VPNs for both FGC + FGU (LAN mode)

Since FGU-LAN mode networking is mostly the same as FGC networking with the UDP/TCP transport as only difference, we are able to support either or both in our extended "N-at-a-time" setup.

With our current OpenVPN setup (with a "/24" subnet), we can manage up to approximately 60 certificates/connections.

For each GM certificate/connection

including the initially created single/time-shared one (my-fg-ovpn-dm01)

We'll :

reserve 1 VPN private IP address (our initial "my-fg-ovpn-dm01" connection has the ".6" private IP in the VPN subnet, so : 10.10.10.6 in our example)
choose to support (= implement transparent port forwarding for) :
- only FGC (on a TCP port) : like we we did previously for my-fg-ovpn-dm01
- only FGU-LAN mode (on a UDP port)
- both FGC (on a TCP port) and FGU-LAN mode (on a UDP port)

...to be continued...

PreviousFGU vs. FGC networking NextUntitled

Last updated 4 years ago

Was this helpful?