User Guide
Page 13
... Reports 245 13.3 Web Site Submission ...250 Chapter 14 IPSec VPN Screens...253 14.1 Overview ...253 14.1.1 What You Can Do in the IPSec VPN Screens 253 14.1.2 What You Need to Know About IPSec VPN 254 14.2 The VPN Rules (IKE) Screen 256 14.2.1 The VPN Rules (IKE) Gateway Policy...The Network Policy Move Screen 270 14.3 The VPN Rules (Manual) Screen 271 14.3.1 The VPN Rules (Manual) Edit Screen 272 14.4 The SA Monitor Screen 275 14.5 The Global Setting Screen 275 14.5.1 Configuring the Global Setting Screen 277 14.6 Telecommuter VPN/IPSec Examples 278 ZyWALL 2 Plus User's Guide 13
... Reports 245 13.3 Web Site Submission ...250 Chapter 14 IPSec VPN Screens...253 14.1 Overview ...253 14.1.1 What You Can Do in the IPSec VPN Screens 253 14.1.2 What You Need to Know About IPSec VPN 254 14.2 The VPN Rules (IKE) Screen 256 14.2.1 The VPN Rules (IKE) Gateway Policy...The Network Policy Move Screen 270 14.3 The VPN Rules (Manual) Screen 271 14.3.1 The VPN Rules (Manual) Edit Screen 272 14.4 The SA Monitor Screen 275 14.5 The Global Setting Screen 275 14.5.1 Configuring the Global Setting Screen 277 14.6 Telecommuter VPN/IPSec Examples 278 ZyWALL 2 Plus User's Guide 13
User Guide
Page 46
...-effective way to connect branch offices, business partners and telecommuters over the Internet without the need (and expense) for leased lines between sites. The device can be monitored by service engineers. • SMT. The device can be remotely managed using a (supported) web...the following methods to manage the ZyWALL. • Web Configurator. See the SNMP chapter in this User's Guide. • Vantage CNM (Centralized Network Management). Figure 2 VPN Application 1.3 Ways to Manage the ZyWALL Use any of the ZyWALL using a Vantage CNM server. 46 ZyWALL 2 Plus User's Guide
...-effective way to connect branch offices, business partners and telecommuters over the Internet without the need (and expense) for leased lines between sites. The device can be monitored by service engineers. • SMT. The device can be remotely managed using a (supported) web...the following methods to manage the ZyWALL. • Web Configurator. See the SNMP chapter in this User's Guide. • Vantage CNM (Centralized Network Management). Figure 2 VPN Application 1.3 Ways to Manage the ZyWALL Use any of the ZyWALL using a Vantage CNM server. 46 ZyWALL 2 Plus User's Guide
User Guide
Page 55
...Security Services Content Filter Expiration Date This is using a manually entered static (fixed) IP address. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it last started up the PPTP, PPPoE or dial backup connection. Latest Alerts This ... service subscription has expired. If you connect your computer directly to the ZyWALL, you can configure the ZyWALL's IP address in order to assign your service subscription. VPN Click VPN to bridge mode. ZyWALL 2 Plus User's Guide 55 In this case, you 're using Ethernet encapsulation and...
...Security Services Content Filter Expiration Date This is using a manually entered static (fixed) IP address. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it last started up the PPTP, PPPoE or dial backup connection. Latest Alerts This ... service subscription has expired. If you connect your computer directly to the ZyWALL, you can configure the ZyWALL's IP address in order to assign your service subscription. VPN Click VPN to bridge mode. ZyWALL 2 Plus User's Guide 55 In this case, you 're using Ethernet encapsulation and...
User Guide
Page 58
... Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide RSTP Priority This is the cost of the corresponding port. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it displays Down when the link...
... Comparison FEATURE BRIDGE MODE ROUTER MODE Internet Access Wizard Y VPN Wizard Y Y DHCP Table Y System Statistics Y Y Registration Y Y LAN Y WAN Y DMZ Y Bridge Y 58 ZyWALL 2 Plus User's Guide RSTP Priority This is the cost of the corresponding port. Web Site Blocked This displays how many web site hits the ZyWALL has blocked since it displays Down when the link...
User Guide
Page 253
... of tunneling, encryption, authentication, access control and auditing. ZyWALL 2 Plus User's Guide 253 CHAPTER 14 IPSec VPN Screens 14.1 Overview A virtual private network (VPN) provides secure communications between sites without the expense of leased site-to manage the ZyWALL's list of VPN rules (tunnels) that use IKE SAs. • Use the VPN Rules (Manual) screens (see Section 14.4 on...
... of tunneling, encryption, authentication, access control and auditing. ZyWALL 2 Plus User's Guide 253 CHAPTER 14 IPSec VPN Screens 14.1 Overview A virtual private network (VPN) provides secure communications between sites without the expense of leased site-to manage the ZyWALL's list of VPN rules (tunnels) that use IKE SAs. • Use the VPN Rules (Manual) screens (see Section 14.4 on...
User Guide
Page 276
...overlapping local and remote network IP addresses can overlap when you configure the VPN network as any " includes all possible IP addresses. It will forward traffic from network A to 10.1.2.254 overlap. 276 ZyWALL 2 Plus User's Guide For example, you configure the local network as 192.168... IP Alias You could have an IP alias network M (10.1.2.0/24) in ZyWALL X's LAN. For the VPN rule, you configure a dynamic VPN rule for a remote site (see Figure 179). For example, when you configure ZyWALL X, you usually would not configure both the sender (for example 192.168.1.8) and...
...overlapping local and remote network IP addresses can overlap when you configure the VPN network as any " includes all possible IP addresses. It will forward traffic from network A to 10.1.2.254 overlap. 276 ZyWALL 2 Plus User's Guide For example, you configure the local network as 192.168... IP Alias You could have an IP alias network M (10.1.2.0/24) in ZyWALL X's LAN. For the VPN rule, you configure a dynamic VPN rule for a remote site (see Figure 179). For example, when you configure ZyWALL X, you usually would not configure both the sender (for example 192.168.1.8) and...
User Guide
Page 367
... to update your current dynamic IP address with one or many dynamic DNS services so that anyone can also access your FTP server or Web site on your own computer using a domain name (for instance myhost.dhs.org, where myhost is a name of your choice) that will always be able to... access the computers on the remote network, then the VPN host must use IP addresses to call you even if they don't know your ZyWALL's DNS address and name server records. ZyWALL 2 Plus User's Guide 367 You can contact you (in NetMeeting, CU-SeeMe, etc.). DDNS DDNS (Dynamic...
... to update your current dynamic IP address with one or many dynamic DNS services so that anyone can also access your FTP server or Web site on your own computer using a domain name (for instance myhost.dhs.org, where myhost is a name of your choice) that will always be able to... access the computers on the remote network, then the VPN host must use IP addresses to call you even if they don't know your ZyWALL's DNS address and name server records. ZyWALL 2 Plus User's Guide 367 You can contact you (in NetMeeting, CU-SeeMe, etc.). DDNS DDNS (Dynamic...
User Guide
Page 614
...PPTP) enables secure transfer of data through a Virtual Private Network (VPN). IP alias allows you have the ZyWALL assign IP addresses, an IP default gateway and DNS servers to ...you turn on the ZyWALL later if you specify. Firmware Upgrade Download new firmware (when available) from the ZyXEL web site and use a fixed URL, www.zyxel.com for this ...ZyWALL itself as the gateway for each subnet. The ZyWALL supports one PPTP connection at a time. Use this service with URLs that contain keywords that allows your ZyWALL to check web sites against an external database. 614 ZyWALL 2 Plus...
...PPTP) enables secure transfer of data through a Virtual Private Network (VPN). IP alias allows you have the ZyWALL assign IP addresses, an IP default gateway and DNS servers to ...you turn on the ZyWALL later if you specify. Firmware Upgrade Download new firmware (when available) from the ZyXEL web site and use a fixed URL, www.zyxel.com for this ...ZyWALL itself as the gateway for each subnet. The ZyWALL supports one PPTP connection at a time. Use this service with URLs that contain keywords that allows your ZyWALL to check web sites against an external database. 614 ZyWALL 2 Plus...
User Guide
Page 684
...488, 494, 495, 516 direction 133, 495 version 133, 495, 516 Routing Information Protocol. security settings for VPN traffic 87 server set 523 service type 210, 498, 510 services 125 Session Initiation Protocol. See STUN. RFC ... Hello BPDU 148 how it works 148 Max Age 148 port states 149 STUN 411 SUA 521 ZyWALL 2 Plus User's Guide See IP address. See DHCP RFC 2402. See RIP. Index WWW 386 remote... address 425, 426 protocol/port 425, 427 web site hits 425 required fields 469 reset button 51 resetting the time 450 resetting the ZyWALL 51 restore configuration 459, 577 via console port 584...
...488, 494, 495, 516 direction 133, 495 version 133, 495, 516 Routing Information Protocol. security settings for VPN traffic 87 server set 523 service type 210, 498, 510 services 125 Session Initiation Protocol. See STUN. RFC ... Hello BPDU 148 how it works 148 Max Age 148 port states 149 STUN 411 SUA 521 ZyWALL 2 Plus User's Guide See IP address. See DHCP RFC 2402. See RIP. Index WWW 386 remote... address 425, 426 protocol/port 425, 427 web site hits 425 required fields 469 reset button 51 resetting the time 450 resetting the ZyWALL 51 restore configuration 459, 577 via console port 584...
User Guide
Page 686
... 126 ZyXEL's Network Operating System. See ZyNOS. 686 ZyWALL 2 Plus User's Guide See WINS. See also IKE SA, IPSec SA. VT100 terminal emulation 467 W WAN file maintenance 574 WAN (Wide Area Network) 151 WAN DHCP 568 WAN IP address 154 WAN setup 481 warranty 670 note 670 web configurator 49 web site hits 425...
... 126 ZyXEL's Network Operating System. See ZyNOS. 686 ZyWALL 2 Plus User's Guide See WINS. See also IKE SA, IPSec SA. VT100 terminal emulation 467 W WAN file maintenance 574 WAN (Wide Area Network) 151 WAN DHCP 568 WAN IP address 154 WAN setup 481 warranty 670 note 670 web configurator 49 web site hits 425...