Netgear FVX538 FVX538 Reference Manual - Page 209
VPN Telecommuter (Client-to-Gateway Through a NAT Router)
UPC - 606449037234
View all Netgear FVX538 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 209 highlights
ProSafe VPN Firewall 200 FVX538 Reference Manual VPN Gateway-to-Gateway: Dual Gateway WAN Ports for Load Balancing In the case of the dual WAN ports on the gateway VPN firewall (Figure C-16), either of the gateway WAN ports at one end can be programmed in advance to initiate the VPN tunnel with the appropriate gateway WAN port at the other end as necessary to manage the loads of the gateway WAN ports because the IP addresses of the WAN ports are known in advance. 10.5.6.0/24 Gateway-to-Gateway Example (Dual WAN Ports, Load Balancing) LAN IP 10.5.6.1 Gateway A VPN Router (at office A) WAN_A1 IP netgear1.dyndns.org WAN_B1 IP 22.23.24.25 netgear2.dyndns.org WAN_A2 IP 22.23.24.26 WAN_B2 IP Fully-Qualified Domain Names (FQDN) - optional for Fixed IP addresses - required for Dynamic IP addresses 172.23.9.0/24 Gateway B VPN Router (at office B) LAN IP 172.23.9.1 Figure C-16 The IP addresses of the gateway WAN ports can be either fixed or dynamic. If an IP address is dynamic, a fully-qualified domain name must be used. If an IP address is fixed, a fully-qualified domain name is optional. VPN Telecommuter (Client-to-Gateway Through a NAT Router) Note: The telecommuter case presumes the home office has a dynamic IP address and NAT router. The following situations exemplify the requirements for a remote PC client connected to the Internet with a dynamic IP address through a NAT router to establish a VPN tunnel with a gateway VPN firewall at the company office: • Single gateway WAN port • Redundant dual gateway WAN ports for increased reliability (before and after rollover) • Dual gateway WAN ports used for load balancing Network Planning for Dual WAN Ports v1.0, August 2006 C-17