ProSecure Unified Threat Management (UTM) Appliance Reference Manual

Table 7-1. IP Addressing for VPNs in Dual WAN Port Systems

Configuration and WAN IP address

Rollover Modea

Load Balancing Mode

 

 

 

 

VPN “Gateway-to-Gateway”

Fixed

FQDN required

FQDN Allowed (optional)

 

 

 

 

 

Dynamic

FQDN required

FQDN required

 

 

 

 

VPN “Telecommuter”

Fixed

FQDN required

FQDN Allowed (optional)

(client-to-gateway through a

 

 

 

Dynamic

FQDN required

FQDN required

NAT router)

 

 

 

 

 

 

 

a. All tunnels must be re-established after a rollover using the new WAN IP address.

Using the IPsec VPN Wizard for Client and Gateway Configurations

You can use the IPsec VPN Wizard to configure multiple gateway or client VPN tunnel policies.

The section below provides wizard and NETGEAR ProSafe VPN Client Software configuration procedures for the following scenarios:

Using the wizard to configure a VPN tunnel between two VPN gateways.

Using the wizard to configure a VPN tunnel between a VPN gateway and a VPN client.

Configuring a VPN tunnel connection requires that all settings on both sides of the VPN tunnel match or mirror each other precisely, which can be a daunting task. The VPN Wizard efficiently guides you through the setup procedure with a series of questions that determine the IPsec keys and VPN policies it sets up. The VPN Wizard also configures the settings for the network connection: security association (SA), traffic selectors, authentication algorithm, and encryption. The settings that are used by the VPN wizard are based on the recommendations of the VPN Consortium (VPNC), an organization that promotes multi-vendor VPN interoperability.

Virtual Private Networking Using IPsec Connections

7-3

v1.0, January 2010

Page 215
Image 215
NETGEAR UTM5-100NAS, UTM50-100NAS manual IP Addressing for VPNs in Dual WAN Port Systems