2 vpn setup screen – ZyXEL Communications P-2608HWL-Dx Series User Manual

P-2608HWL-Dx Series User’s Guide

230

Chapter 18 IPSec VPN

18.1.4.1.1 IPSec SA Proposal using Manual Keys

In IPSec SAs using manual keys, you can only specify one encryption algorithm and one
authentication algorithm. You cannot specify several proposals. There is no DH key exchange,
so you have to provide the encryption key and the authentication key the ZyXEL Device and
remote IPSec router use.

Note: The ZyXEL Device and remote IPSec router must use the same encryption key

and authentication key.

18.1.4.1.2 Authentication and the Security Parameter Index (SPI)

In IPSec SAs using manual keys, the ZyXEL Device and remote IPSec router use the SPI,
instead of pre-shared keys, ID type and ID content, for authentication. The SPI is an arbitrary
number that is used to help identify the IPSec SA.

Note: The ZyXEL Device and remote IPSec router must use the same SPI.

18.2 VPN Setup Screen

Click Security > VPN to open the VPN Setup screen. This is a read-only menu of your IPSec
rules (tunnels). Edit a VPN by selecting an index number and then configuring its associated
submenus.