Netgear FVS336Gv2 – ProSafe Dual WAN Gigabit Firewall with SSL & IPSec VPN 참조 매뉴얼

If two WAN ports are configured for either IPv4 or IPv6, you can enable either auto-rollover 
mode for increased system reliability or load balancing mode for optimum bandwidth 
efficiency. The selection of the WAN mode determines how you must configure the VPN 
features.

If the WAN ports function in auto-rollover mode, you must use fully qualified domain names 
(FQDNs) in VPN policies. FQDNs are also required for VPN tunnel failover. If the WAN ports 
function in load balancing mode, you cannot configure VPN tunnel failover. In load balancing 
mode, FQDNs are optional if the WAN IP addresses are static but mandatory if the WAN IP 
addresses are dynamic.

For more information about the IP addressing requirements for VPNs in the dual WAN 
modes, see 

For information about how to select and configure a Dynamic DNS service for resolving 
FQDNs, see 

63. 

For information about configuring auto-rollover and load balancing, see the following 
sections:

109 (load balancing is not supported 

for IPv6 interfaces)

The following diagrams and table show how the WAN mode selection relates to VPN 
configuration.

Rest of

VPN firewall

functions

VPN firewall

WAN port

functions

VPN firewall

rollover

control

Multiple WAN port model

WAN 1 port

WAN 2 port

Internet

Same FQDN required for both WAN ports

WAN auto-rollover: FQDN required for VPN 

Rest of

VPN firewall

functions

VPN firewall

WAN port

functions

Load

balancing

control

Multiple WAN port model

WAN 1 port

WAN 2 port

Internet

FQDN required for dynamic IP addresses

WAN load balancing: FQDN required or optional for VPN

FQDN optional for static IP addresses