ZyXEL Communications 3.1 Manual De Usuario

Chapter 17 IPSec VPN

ZyWALL (ZLD) CLI Reference Guide

which the ZyWALL and remote IPSec router can send data between computers on the local network 
and remote network. This is illustrated in the following figure.

VPN: IKE SA and IPSec SA 

In this example, a computer in network A is exchanging data with a computer in network B. Inside 
networks A and B, the data is transmitted the same way data is normally transmitted in the 
networks. Between routers X and Y, the data is protected by tunneling, encryption, authentication, 
and other security features of the IPSec SA. The IPSec SA is secure because routers X and Y 
established the IKE SA first.

The following table describes the values required for many IPSec VPN commands. Other values are 
discussed with the corresponding commands.

Input Values for IPSec VPN Commands

The name of a VPN concentrator. You may use 1-31 alphanumeric characters, 
underscores(

_

), or dashes (-), but the first character cannot be a number. This value 

is case-sensitive.

The name of an IKE SA. You may use 1-31 alphanumeric characters, underscores(

_

), 

or dashes (-), but the first character cannot be a number. This value is case-sensitive.

The name of an IPSec SA. You may use 1-31 alphanumeric characters, 
underscores(

_

), or dashes (-), but the first character cannot be a number. This value 

is case-sensitive.

Fully-qualified domain name. You may use up to 254 alphanumeric characters, dashes 
(-), or periods (.), but the first character cannot be a period.

An e-mail address. You can use up to 63 alphanumeric characters, underscores (_), 
dashes (-), or @ characters.