: ...Chapter 45 Troubleshooting ZyWALL 2 Plus User s Guide 612 ...
Страница 620: ...620 ...
Страница 644: ...Appendix B Pop up Windows JavaScripts and Java Permissions ZyWALL 2 Plus User s Guide 644 ...
Страница 668: ...Appendix E Importing Certificates ZyWALL 2 Plus User s Guide 668 ...
Страница 672: ...Appendix F Legal Information ZyWALL 2 Plus User s Guide 672 ...
Страница 678: ...Appendix G Customer Support ZyWALL 2 Plus User s Guide 678 ...