ZyXEL Communications zywall 50 User Manual
ZyWALL 50 Internet Security Gateway
23-4
VPN/IPSec
Setup
My IP Addr is the (initiator) ZyWALL WAN IP address. If this field is configured as 0.0.0.0, then the
ZyWALL will use the current ZyWALL WAN IP address (static or dynamic) to set up the VPN tunnel. If the
My IP Addr changes after setup, then the VPN tunnel will have to be rebuilt again.
Secure Gateway IP Address is the WAN IP address of the remote IPSec router. Normally it is a static
public IP address (for traffic going through the Internet) but if the peer has a dynamic WAN IP address, set
this field to 0.0.0.0. This may be useful for telecommuters initiating a VPN tunnel to headquarters where
headquarters do not know the WAN IP address of the telecommuter’s device. Only the telecommuter may
initiate the VPN tunnel in this case. See the following table for an example configuration.
ZyWALL will use the current ZyWALL WAN IP address (static or dynamic) to set up the VPN tunnel. If the
My IP Addr changes after setup, then the VPN tunnel will have to be rebuilt again.
Secure Gateway IP Address is the WAN IP address of the remote IPSec router. Normally it is a static
public IP address (for traffic going through the Internet) but if the peer has a dynamic WAN IP address, set
this field to 0.0.0.0. This may be useful for telecommuters initiating a VPN tunnel to headquarters where
headquarters do not know the WAN IP address of the telecommuter’s device. Only the telecommuter may
initiate the VPN tunnel in this case. See the following table for an example configuration.
Table 23-2 Telecommuter and HQ Configuration Example
TELECOMMUTER
HEADQUARTERS
My IP
address:
address:
0.0.0.0 (dynamic IP address
assigned by the ISP)
assigned by the ISP)
Public static IP address
Secure
Gateway IP
Address:
Gateway IP
Address:
Public static IP address.
0.0.0.0
With this IP address only the
telecommuter can initiate the IPSec
tunnel.
telecommuter can initiate the IPSec
tunnel.
Figure 23-4 Telecommuter’s ZyWALL Configuration