Manualshelf

Specifications

ManualsBrandsWaters Network Systems ManualsComputer equipmentProSwitch-Quad Series
421422423424425426427428429430
Network Planning for Multiple WAN Ports
422
ProSAFE Gigabit Quad WAN SSL VPN Firewall SRX5308
always changes. Therefore, the use of an FQDN is always required, even when the IP
address of each WAN port is fixed.
Note: When the VPN firewall’s WAN port rolls over, the VPN tunnel
collapses and needs to be reestablished using the new WAN IP
address. However, you can configure automatic IPSec VPN rollover
to ensure that an IPSec VPN tunnel is reestablished.
Figure 268.
Dual WAN ports in load balancing mode. A gateway configuration with dual WAN ports
that function in load balancing mode is the same as a single WAN port configuration when
you specify the IP address of the VPN tunnel endpoint. Each IP address is either fixed or
dynamic based on the ISP: You need to use FQDNs when the IP address is dynamic, and
FQDNs are optional when the IP address is static.
Figure 269.
VPN Road Warrior (Client-to-Gateway)
The following situations exemplify the requirements for a remote computer client with no
firewall to establish a VPN tunnel with a gateway VPN firewall:
Single-gateway WAN port
Redundant dual-gateway WAN ports for increased reliability (before and after rollover)
Dual-gateway WAN ports for load balancing