Virtual PrivateNetworks(VPN) OpenVPN
IX20 User Guide
554
iii. Paste the contents of the public key (for example, server.crt) into the value of the
server_cert parameter:
(config vpn openvpn server name)> server_cert value
(config vpn openvpn server name)>
iv. Paste the contents of the private key (for example, server.key) into the value of the
server_key parameter:
(config vpn openvpn server name)> server_key value
(config vpn openvpn server name)>
v. Paste the contents of the Diffie Hellman key (usually in dh2048.pem) into the value of
the diffie parameter:
(config vpn openvpn server name)> diffie value
(config vpn openvpn server name)>
8. (Optional) Set the accesscontrol list to restrict access to the OpenVPNserver:
n
To limit access to specified IPv4 addresses and networks:
(config vpn openvpn server name)> add acl address end value
(config vpn openvpn server name)>
Where value can be:
l
Asingle IPaddress or host name.
l
Anetwork designation in CIDRnotation, for example, 192.168.1.0/24.
l
any: No limit to IPv4 addresses that can access the service-type.
Repeat thisstep to list additional IPaddressesor networks.
n
To limit access to specified IPv6 addresses and networks:
(config vpn openvpn server name)> add acl address6 end value
(config vpn openvpn server name)>
Where value can be:
l
Asingle IPaddress or host name.
l
Anetwork designation in CIDRnotation, for example, 2001:db8::/48.
l
any: No limit to IPv6 addresses that can access the service-type.
Repeat thisstep to list additional IPaddressesor networks.
n
To limit access to hosts connected through a specified interface on the IX20 device:
(config vpn openvpn server name)> add acl interface end value
(config vpn openvpn server name)>
Where value is an interface defined on your device.
Display a list of available interfaces:
To Next Page
Loading...