Topology – equinux VPN Tracker 6.4.6 User Manual

The "passive" variant can be used to resolve problems when the general
EasyVPN setting does not work with a particular device.

Related Settings: Basic > Network Configuration > Local Address
Basic > Network Configuration > Remote Networks
Basic > Remote DNS > Receive DNS Settings from VPN Gateway
Advanced > Interoperability > Cisco > Identify as Cisco Unity Client

Availability: Depending on the selected device profile. Use a custom device
profile to be able to select any method.

SonicWALL DHCP over VPN

An automatic configuration method implemented by SonicWALL devices that
is capable of transmitting the settings for the Local Address and the Remote
DNS settings (DNS servers and search domain).

Related Settings: Basic > Network Configuration > Local Address
Basic > Remote DNS > Receive DNS Settings from VPN Gateway

Availability: Depending on the selected device profile. Use a custom device
profile to be able to select any method.

VPN Gateway Setting: GroupVPN > Client > Virtual Adapter Setting > DHCP
Lease (or DHCP Lease or Manual Configuration)

SonicWALL Simple Client Provisioning (SCP)

An automatic configuration method implemented by SonicWALL devices that
can supply all settings of a VPN connection.

Related Settings: Basic > Remote DNS > Receive DNS Settings from VPN
Gateway

Availability: Depending on the selected device profile. Use a custom device
profile to be able to select any method. Requires VPN Tracker Professional or
Player Edition.

VPN Gateway Setting: No special settings are required to enable SonicWALL
Simple Client Provisioning on a SonicWALL with a properly configured and
enabled GroupVPN. SonicWALL Simple Client Provisioning with VPN Tracker
is supported on most current SonicWALL devices (usually those running
SonicOS Enhanced 4.x or newer). Refer to the VPN Tracker website for details.

Topology

In most cases, the topology should be set to Host to Network. This means that
a single host (= your Mac) connects to one or more remote networks through
VPN.

Other possible topologies are:

Host to Everywhere

A single host tunneling all its Internet traffic through VPN. This is equivalent to
a Host to Network connection with a remote network of 0.0.0.0/0.

For Host to Everywhere to work, the VPN gateway must accept a policy with a
0.0.0.0/0 endpoint, and also take care of the routing and Network Address
Translation (NAT) for the VPN client when it tries to access the Internet.

Network to Network

A (local) network being connected to another (remote) network, with the Mac
running VPN Tracker acting as the local VPN gateway, and another VPN gate-
way at the remote end. This can be used to connect a branch or home office
with multiple computers to a main office. The Mac running VPN Tracker needs
to have routing enabled and has to be configured as the router for the other
computers that are to use the VPN.

Host to Host

A single host (= your Mac) accessing another single host (e.g. a single file
server, email server etc.) through VPN.

Host to Host (Transport)

A single host (= your Mac) accessing another single host (e.g. a single file
server, email server etc.) through a transport mode tunnel.

Related Settings: Basic > Network Configuration > Local Address / Network
Basic > Network Configuration > Remote Network / Address

Availability: Depending on the selected device profile. Use a custom device
profile to be able to select any method. Network to Network requires VPN
Tracker Professional Edition.

48