Netgear UTM25 – ProSECURE Unified Threat Management (UTM) Appliance User Manual
Configure VPN Tunnels
34
NETGEAR ProSAFE VPN Client
gateway. This method is referred to as static extended authentication. However, this
defeats the purpose of extended authentication.
defeats the purpose of extended authentication.
5.
Select Configuration > Save or press Ctrl + S.
Your settings are saved.
Configure a Redundant Gateway
You can configure a redundant gateway. An alternate gateway is used under the following
circumstances:
circumstances:
•
The VPN Client cannot contact the primary gateway to establish a tunnel. After several
attempts (determined by the value in the Retransmission field—the default is
5
attempts (determined by the value in the Retransmission field—the default is
5
attempts—in the Parameters page (see
the VPN Client uses the alternate gateway as the new tunnel endpoint. The interval
between two attempts is about 10 seconds.
between two attempts is about 10 seconds.
•
A tunnel is established with the primary gateway with the Dead Pear Detection (DPD)
feature but the primary gateway stops responding to DPD messages.
Note:
The same connection rules apply if the alternate gateway goes down
or stops responding. This means that the VPN Client could switch
between the primary and alternate gateways until you save the
configuration or close and exit the VPN Client.
or stops responding. This means that the VPN Client could switch
between the primary and alternate gateways until you save the
configuration or close and exit the VPN Client.
If the primary gateway can be reached but tunnel establishment fails (that is, VPN
configuration errors occur), the VPN Client does not attempt to establish a tunnel with the
alternate gateway. In this case, you must first resolve the configuration errors.
configuration errors occur), the VPN Client does not attempt to establish a tunnel with the
alternate gateway. In this case, you must first resolve the configuration errors.
To configure a redundant gateway:
1.
On the client computer desktop, double-click the VPN Client shortcut
.
The VPN Configuration page displays.
2.
In the VPN Tunnel Tree pane, right-click the name of the IKE configuration.
The Authentication page displays.