![background image](http://html.mh-extra.com/html/zyxel-communications/vantage-cnm-2-0/vantage-cnm-2-0_user-manual_945619156.webp)
Vantage CNM 2.0 User’s Guide
159
Chapter 11 Configuration > VPN
ID Content
When you select IP in the Local ID Type field, type the IP address of your
computer. The ZyXEL device uses the IP address in the My IP Address
field if you configure the local Content field to 0.0.0.0 or leave it blank.
It is recommended that you type an IP address other than 0.0.0.0 in the
local Content field or use the DNS or E-mail ID type in the following
situations.
When there is a NAT router between the two IPSec routers.
When you want the remote IPSec router to be able to distinguish
between VPN connection requests that come in from IPSec routers with
dynamic WAN IP addresses.
With DNS or E-mail in the Local ID Type field, type a domain name or
e-mail address by which to identify this ZyXEL device. Use up to 31 ASCII
characters including spaces, although trailing spaces are truncated. The
domain name or e-mail address is for identification purposes only and can
be any string.
Address Type
This is the IP address(es) of computer(s) the A-end or Z-end of the VPN
tunnel.
The same (static) IP address is displayed twice in the Address Start and
Address End fields when the Address Type field is configured to Single.
The beginning and ending (static) IP addresses, in a range of computers
are displayed when the Address Type is configured to Range.
A (static) IP address and a subnet mask are displayed when the Address
Type field is configured to Subnet.
These addresses cannot be automatically generated by Vantage.
Address Start
Enter the beginning IP address of the computers behind the ZyXEL
device.
Address End
Enter the ending IP address of the computers behind the ZyXEL device.
Port Start
0 is the default and signifies any port.
Some of the most common IP ports are: 21, FTP; 53, DNS; 23, Telnet; 80,
HTTP; 25, SMTP; 110, POP3
Type a port number from 0 to 65535 for the starting port in a range.
Port End
Type the same port number as above to specify a single port. Type a port
number greater than the start port number to specify the end port in a port
range.
Phase 1
There are two phases to every IKE (Internet Key Exchange) negotiation –
phase 1 (Authentication) and phase 2 (Key Exchange). A phase 1
exchange establishes an IKE SA and the second one uses that SA to
negotiate SAs for IPSec.
Negotiation Mode
Select either Main or Aggressive. Aggressive mode is quicker than Main
mode because it eliminates several steps when the communicating parties
are negotiating authentication (phase 1). However the trade-off is that
faster speed limits its negotiating power and it also does not provide
identity protection. It is useful in remote access situations where the
address of the initiator is not know by the responder and both parties want
to use pre-shared key authentication.
Table 57 Configuration > VPN > Tunnel IPSec Detail (continued)
LABEL
DESCRIPTION
Содержание VANTAGE CNM 2.0 -
Страница 30: ...Vantage CNM 2 0 User s Guide 33 Chapter 1 Introducing Vantage ...
Страница 40: ...Vantage CNM 2 0 User s Guide 43 Chapter 2 GUI Introduction ...
Страница 66: ...Vantage CNM 2 0 User s Guide 69 Chapter 4 Configuration Select Device BB General ...
Страница 78: ...Vantage CNM 2 0 User s Guide 81 Chapter 5 Configuration LAN ...
Страница 96: ...Vantage CNM 2 0 User s Guide 99 Chapter 7 Configuration DMZ ...
Страница 126: ...Vantage CNM 2 0 User s Guide 129 Chapter 8 Configuration WAN ...
Страница 140: ...Vantage CNM 2 0 User s Guide 143 Chapter 9 Configuration NAT ...
Страница 144: ...Vantage CNM 2 0 User s Guide 147 Chapter 10 Configuration Static Route ...
Страница 162: ...Vantage CNM 2 0 User s Guide 165 Chapter 11 Configuration VPN ...
Страница 182: ...Vantage CNM 2 0 User s Guide 185 Chapter 12 Configuration Firewall ...
Страница 188: ...Vantage CNM 2 0 User s Guide 191 Chapter 13 Configuration Device Log ...
Страница 236: ...Vantage CNM 2 0 User s Guide 239 Chapter 18 Other System Screens ...
Страница 239: ...Vantage CNM 2 0 User s Guide Chapter 19 Monitor Alarms 242 Figure 132 Monitor Current Alarms ...
Страница 242: ...Vantage CNM 2 0 User s Guide 245 Chapter 19 Monitor Alarms ...
Страница 248: ...Vantage CNM 2 0 User s Guide 251 Chapter 20 Other Monitor Screens ...
Страница 254: ...Vantage CNM 2 0 User s Guide 257 Figure 151 WFTPD Pro Log On ...
Страница 266: ...Vantage CNM 2 0 User s Guide 269 ...
Страница 274: ...Vantage CNM 2 0 User s Guide 277 ...
Страница 286: ...Vantage CNM 2 0 User s Guide 289 ...
Страница 288: ...Vantage CNM 2 0 User s Guide 291 ...
Страница 291: ...Vantage CNM 2 0 User s Guide 294 Figure 181 ESS Provides Campus Wide Coverage ...
Страница 292: ...Vantage CNM 2 0 User s Guide 295 ...
Страница 312: ...Vantage CNM 2 0 User s Guide 315 ...