What are Local ID and Peer ID?
Local ID and Peer ID are used in IKE phase 1 negotiation. Its in FQDN(Fully Qualified Domain Name) format, IKE standard takes it as one type of Phase 1 ID. Phase 1 ID is identification for each VPN peer. The type of Phase 1 ID may be IP/FQDN (DNS)/User FQDN (E-mail). The content of Phase 1 ID depends on the Phase 1 ID type. The following is an example for how to configure phase 1 ID. ID type Content ———————————— IP 202.132.154.1 DNS www.zyxel.com E-mail support@zyxel.com.tw Please note that, in ZyWALL, if “DNS” or “E-mail” type is chosen, you can still use a random string as the content, such as “this_is_zywall”. It’s not neccessary to follow the format exactly. By default, ZyWALL takes IP as phase 1 ID type for itself and it’s remote peer. But if its remote peer is using DNS or E-mail, you have to adjust the settings to pass phase 1 ID checking.
