Netgear FVS318 FVS318v3 Reference Manual - Page 221
The FVS318v3-to-VPN Client Case, Client-to-Gateway VPN Tunnel Overview
UPC - 606449023381
View all Netgear FVS318 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 221 highlights
Reference Manual for the ProSafe VPN Firewall FVS318v3 The FVS318v3-to-VPN Client Case Table E-4. Policy Summary VPN Consortium Scenario: Type of VPN Security Scheme: Date Tested: Model/Firmware Tested: NETGEAR-Gateway A NETGEAR-Client B IP Addressing: NETGEAR-Gateway A NETGEAR-Client B Scenario 1 PC/Client-to-Gateway IKE with Preshared Secret/Key November 2004 FVS318v3 with firmware version v3.0_14 NETGEAR ProSafe VPN Client v10.3.5 Static IP address Dynamic IP address Client-to-Gateway VPN Tunnel Overview The operational differences between gateway-to-gateway and client-to-gateway VPN tunnels are summarized as follows: Table E-5. Differences between VPN tunnel types Operation Exchange Mode Direction/Type Gateway-to-Gateway VPN Tunnels Client-to-Gateway VPN Tunnels Main Mode-The IP addresses of both gateways are known (especially when FQDN is used), so each gateway can use the Internet source of the traffic for validation purposes. Aggressive Mode-The IP address of the client is not known in advance, so the gateway is programmed to accept valid traffic sourced from any Internet location (i.e., less secure). Both Directions-Either end of the VPN tunnel may initiate traffic (usually). Remote Access-The client end of the VPN tunnel must initiate traffic because its IP address is not know in advance, which prevents the gateway end of the VPN tunnel from initiating traffic. VPN Configuration of NETGEAR FVS318v3 January 2005 E-27