Netgear FVS338 FVS338 Reference Manual - Page 95

Chapter 5 Virtual Private Networking This chapter describes how to use the Virtual Private Networking (VPN) features of the VPN firewall. VPN tunnels provide secure, encrypted communications between your local network and a remote network or computer. Tip: When using dual WAN port networks, use the VPN Wizard to configure the basic parameters and then edit the VPN and IKE Policy screens for the various VPN scenarios. Dual WAN Port Systems The dual WAN ports in the VPN firewall can be configured for rollover mode for increased system reliability by specifying the Broadband connection with the Dialup connection as backup. This WAN mode choice then impacts how the VPN features must be configured. Table 5-1. IP Addressing Requirements for VPN in Dual WAN Port Systems Configuration and WAN IP address Rollover Modea VPN Road Warrior (client-to-gateway) VPN Gateway-to-Gateway VPN Telecommuter (client-to-gateway through a NAT router) Fixed Dynamic Fixed Dynamic Fixed Dynamic FQDN required FQDN required FQDN required FQDN required FQDN required FQDN required a. All tunnels must be re-established after a rollover using the new WAN IP address. Dedicated Mode Allowed (FQDN optional) FQDN required Allowed (FQDN optional) FQDN required Allowed (FQDN optional) FQDN required The use of fully qualified domain names is mandatory when the WAN ports are in rollover mode ("Configuring the WAN Mode" on page 2-15); also required for the VPN tunnels to fail over. When using rollover mode, you must configure a Dynamic DNS service (see "Configuring Dynamic DNS (If Needed)" on page 2-16 to select and configure the Dynamic DNS service). Virtual Private Networking 5-1 v1.0, March 2008