5. CONFIGURATION
All security files are required for correct communication to be established between clients and the VPN server, except for
TAP Key. This key is optional for communication, but if it is used on the server, it becomes mandatory for all clients on the
server.
See the TLS Key and Certificate Management section for further information about generating certificates and security
keys based on TLS.
5.18.2.1.7. TA Key
In the field TA Key it is set which type of encryption will be applied to the TA Key. This field stays hidden until you select a
file for the TLS key because it is only used in conjunction with this key. The default value of this parameter is SHA1, but you
can select from the following values: SHA256, SHA512, and MD5, in addition to the default SHA1.
ATTENTION
This configuration needs to be the same between the clients and the server in the same
OpenVPN network. If the value of this field is different between the client and server, the
connection will not be established.
5.18.2.2. Exclusive Server Configurations
The exclusive server configurations, seen in figure 162, are described below.
5.18.2.2.1. Network Address
The IP range that will be used to assign the server and client addresses for the VPN network is configured by the server by
setting the IP Address and Mask Address fields. All IPs that will be assigned to the clients and the server will be taken from
the specified range.
The server’s IP address is always the first available value in the configured range, and for IP assignments to clients, the
values still available in the range are used, so the first available value is assigned as clients make their connection. For example,
if a network is configured with the addresses 10.8.12.4 and mask 255.255.255.248, the server will assume IP 10.8.12.5 which
is the first available address in the configured range. However, if mask 255.255.255.255.0 is set, the server will assume IP
10.8.12.1, which is the first available address in the range.
The IP and Mask address fields only accept settings that have the syntax of an IP address and mask address, respectively.
If anything out of the standard is configured, an alert message will be displayed, informing you that an error has occurred.
5.18.2.2.2. Communication between Clients
In this field, you can enable or disable communication between clients in the VPN network. When the option is selected
as Disabled, only client-server communication can be performed directly. If the option selected is Enabled, it will allow
communication between the clients themselves in addition to the client-server communication.
5.18.2.2.3. Maximum Connected Clients
In this field, you can set the maximum number of clients that can connect to the server simultaneously. This field accepts
only numeric characters, and the minimum value is 1.
5.18.2.2.4. Private Networks
When you select OpenPVN’s operating mode as a server, a table will be displayed, normally hidden, which allows the
configuration of private networks that can be below the server and each client.
251
To Next Page
Loading...