Netgear FVS318v3 – Cable/DSL ProSafe VPN Firewall with 8-Port Switch Reference Manual
ProSafe VPN Firewall FVS318v3 Reference Manual
C-26
Sample VPN Configurations with FVS318v3
v5.0, January 2012
Client-to-Gateway VPN Tunnel Overview
The operational differences between gateway-to-gateway and client-to-gateway VPN tunnels are
summarized as follows:
summarized as follows:
Configuring the VPN Tunnel
This scenario assumes all ports are open on the FVS318v3.
Figure C-19
Use this scenario illustration and configuration screens as a model to build your configuration.
1. Log in to the FVS318v3 labeled Gateway A as in the illustration (
).
Table C-5. Differences between VPN tunnel types
Operation
Gateway-to-Gateway VPN Tunnels
Client-to-Gateway VPN Tunnels
Exchange Mode
Main Mode—The IP addresses of both
gateways are known (especially when
FQDN is used), so each gateway can
use the Internet source of the traffic for
validation purposes.
gateways are known (especially when
FQDN is used), so each gateway can
use the Internet source of the traffic for
validation purposes.
Aggressive Mode—The IP address of
the client is not known in advance, so the
gateway is programmed to accept valid
traffic sourced from any Internet location
(i.e., less secure).
the client is not known in advance, so the
gateway is programmed to accept valid
traffic sourced from any Internet location
(i.e., less secure).
Direction/Type
Both Directions—Either end of the VPN
tunnel may initiate traffic (usually).
tunnel may initiate traffic (usually).
Remote Access—The client end of the
VPN tunnel must initiate traffic because
its IP address is not know in advance,
which prevents the gateway end of the
VPN tunnel from initiating traffic.
VPN tunnel must initiate traffic because
its IP address is not know in advance,
which prevents the gateway end of the
VPN tunnel from initiating traffic.
Gateway A
14.15.16.17
10.5.6.0/24
10.5.6.1
WAN IP
WAN IP
LAN IP
Client B
0.0.0.0
Router
Scenario 1
PC
(running NETGEAR
ProSafe VPN Client)
(running NETGEAR
ProSafe VPN Client)