Using The Ipsec Vpn Wizard For Client And Gateway Configurations - NETGEAR UTM5EW-100NAS Appliance Reference Manual

Table 7-1. IP Addressing for VPNs in Dual WAN Port Systems
Configuration and WAN IP address
VPN "Gateway-to-Gateway"
VPN "Telecommuter"
(client-to-gateway through a
NAT router)
a. All tunnels must be re-established after a rollover using the new WAN IP address.
Using the IPsec VPN Wizard for Client and Gateway
Configurations
You can use the IPsec VPN Wizard to configure multiple gateway or client VPN tunnel policies.
The section below provides wizard and NETGEAR
procedures for the following scenarios:
• Using the wizard to configure a VPN tunnel between two VPN gateways.
• Using the wizard to configure a VPN tunnel between a VPN gateway and a VPN client.
Configuring a VPN tunnel connection requires that all settings on both sides of the VPN tunnel
match or mirror each other precisely, which can be a daunting task. The VPN Wizard efficiently
guides you through the setup procedure with a series of questions that determine the IPsec keys
and VPN policies it sets up. The VPN Wizard also configures the settings for the network
connection: security association (SA), traffic selectors, authentication algorithm, and encryption.
The settings that are used by the VPN wizard are based on the recommendations of the VPN
Consortium (VPNC), an organization that promotes multi-vendor VPN interoperability.
Virtual Private Networking Using IPsec Connections
ProSecure Unified Threat Management (UTM) Appliance Reference Manual
Rollover Mode
Fixed FQDN required
Dynamic FQDN required
Fixed FQDN required
Dynamic FQDN required
v1.0, January 2010
a Load Balancing Mode
FQDN Allowed (optional)
FQDN required
FQDN Allowed (optional)
FQDN required
ProSaf
e VPN Client Software configuration
7-3