Netscreen - VPN Topologies
Back to Back VPNs
Back to Back VPNs allow you to create a tunnel for each spoke to the hub. The hub will then have a policy to
allow traffic from one tunnel to the next.
You can either place each tunnel within its own zone and create a policy between each of the zones. Or
enable intrazone blocking and have both tunnels within the same zone.
Hub And Spoke
With Hub and Spoke all tunnels terminating at the hub are within the same zone. Due to this no policy is
required and routes are added to direct traffic for once tunnel to the next.