![]() ![]() Select Local network to be the IP address range of the network connected to the Cisco (found under Status > LAN Interface) and Remote network to be the IP address range of the network connected to the ZyWALL/USG ( Address Object created in Step 1) Then, set WAN Interface to the Internet-facing interface (found under Status > WAN Interface). Enter the same Pre-Shared Key as you created in ZyWALL/USG. Set Remote Address to be your ZyWALL/USG’s WAN IP Address (in the example, 172.101.30.73). ![]() Go to Basic Settings, create IPsec policy Description name and click On the IPsec Policy Enable option. The new IPsec Policies dialog box appears. Click OK and click Save to exit the Transform Sets page.Ĥ. Go to VPN > Site-to-site > IPsec Policies and click Add. Then, select Integrity and Encryption to match your ZyWALL/USG’s VPN Connection > Phase 2 Settings. Set Lifetime to 24 hours and click OK then click Save to exit the IKE Policies page.ģ. Go to VPN > Site-to-site > Transform Sets, click Add to create a new Transform Set name. Then, select Encryption, Hash, Pre-shared Key and D-H Group to match your ZyWALL/USG’s VPN Gateway > Phase 1 Settings. Networking > Address Management > Address ObjectsĢ. Go to VPN > Site-to-site > IKE Policies, click Add to create a new IKE Policy Name. Configure IP Address and Netmask to be the IP address range of the network connected to the ZyWALL/USG. Set Up t he IPSec VPN Tunnel on the Ciscoġ. To create an Address Object Name of your peer ZyWALL/USG Local IP address, go to Networking > Address Management > Address Objects and click Add Address. Configure Authentication > Peer ID Type as Any to let the ZyWALL/USG does not require to check the identity content of the remote IPSec router.ĬONFIGURATION > VPN > IPSec VPN > VPN Gateway > Show Advanced Settings > Authentication > Peer ID Type Quick Setup > VPN Setup Wizard > Welcome > Wizard Type > VPN Settings > Wizard CompletedĨ. Go to CONFIGURATION > VPN > IPSec VPN > VPN Gateway and click Show Advanced Settings. The Phase 1 rule settings appear in the VPN > IPSec VPN > VPN Gateway screen and the Phase 2 rule settings appear in the VPN > IPSec VPN > VPN Connection screen. Quick Setup > VPN Setup Wizard > Welcome > Wizard Type > VPN Settings (Summary)ħ. Now the rule is configured on the ZyWALL/USG. Quick Setup > VPN Setup Wizard > Wizard Type > VPN Settings (Phase 2 Setting)Ħ. This screen provides a read-only summary of the VPN tunnel. Set Local Policy to be the IP address range of the network connected to the ZyWALL/USG and Remote Policy to be the IP address range of the network connected to the Cisco. Quick Setup > VPN Setup Wizard > Wizard Type > VPN Settings (Phase 1 Setting)ĥ. Continue to Phase 2 Settings to select the desired Encapsulation, Encryption, Authentication, and Perfect Forward Secrecy (PFS) settings. Type a secure Pre-Shared Key (8-32 characters) which must match your Cisco Pre-Shared Key. ![]() Set the desired Negotiation, Encryption, Authentication, Key Group and SA Life Time settings. Quick Setup > VPN Setup Wizard > Wizard Type > VPN Settings (Scenario)Ĥ. Then, configure the Secure Gateway IP as the Cisco’s Gateway IP address (in the example, 172.100.30.80) select My Address to be the interface connected to the Internet. You may use 1-31 alphanumeric characters. Quick Setup > VPN Setup Wizard > Wizard Typeģ. Type the Rule Name used to identify this VPN connection (and VPN gateway). Click Next.Ģ. Choose Advanced to create a VPN rule with the customize phase 1, phase 2 settings and authentication method. In the ZyWALL/USG, go to CONFIGURATION > Quick Setup > VPN Setup Wizard, use the VPN Settings wizard to create a VPN rule that can be used with the Cisco. Set Up t he IPSec VPN Tunnel on the ZyWALL/USGġ. This example was tested using USG310 (Firmware Version: ZLD 4.13) and ISA500 (Firmware Version: 1.0.3). Please replace them with your actual network IP addresses and subnet masks. Note: All network IP addresses and subnet masks are used as examples in this article. ZyWALL Site-to-site IPSec VPN with Cisco Connected When the VPN tunnel is configured, each site can be accessed securely. The example instructs how to configure the VPN tunnel between each site. ![]() This example shows how to use the VPN Setup Wizard to create a site-to-site VPN between a ZYWALL/USG and a Cisco router. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |