Network Planning For Multiple Wan Ports; What To Consider Before You Begin - NETGEAR SRX5308 - ProSafe® Quad WAN Gigabit SSL VPN Firewall Reference Manual

Network Planning for Multiple WAN Ports

This appendix describes the factors to consider when planning a network using a firewall that has
more than one WAN port.
This appendix contains the following sections:
• "What to Consider Before You
• "Overview of the Planning Process" on page B-5
• "Inbound Traffic" on page B-7
• "Virtual Private Networks" on page B-9

What to Consider Before You Begin

The VPN firewall is a powerful and versatile solution for your networking needs. To make the
configuration process easier and to understand all of the choices that are available to you, consider
the following before you begin:
1. Plan your network.
a. Determine whether you will use one or several WAN ports. For one WAN port, you might
need a fully qualified domain name either for convenience or to remotely access a
dynamic WAN IP address.
b. If you intend to use several WAN ports, determine whether you will use them in auto-
rollover mode for increased system reliability or load balancing mode for maximum
bandwidth efficiency. See the topics in this appendix for more information. Your decision
has the following implications:
• Fully qualified domain name (FQDN)
– For auto-rollover mode, you will need an FQDN to implement features such as
exposed hosts and virtual private networks.
– For load balancing mode, you might still need an FQDN either for convenience or
to remotely access a dynamic WAN IP address.
Begin" on this page
v1.0, April 2010
Appendix B
B-1