Chapter 5

Virtual Private Networking

This chapter describes how to use the virtual private networking (VPN) features of the ProSafe DGFV338. VPN tunnels provide secure, encrypted communications between your local network and a remote network or computer.

Tip: When using dual WAN port networks, use the VPN Wizard to configure the basic parameters and them edit the VPN and IKE Policy screens for the various VPN scenarios.

Dual WAN Port Systems

The ADSL port and the Ethernet port of the ProSafe DGFV338 can be configured for auto-rollover mode for increased system reliability (if both ports are configured) or, if only one of the ports is configured, they can be configured as either Dedicated ADSL or Dedicated Ethernet. This WAN mode choice then impacts how the VPN features must be configured.

Table 5-1. IP addressing requirements for VPNs in dual WAN port systems

Configuration and WAN IP address

Rollover Modea

Dedicated Mode

 

 

 

 

VPN Road Warrior

Fixed

FQDN required

Allowed (FQDN optional)

(client-to-gateway)

 

 

 

Dynamic

FQDN required

FQDN required

 

 

 

 

 

VPN Gateway-to-Gateway

Fixed

FQDN required

Allowed (FQDN optional)

 

 

 

 

 

Dynamic

FQDN required

FQDN required

 

 

 

 

VPN Telecommuter

Fixed

FQDN required

Allowed (FQDN optional)

(client-to-gateway through a

 

 

 

Dynamic

FQDN required

FQDN required

NAT router)

 

 

 

 

 

 

 

a. All tunnels must be re-established after a rollover using the new WAN IP address.

Virtual Private Networking

5-1

v1.0, April 2007

Page 108 Page 110
Page 109
Image 109
NETGEAR DGFV338 manual Dual WAN Port Systems, IP addressing requirements for VPNs in dual WAN port systems
Page 108 Page 110
Top Page Image Contents