ProSecure Unified Threat Management (UTM) Appliance

Figure 359.

Features such as multiple exposed hosts are not supported in auto-rollover mode because the IP address of each WAN port needs to be in the identical range of fixed addresses.

Dual WAN ports in load balancing mode. Load balancing for a UTM with dual WAN ports is similar to a single WAN gateway configuration when you specify the IP address. Each IP address is either fixed or dynamic based on the ISP: You need to use FQDNs when the IP address is dynamic, but FQDNs are optional when the IP address is static.

Figure 360.

Inbound Traffic

Inbound Traffic to a Single WAN Port System

Inbound Traffic to a Dual WAN Port System

Incoming traffic from the Internet is usually discarded by the UTM unless the traffic is a response to one of your local computers or a service for which you have configured an inbound rule. Instead of discarding this traffic, you can configure the UTM to forward it to one or more LAN hosts on your network.

The addressing of the UTM’s dual WAN port depends on the configuration being implemented.

Table 158. IP addressing requirements for exposed hosts in dual WAN port systems

Configuration and

 

Single WAN port

Dual WAN port cases

 

WAN IP address

 

(reference case)

Rollover mode

Load balancing mode

 

 

 

 

 

 

 

 

 

 

Inbound traffic

Fixed

Allowed

FQDN required

Allowed

Port forwarding

 

(FQDN optional)

 

(FQDN optional)

Port triggering

Dynamic

FQDN required

FQDN required

FQDN required

 

 

 

 

 

 

 

 

Network Planning for Dual WAN Ports (Multiple WAN Port Models Only)

627

Page 627
Image 627
NETGEAR STM150EW-100NAS, UTM5EW-100NAS manual Inbound Traffic, 627