Manualshelf

Specifications

ManualsBrandsNetgear ManualsPC ComponentsNetgear SRX5308
311312313314315316317318319320
Network Planning for Multiple WAN Ports
311
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Figure 183.
Features such as multiple exposed hosts are not supported in auto-rollover mode
because the IP addresses of each WAN port needs to be in the identical range of fixed
addresses.
Dual WAN ports in load balancing mode. Load balancing for a VPN firewall with dual
WAN ports is similar to a single WAN gateway configuration when you specify the IP
address. Each IP address is either fixed or dynamic based on the ISP: You need to use
FQDNs when the IP address is dynamic, but FQDNs are optional when the IP address is
static.
Figure 184.
Inbound Traffic
Incoming traffic from the Internet is normally discarded by the VPN firewall unless the traffic is
a response to one of your local computers or a service for which you have configured an
inbound rule. Instead of discarding this traffic, you can configure the VPN firewall to forward it
to one or more LAN hosts on your network.
The addressing of the VPN firewall’s dual WAN port depends on the configuration being
implemented.
Table 79. IP addressing requirements for exposed hosts in a dual WAN port configuration
Configuration and
WAN IP address
Single WAN port
(reference case)
Dual WAN port cases
Rollover Load Balancing
Inbound traffic
• Port forwarding
• Port triggering
Fixed Allowed
(FQDN optional)
FQDN required Allowed
(FQDN optional)
Dynamic FQDN required FQDN required FQDN required