Chapter 11 IPSec VPN
USG FLEX H Series User’s Guide
167
security features of the IPSec SA. The IPSec SA is secure because routers X and Y established the IKE SA
first.
Application Scenarios
The Zyxel Device’s application scenarios make it easier to configure your VPN connection settings.
11.3 The Site to Site VPN Screen
Click VPN > Site to Site VPN to open the Site to Site VPN screen. The Site to Site VPN screen lists the VPN
connection associated VPN gateway(s), and various settings. In addition, it also lets you activate or
deactivate and connect or disconnect each VPN connection (each IPSec SA). Click a column’s
heading cell to sort the table entries by that column’s criteria. Click the heading cell again to reverse
the sort order.
Table 84 IPSec VPN Application Scenarios
SITE-TO-SITE SITE-TO-SITE WITH DYNAMIC PEER
Choose this if the remote IPSec router has a
static IP address or a domain name.
This Zyxel Device can initiate the VPN tunnel.
The remote IPSec router can also initiate the
VPN tunnel if this Zyxel Device has a static IP
address or a domain name.
Choose this if the remote IPSec router has a
dynamic IP address.
You don’t specify the remote IPSec router’s
address, but you specify the remote policy
(the addresses of the devices behind the
remote IPSec router).
This Zyxel Device must have a static IP address
or a domain name.
Only the remote IPSec router can initiate the
VPN tunnel.
To Next Page
Loading...
