Vpn Road Warrior (Client-To-Gateway) - NETGEAR UTM5 Reference Manual

Prosecure unified threat management appliance

Hide thumbs Also See for UTM5:

Table of Contents

ProSecure Unified Threat Management (UTM) Appliance

When the UTM's WAN port rolls over, the VPN tunnel collapses and

need to be reestablished using the new WAN IP address. However,

you can configure automatic IPSec VPN rollover to ensure that an

IPSec VPN tunnel is reestablished.

Dual WAN ports in load balancing mode. A dual WAN port load balancing gateway

configuration is the same as a single WAN port configuration when you specify the IP

address of the VPN tunnel endpoint. Each IP address is either fixed or dynamic based on

the ISP: You need to use FQDNs when the IP address is dynamic, and FQDNs are

optional when the IP address is static.

VPN Road Warrior (Client-to-Gateway)

The following situations exemplify the requirements for a remote PC client with no firewall to

establish a VPN tunnel with a gateway VPN firewall such as an UTM:

Single-gateway WAN port

Redundant dual-gateway WAN ports for increased reliability (before and after rollover)

Dual-gateway WAN ports for load balancing

VPN Road Warrior: Single-Gateway WAN Port (Reference Case)

In a single WAN port gateway configuration, the remote PC client initiates the VPN tunnel

because the IP address of the remote PC client is not known in advance. The gateway WAN

port needs to function as the responder.

Network Planning for Dual WAN Ports (Multiple WAN Port Models Only)

Utm9s Utm10 Utm150 Utm25 Utm50