ZyXEL ZyWALL 5 User Guide - Page 361
The VPN Rules IKE Gateway Policy Edit Screen
View all ZyXEL ZyWALL 5 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 361 highlights
Chapter 19 IPSec VPN Table 100 SECURITY > VPN > VPN Rules (IKE) (continued) LABEL DESCRIPTION Gateway Policies The first row of each VPN rule represents the gateway policy. The gateway policy identifies the IPSec routers at either end of a VPN tunnel (My ZyWALL and Remote Gateway) and specifies the authentication, encryption and other settings needed to negotiate a phase 1 IKE SA (click the edit icon to display the other settings). My ZyWALL This represents your ZyWALL. The WAN IP address, domain name or dynamic domain name of your ZyWALL displays in router mode. The ZyWALL's IP address displays in bridge mode. Remote Gateway This represents the remote secure gateway. The IP address, domain name or dynamic domain name of the remote IPSec router displays if you specify it, otherwise Dynamic displays. Click this icon to add a VPN network policy. Network Policies Y/N Local Network Remote Network The subsequent rows in a VPN rule are network policies. A network policy identifies the devices behind the IPSec routers at either end of a VPN tunnel and specifies the authentication, encryption and other settings needed to negotiate a phase 2 IPSec SA. This field displays whether the network policy is active (Y) or not (N). Click the setting to change it. This is the network behind the ZyWALL. A network policy specifies which devices (behind the IPSec routers) can use the VPN tunnel. This is the remote network behind the remote IPsec router. Click this icon to display a screen in which you can associate a network policy to a gateway policy or move it to the recycle bin. Click this icon to display a screen in which you can change the settings of a gateway or network policy. Click this icon to delete a gateway or network policy. When you delete a gateway, the ZyWALL automatically moves the associated network policy(ies) to the recycle bin. When you delete a network policy, it is just deleted. Click this icon to establish a VPN connection to a remote network. Recycle Bin Click this icon to drop a VPN connection to a remote network. The recycle bin appears when you have any network policies that are not associated to a gateway policy. • When you delete a gateway, the ZyWALL automatically moves the associated network policy(ies) to the recycle bin. • You can also manually move a network policy that you do not need (but may want to use again later) to the recycle bin. Click the network policy's move or edit icon and set its Gateway Policy to Recycle Bin. 19.3 The VPN Rules (IKE) Gateway Policy Edit Screen In the VPN Rule (IKE) screen, click the add gateway policy ( ) icon or the edit ( ) icon to display the VPN-Gateway Policy -Edit screen. ZyWALL 5/35/70 Series User's Guide 361