Netgear UTM50-100NAS User Manual
ProSecure Unified Threat Management (UTM) Appliance Reference Manual
Virtual Private Networking Using IPsec Connections
7-35
v1.0, January 2010
4. Complete the fields, select the radio buttons and checkboxes, and make your selections from
the pull-down menus as explained
Table 7-12. Add VPN Policy Settings
Item
Description (or Subfield and Description)
General
Policy Name
A descriptive name of the VPN policy for identification and management
purposes.
Note: The name is not supplied to the remote VPN endpoint.
purposes.
Note: The name is not supplied to the remote VPN endpoint.
Policy Type
From the pull-down menu, select one of the following policy types:
• Auto Policy. Some settings (the ones in the Manual Policy Parameters
• Auto Policy. Some settings (the ones in the Manual Policy Parameters
section of the screen) for the VPN tunnel are generated automatically.
• Manual Policy. All settings must be specified, including the ones in the
Manual Policy Parameters section of the screen.
Select Local Gateway
(dual-WAN port models
only)
(dual-WAN port models
only)
For the dual-WAN port models only, select a radio button to specify the
WAN1 or WAN2 interface.
WAN1 or WAN2 interface.
Remote Endpoint
Select a radio button to specify how the remote endpoint is defined:
• IP Address. Enter the IP address of the remote endpoint in the fields to
• IP Address. Enter the IP address of the remote endpoint in the fields to
the right of the radio button.
• FQDN. Enter the FQDN of the remote endpoint in the field to the right of
the radio button.
Enable NetBIOS?
Select this checkbox to allow NetBIOS broadcasts to travel over the VPN
tunnel. For more information about NetBIOS, see
tunnel. For more information about NetBIOS, see
. This feature is disabled by default.
Enable RollOver?
Select this checkbox to allow the VPN tunnel to roll over to the other WAN
interface when the WAN mode is set to Auto-Rollover and an actual rollover
occurs. This feature is disabled by default.
interface when the WAN mode is set to Auto-Rollover and an actual rollover
occurs. This feature is disabled by default.
Enable Keepalive
Note: See also
Select a radio button to specify if Keepalive is enabled:
• Yes. This feature is enabled: periodically, the UTM sends ping packets to
• Yes. This feature is enabled: periodically, the UTM sends ping packets to
the remote endpoint to keep the tunnel alive. You must enter the ping IP
address, detection period, and the maximum number of times that the
UTM attempts to reconnect (see below).
address, detection period, and the maximum number of times that the
UTM attempts to reconnect (see below).
• No. This feature is disabled. This is the default setting.
Ping IP Address
The IP address that the UTM pings. The address must be
of a host that can respond to ICMP ping requests.
of a host that can respond to ICMP ping requests.
Detection period
The period in seconds between the ping packets. The
default setting is 10 seconds.
default setting is 10 seconds.
Reconnect after
failure count
failure count
The number of consecutive missed responses that are
considered a tunnel connection failure. The default
setting is 3 missed responses.
considered a tunnel connection failure. The default
setting is 3 missed responses.