EasyManua.ls Logo

NETGEAR UTM9S

NETGEAR UTM9S
631 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Virtual Private Networking Using SSL Connections
331
ProSecure Unified Threat Management (UTM) Appliance
Configure the SSL VPN Client
The SSL VPN client on the UTM assigns IP addresses to remote VPN tunnel clients.
Because the VPN tunnel connection is a point-to-point connection, you can assign IP
addresses from the local subnet to the remote VPN tunnel clients.
The following are some additional considerations:
So that the virtual (PPP) interface address of a VPN tunnel client does not conflict with
addresses on the local network, configure an IP address range that does not directly
overlap with addresses on your local network. For example, if 192.168.1.1 through
192.168.1.100 are currently assigned to devices on the local network, then start the client
address range at 192.168.1.101, or choose an entirely different subnet altogether.
The VPN tunnel client cannot contact a server on the local network if the VPN tunnel
client’s Ethernet interface shares the same IP address as the server or the UTM. (For
example, if your PC has a network interface IP address of 10.0.0.45, then you cannot
contact a server on the remote network that also has the IP address 10.0.0.45.)
Select whether you want to enable full-tunnel or split-tunnel support based on your
bandwidth:
- A full tunnel sends all of the client’s traffic across the VPN tunnel.
- A split tunnel sends only traffic that is destined for the local network based on the
specified client routes. All other traffic is sent to the Internet. A split tunnel allows you
to manage bandwidth by reserving the VPN tunnel for local traffic only.
If you enable split-tunnel support and you assign an entirely different subnet to the VPN
tunnel clients from the subnet that is used by the local network, you need to add a client
route to ensure that a VPN tunnel client connects to the local network over the VPN
tunnel.
Configure the Client IP Address Range
First determine the address range to be assigned to VPN tunnel clients, and then define the
address range.
To define the client IP address range:
1. Select VPN > SSL VPN > SSL VPN Client. The SSL VPN Client screen displays:

Table of Contents

Other manuals for NETGEAR UTM9S

Related product manuals