Digi Connect IT 4

964 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Virtual Private Networks (VPN) OpenVPN

Digi Connect IT® 4 User Guide

377

Command line

1. Select the device in Remote Manager and click Actions > Open Console, or log into the

Connect IT 4 local command line as a user with full Admin access rights.

Depending on your device configuration, you may be presented with an Access selection

menu. Type admin to access the Admin CLI.

2. At the command line, type config to enter configuration mode:

> config

(config)>

3. At the config prompt, type:

(config)> add vpn openvpn server name

(config vpn openvpn server name)>

where name is the name of the OpenVPN server.

The OpenVPN server is enabled by default. To disable the server, type:

(config vpn openvpn server name)> enable false

(config vpn openvpn server name)>

4. Set the mode used by the OpenVPN server:

(config vpn openvpn server name)> device_type value

(config vpn openvpn server name)>

where value is one of:

n TUN (OpenVPN managed)—Also known as routing mode. Each OpenVPN client is

assigned a different IP subnet from the OpenVPN server and other OpenVPN clients.

OpenVPN clients use Network Address Translation (NAT) to route traffic from devices

connected on its LAN interfaces to the OpenVPN server.

n TAP - OpenVPN managed—Also know as bridging mode. A more advanced

implementation of OpenVPN. The Connect IT 4 device creates an OpenVPN interface

and uses standard interface configuration (for example, a standard DHCP server

configuration).

n TAP - Device only—An alternate form of OpenVPN bridging mode, in which the device,

rather than OpenVPN, controls the interface configuration. If this method is is, the

OpenVPN server must be included as a device in either an interface or a bridge.

See OpenVPN for information about OpenVPN modes. The default is tun.

5. If tap or tun are set for device_type:

a. Set the IP address and subnet mask of the OpenVPN server.

(config vpn openvpn server name)> address ip_address/netmask

(config vpn openvpn server name)>

b. Set the firewall zone for the OpenVPN server. For TUNdevice types, this should be set to

internal to treat clients as LAN devices.

Table of Contents

Related product manuals

Preview: Digi Connect WAN 3G IA

Digi Connect WAN 3G IA

Digi Connect WAN

Preview: Digi Connect Series

Digi Connect Series

Digi ConnectPort X2e ZB

Preview: Digi TransPort

Preview: Digi TransPort WR44

Digi TransPort WR44

Preview: Digi TransPort WR11

Digi TransPort WR11

Digi AnywhereUSB/14

Preview: Digi TransPort WR41

Digi TransPort WR41

Preview: Digi TransPort LR54

Digi TransPort LR54

Preview: Digi TransPort WR31

Digi TransPort WR31

Preview: Digi AnywhereUSB Series

Digi AnywhereUSB Series