Digi TransPort LR54 - Configure an Openvpn Client for Routing Mode and Certificate Authentication

Digi TransPort LR54

512 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Virtual Private Networks (VPN) OpenVPN

Digi TransPort WR Routers User Guide

209

Configure an OpenVPN client for routing mode and certificate

authentication

As OpenVPN is designed to allow the OpenVPN server to push up a lot of the OpenVPN configuration

to the OpenVPN client, it means that the client configuration is simplified.

Required configuration items

n Enable the OpenVPN client. The OpenVPN client is disabled by default.

n The IP address or domain name of the OpenVPN server.

n The client certificate and private key parameters. For more information on how to create

private key files and certificates, see Certificate and key management. The server certificate

and private key parameters should be loaded onto the TransPort device prior to using them.

For more information on how to create private key files and certificates, see Certificate and

key management. The process for loading this information onto the device varies by certificate

and key type:

l Certificate authority (CA) certificate: Copy the CA certificate and the CRL onto the

TransPort device from the CA prior to using it.

l Private key and certificate: There are two options to install a private key and certificate

on the TransPort device:

o

Use the pki commands pki privkey and pki csr to generate the private key and

certificate, copy the CRS to an external system to get it signed, then copy the signed

certificate back onto the TransPort device.

o

Generate the private key and certificate, fully signed, on an external system and copy

them onto the TransPort device. Use pki addkey command to import the private key

into the private key store.

Optional configuration items

n A description of the OpenVPN client.

n The ciphers and digest used by the OpenVPN client. For more information, see Configuring

ciphers and digests to be used on the OpenVPN tunnel.

n The IP protocol (TCP or UDP) to use. The default is to use UDP. This value must match the IP

protocol configured on the OpenVPN server.

n The TCP/UDP Port to use. By default, port 1194 is used. This must match the TCP/UDP port

configured on the OpenVPN server.

n The connection retry attempt period. By default, the OpenVPN client waits 5 seconds before

retrying to connect to the OpenVPN server. After 5 unsuccessful attempts, the period doubles

to a maximum of 300 seconds.

Web

1. On the menu, click Network > Networks > OpenVPN and select OpenVPN Client. The

OpenVPN Client page appears.

2. Click New OpenVPN Client. The OpenVPN client page displays the settings for a new

OpenVPN tunnel.

3. In the Select OpenVPN Client setting, select a number to assign to the OpenVPN client.

Table of Contents

Other manuals for Digi TransPort LR54

Hardware Reference21 pages

Quick Start Guide2 pages

Related product manuals

Preview: Digi TransPort

Preview: Digi TransPort WR31

Digi TransPort WR31

Preview: Digi TransPort WR11

Digi TransPort WR11

Preview: Digi TransPort WR21

Digi TransPort WR21

Preview: Digi TransPort WR44

Digi TransPort WR44

Preview: Digi TransPort WR41

Digi TransPort WR41

Preview: Digi WR54

Preview: Digi IX10

Digi Connect WAN

Digi Connect IT 4

Preview: Digi Connect Series

Digi Connect Series

Preview: Digi AnywhereUSB Series

Digi AnywhereUSB Series