ZyXEL Communications 5 Series User Manual

ZyWALL 5/35/70 Series User’s Guide

Chapter 18 IPSec VPN

357

The ZyWALL at headquarters can also initiate VPN connections to the telecommuters since it
can find the telecommuters by resolving their domain names.

Figure 187 Telecommuters Using Unique VPN Rules Example

Table 103 Telecommuters Using Unique VPN Rules Example

TELECOMMUTERS

HEADQUARTERS

All Telecommuter Rules:

All Headquarters Rules:

My ZyWALL 0.0.0.0

My ZyWALL: bigcompanyhq.com

Remote Gateway Address: bigcompanyhq.com

Local Network - Single IP Address: 192.168.1.10

Remote Network - Single IP Address: 192.168.1.10 Local ID Type: E-mail

Peer ID Type: E-mail

Local ID Content: [email protected]

Peer ID Content: [email protected]

Telecommuter A (telecommutera.dydns.org)

Headquarters ZyWALL Rule 1:

Local ID Type: IP

Peer ID Type: IP

Local ID Content: 192.168.2.12

Peer ID Content: 192.168.2.12

Local IP Address: 192.168.2.12

Remote Gateway Address:
telecommutera.dydns.org

Remote Address 192.168.2.12

Telecommuter B (telecommuterb.dydns.org)

Headquarters ZyWALL Rule 2:

Local ID Type: DNS

Peer ID Type: DNS

Local ID Content: telecommuterb.com

Peer ID Content: telecommuterb.com

Local IP Address: 192.168.3.2

Remote Gateway Address:
telecommuterb.dydns.org

Remote Address 192.168.3.2

Telecommuter C (telecommuterc.dydns.org)

Headquarters ZyWALL Rule 3:

Local ID Type: E-mail

Peer ID Type: E-mail