Filter
Top Products
196
5
5. Virtual Private Networking
Using IPSec and L2TP Connections
This chapter describes how to use the IP security (IPSec) virtual private networking (VPN)
features of the VPN firewall to provide secure, encrypted communications between your local
network and a remote network or computer. The chapter contains the following sections:
• Considerations for Dual WAN Port Systems (IPv4 Only)
• Use the IPSec VPN Wizard for Client and Gateway Configurations
• Test the Connection and View Connection and
Status Information
• Manage IPSec VPN Policies
• Configure Extended Authentication (XAUTH)
• Assign IPv4 Addresses to Remote Users (Mode Config)
• Configure Keep-Alives and Dead Peer Detection
• Configure NetBIOS Bridging with IPSec VPN
• Configure the PPTP Server
• Configure the L2TP Server
Considerations for Dual WAN Port Systems (IPv4 Only)
If two WAN ports are configured for IPv4, you can enable either auto-rollover mode for
increased system reliability or load balancing mode for optimum bandwidth efficiency. The
selection of the WAN mode determines how you need to configure the VPN features.
The use of fully qualified domain names (FQDNs) in VPN p
olicies is mandatory when the
WAN ports function in auto-rollover mode or load balancing mode, and is also required for
VPN tunnel failover. When the WAN ports function in load balancing mode, you cannot
configure VPN tunnel failover. An FQDN is optional when the WAN ports function in load
balancing mode if the IP addresses are static, but mandatory if the WAN IP addresses are
dynamic.
See Virtual Private Networks on p
age 411 for more information about the IP addressing
requirements for VPNs in the dual WAN modes.
For information about how to select and configure a
Dynamic DNS service for resolving
FQDNs, see Configure Dynamic DNS on
page 48. For information about WAN mode
configuration, see Configure the IPv4 WAN Mode on
page 28.