1. Home
    2. /
  2. Manuals
    3. /
  3. SnapGear
    4. /
  4. SG565
    5. /
  5. 13
Page 61 / 249 Scroll up to view Page 56 - 60
Network Connections
56
To manually configure your Internet network settings, enter the
IP Address
,
Netmask
,
Internet Gateway
and
DNS Server(s)
supplied by your ISP.
If you have been given a
range of IP addresses, they may be added as
Interface Aliases
; see the
Advanced
section later in this chapter.
Reboot
your CyberGuard SG appliance to establish your Internet connection.
Bridged Internet
Refer to the section entitled
Bridging
later in this chapter.
Secondary Internet Connection
Note
CyberGuard SG gateway and rack mount appliances only.
A secondary Internet connection may be configured for use as a back up connection,
being established only should the primary link lose connectivity (
Internet Failover
).
Note
CyberGuard SG appliance models SG300, SG530 and SG550 are limited to an analog
modem to ISDN failover connection through the
COM
/
Modem
port.
Additionally, CyberGuard SG appliances with multifunction network ports (SG7xx series,
SG560, SG565 and SG580) or a DMZ port (SG570, SG575) may be configured with
multiple broadband Internet connections.
Multiple broadband connections can be established concurrently (
Internet Load
Balancing
) or in a failover configuration.
Page 62 / 249
Network Connections
57
Internet Load Balancing
Note
SG560, SG565, SG570, SG575, SG580 and SG7xx series only.
To enable Internet load balancing, configure your secondary Internet connection in the
same manner as you did the first, then check
Enable Load Balancing
under
Load
Balancing
and click
Apply
.
Primary and secondary Internet connections need not be the same, e.g. you can perform
load balancing between a PPPoE ADSL connection on one network port, and a Cable
Internet connection on the other.
Limitations
Load balancing works by alternating outgoing traffic across Internet connections in a
round robin manner.
It does not bond both connections together to work as one link, e.g.
it will not bond two 512 kbit/s links to function as a single 1 mbit/s link.
When an internal client makes a connection to a server on the Internet, this and
subsequent connections between the the internal client and remote server will be
confined to the one Internet connection to ensure connections are not broken.
If a second internal client makes a connection to the same remote server, it may or may
not go across the same link, depending on which Internet connection is next to be
selected in the round robin process.
VPN connections such as IPSec or PPTP tunnels will be confined to a single Internet
connection, as they are a single connection (that encapsulate other connections).
Load balancing is not performed for incoming traffic.
This scenario can be addressed
using other solutions such as round robin DNS to alternate incoming connections
between the two links.
Page 63 / 249
Network Connections
58
Internet Failover
CyberGuard SG appliances are designed with the real Internet in mind, which may mean
downtime due to ISP equipment or telecommunications network failure.
Failures can be
caused by removing the wrong plug from the wall, typing in the wrong ISP password or
many other reasons.
Regardless of the cause of a failure, it can potentially be very
expensive.
When the main Internet connection fails and the backup connection (failover connection)
is started, VPN connections are restarted and dynamic DNS services are advised of the
new IP address.
To utilize the failover capabilities of your CyberGuard SG appliance, you must:
Enable your primary Internet connection for failover
Set up a secondary backup Internet connection
Enable the primary connection for failover
Set up your primary broadband Internet connection as described in the
Internet
section of
this chapter.
From the
Connections
menu, select
Edit failover parameters
from the
Configuration
pull down box.
The CyberGuard SG appliance determines whether an Internet connection is up by
listening for responses to
ping
(ICMP echo request) packets sent to a host on the
Internet.
Ensure you choose a host on the Internet that can be contacted reliably and
responds to pings.
You can check whether you can ping a host under
Diagnostics
->
Network Tests
->
Ping Test
.
Figure 3-5
Page 64 / 249
Network Connections
59
Enter the IP address of this host in
IP Address to ping
.
Ping Interval
is the number of seconds to wait between sending pings.
Number of times to attempt this connection
is the number of failed attempts before
this connection is considered failed.
Time to wait between re-trying connections
is the number of seconds to wait between
connection attempts.
Set up a secondary backup Internet connection
To switch to a dialout Internet connection when you primary broadband Internet
connection is unavailable, from the
Connections
menu select the appropriate
Failover
Internet
configuration for the
COM
/
Modem
port if setting up a narrowband dialout
failover Internet connection, or the appropriate network port if setting up a broadband
failover Internet connection.
Note
The
Failover Cable/DSL/Direct/Dialout Internet
option will not appear as an available
Configuration
until a primary Internet connection has been configured.
Refer to
Enable
the primary connection for failover
above for details on enabling your primary
broadband Internet connection for failover.
Page 65 / 249
Network Connections
60
Figure 3-6
Next, configure the failover connection as you would a normal Internet connection.
See the
Dialout Internet
in the
COM/Modem
section later in this chapter for a description
of the fields on the
Failover Modem Configuration
page.
See the
Primary Internet Connection
section in this chapter for a description of how to
configure a broadband Internet connection.

Rate

4 / 5 based on 3 votes.

Popular SnapGear Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top