Vpn Telecommuter (Client-To-Gateway Through A Nat Router) - NETGEAR UTM9S Reference Manual
Prosecure unified threat management (utm) appliance
Hide thumbs
Also See for UTM9S:
- Quick start manual (16 pages) ,
- Integration manual (8 pages) ,
- Installation manual (2 pages)
Table of Contents
Advertisement
ProSecure Unified Threat Management (UTM) Appliance
Figure 340.
The IP addresses of the gateway WAN ports can be either fixed or dynamic. If an IP address
is dynamic, you need to use an FQDN. If an IP address is fixed, an FQDN is optional.
VPN Telecommuter (Client-to-Gateway through a NAT Router)
Note:
The telecommuter case assumes that the home office has a
dynamic IP address and NAT router.
The following situations exemplify the requirements for a remote PC client connected to the
Internet with a dynamic IP address through a NAT router to establish a VPN tunnel with a
gateway VPN firewall such as an UTM at the company office:
•
Single-gateway WAN port
•
Redundant dual-gateway WAN ports for increased reliability (before and after rollover)
•
Dual-gateway WAN ports for load balancing
VPN Telecommuter: Single-Gateway WAN Port (Reference Case)
In a single WAN port gateway configuration, the remote PC client at the NAT router initiates
the VPN tunnel because the IP address of the remote NAT router is not known in advance.
The gateway WAN port needs to function as the responder.
Figure 341.
Network Planning for Dual WAN Ports (Multiple WAN Port Models Only)
569
Advertisement
Table of Contents
Troubleshooting
