sa3450 - Virtual Private Networking Concepts Guide

Firewalls and Tunnels

5-32 Hewlett-Packard Company Virtual Private Networking Concepts Guide

Figure: Tunnel Terminates in the Red (Trusted) Network

Figure: Tunnel Terminates in the Red (Trusted) NetworkFigure: Tunnel Terminates in the Red (Trusted) Network

Figure: Tunnel Terminates in the Red (Trusted) Network

Tunnel

Tunnel Tunnel

Tunnel

Terminates in

Terminates in Terminates in

Terminates in

the Black

the Black the Black

the Black

(Untrusted)

(Untrusted) (Untrusted)

(Untrusted)

Network

NetworkNetwork

Network

A tunnel that terminates in the black (untrusted) network but

where the traffic is destined for the red (trusted) network gets

the traffic to the VPN Gateway safely and then blocks it at the

firewall. A firewall rule must be in place to allow the traffic

through.

Figure: Tunnel Terminates in the Black (Untrusted) Network

Figure: Tunnel Terminates in the Black (Untrusted) NetworkFigure: Tunnel Terminates in the Black (Untrusted) Network

Figure: Tunnel Terminates in the Black (Untrusted) Network

Traffic is routed out the Red interface

without crossing the Firewall

Tunnel terminates on the Red

Firewall rule allows

traffic through to the

Red

Tunnel terminates

on the Black