ZyXEL Communications P-334W User Manual

Prestige 334W User’s Guide

VPN Screens

16-31

When there is outbound traffic but no inbound traffic, the SA times out

automatically after two minutes. A tunnel with no outbound or inbound traffic is

"idle" and does not timeout until the SA lifetime period expires. See section 16.6

on keep alive to have the Prestige renegotiate an IPSec SA when the SA lifetime

expires, even if there is no traffic.

Figure 16-9 SA Monitor

The following table describes the labels in this screen.

Table 16-10 SA Monitor

LABEL DESCRIPTION

#

This is the security association index number.

Name

This field displays the identification name for this VPN policy.

Encapsulation

This field displays Tunnel or Transport mode.

IPSec Algorithm

This field displays the security protocols used for an SA.

Both AH and ESP increase Prestige processing requirements and communications
latency (delay).