Chapter 5

Virtual Private Networking

This chapter describes how to use the virtual private networking (VPN) features of the VPN firewall. VPN tunnels provide secure, encrypted communications between your local network and a remote network or computer.

Tip: When using dual WAN port networks, use the VPN Wizard to configure the basic parameters and them edit the VPN and IKE Policy screens for the various VPN scenarios.

Dual WAN Port Systems

The dual WAN ports in the VPN firewall can be configured for either Auto-Rollover mode for increased system reliability or Load Balancing mode for optimum bandwidth efficiency. This WAN mode choice then impacts how the VPN features must be configured.

Refer to “Virtual Private Networks (VPNs)” on page C-10 for an overview of the IP addressing requirements for VPN in the two WAN modes. To aid in determining the addressing requirements for your VPN Tunnel in either rollover mode or load balancing mode, see Table 5-1.

Table 5-1. IP Addressing for VPNs in Dual WAN Port Systems

Configuration and WAN IP address

Rollover Modea

Load Balancing Mode

 

 

 

 

VPN Road Warrior

Fixed

FQDN required

Allowed (FQDN optional)

(client-to-gateway)

 

 

 

Dynamic

FQDN required

FQDN required

 

 

 

 

 

VPN Gateway-to-Gateway

Fixed

FQDN required

Allowed (FQDN optional)

 

 

 

 

 

Dynamic

FQDN required

FQDN required

 

 

 

 

VPN Telecommuter

Fixed

FQDN required

Allowed (FQDN optional)

(client-to-gateway through

 

 

 

Dynamic

FQDN required

FQDN required

a NAT router)

 

 

 

a. All tunnels must be re-established after a rollover using the new WAN IP address.

Virtual Private Networking

5-1

v1.0, August 2006

Page 102 Page 104
Page 103
Image 103
NETGEAR FVX538NA manual IP Addressing for VPNs in Dual WAN Port Systems
Page 102 Page 104
Top Page Image Contents