Netgear FVX538 FVX538 Reference Manual - Page 39
VPN Gateway-to-Gateway, VPN Gateway-to-Gateway: Single Gateway WAN Ports (Reference Case)
UPC - 606449037234
View all Netgear FVX538 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 39 highlights
Reference Manual for the ProSafe VPN Firewall 200 FVX538 The IP addresses of the gateway WAN ports can be either fixed or dynamic. If an IP address is dynamic, a fully-qualified domain name must be used. If an IP address is fixed, a fully-qualified domain name is optional. VPN Gateway-to-Gateway The following situations exemplify the requirements for a gateway VPN firewall to establish a VPN tunnel with another gateway VPN firewall: • Single gateway WAN ports • Redundant dual gateway WAN ports for increased reliability (before and after rollover) • Dual gateway WAN ports used for load balancing VPN Gateway-to-Gateway: Single Gateway WAN Ports (Reference Case) In the case of single WAN ports on the gateway VPN firewalls (Figure 3-12), either gateway WAN port can initiate the VPN tunnel with the other gateway WAN port because the IP addresses are known in advance. 10.5.6.0/24 Gateway-to-Gateway Example (Single WAN Ports) 172.23.9.0/24 LAN IP 10.5.6.1 Gateway A VPN Router (at office A) WAN IP FQDN netgear.dyndns.org WAN IP 22.23.24.25 Fully-Qualified Domain Names (FQDN) - optional for Fixed IP addresses - required for Dynamic IP addresses Gateway B VPN Router (at office B) LAN IP 172.23.9.1 Figure 3-12: Single gateway WAN ports case for gateway-to-gateway VPN tunnels The IP address of the gateway WAN ports can be either fixed or dynamic. If an IP address is dynamic, a fully-qualified domain name must be used. If an IP address is fixed, a fully-qualified domain name is optional. Network Planning 3-9 January 2005