Netgear FVM318 – Cable and DSL ProSafe Wireless VPN Security Firewall 참조 매뉴얼
Reference Manual for the Model FVM318 Cable/DSL ProSafe Wireless VPN Security Firewall
Network, Routing, Firewall, and Wireless Basics
B-23
b.
The responder sends its own Diffie-Hellman value.
c.
The initiator confirms the exchange.
Key Exchange: Phase 2
Quick mode is used in the second phase. Quick mode negotiates the IPSec SA.
•
Once the SA has been established, the parties use Quick mode to negotiate security services
and generate fresh key material.
and generate fresh key material.
•
A single SA negotiation results in two SAs, one inbound and one outbound. Both SAs are
one-way.
one-way.
Two Common Applications of VPN
Two common applications of VPN are:
•
Secure access from a remote PC, such as a telecommuter connecting to an office network
•
Secure access between two networks, such as a branch office and a main office
These applications are described below.
Accessing Network Resources from a VPN Client PC
VPN client remote access allows a remote PC to connect to your network from any location on the
Internet. In this case, the remote PC is one tunnel endpoint, running VPN client software. The
NETGEAR VPN-enabled router on your network is the other tunnel endpoint, as shown below.
Internet. In this case, the remote PC is one tunnel endpoint, running VPN client software. The
NETGEAR VPN-enabled router on your network is the other tunnel endpoint, as shown below.
Figure 8-7: Client to LAN access through VPN router
INTERNET
A T L
A N T A
B A Y
S A N
S A N
T A
C L A
R A
CLIENT
VPN
ROUTER
ROUTER
LAN