M2M Cellular Gateway
Dynamic VPN Tunnel Scenario
Business Security Gateway can ignore IP information of clients when using Dynamic VPN,
so it is suitable for users to build VPN tunnels with Business Security Gateway from a
remote mobile site. Remote peer is a site will be indicated in the negotiation packets,
including what remote subnet is. It must be noted that the remote peer has to initiate
the tunnel establishing process first in this application scenario.
Scenario Application Timing
If the security gateway in headquarters wants to allow any traveling employees to
securely access the enterprise operation systems to access office resources from
outside, the Dynamic VPN connection can be setup up to meet the requirement. These
mobile employees are carrying with their notebooks or security supporting gateways
outsides, and use these devices to connect to the Internet and try to access the
enterprise resources at headquarters. But the IP address that the devices get is dynamic,
not fixed. When the security gateway of headquarters need to check the IP address of a
remote device during establishing a secure VPN tunnel for data communication, mobile
devices will fail since they have not fixed IP address. So, to activate the "Dynamic VPN"
function on the headquarters gateway is a fast approach for the secure data
communication between mobile devices and the headquarters gateway. You can follow
the deployment steps as below.
Scenario Description
Index skipping is used to reserve slots for new function insertion, when required.
186