Digi TransPort LR54 - Configure Keepalives on the Openvpn Tunnels

Digi TransPort LR54

512 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Virtual Private Networks (VPN) OpenVPN

Digi TransPort WR Routers User Guide

213

For OpenVPN Clients

1. On the menu, click Network > Networks > OpenVPN and select OpenVPN Client. The

OpenVPN Client page appears.

2. Select the required OpenVPN client.

3. Click Edit. The OpenVPN client page displays the settings for the OpenVPN client.

4. Enter the Encryption settings:

n Cipher: Select the desired ciphers that the OpenVPN can use for an OpenVPN tunnel.

5. Click Apply.

Command line

For OpenVPN Server and Clients

1. For the OpenVPN server, the command to configure the list of ciphers is openvpn-server

cipher. For example, to configure the OpenVPN server to use either AES 128 GCM for cipher

negotiation or allow AES 256 GCM cipher for OpenVPN clients that don't support cipher

negotiation, the command is:

digi.router> openvpn-server cipher aes-128-gcm,aes-256-gcm

2. For the OpenVPN server, the command to configure the digest is openvpn-server digest. For

example, the command to configure the OpenVPN server to use SHA256, the command would

be:

digi.router> openvpn-server digest sha256

3. For the OpenVPN client, the command to configure the list of ciphers is openvpn-client x

cipher. For example, to configure the OpenVPN client 1 to use AES 256 GCM cipher only, the

command would be:

digi.router> openvpn-client 1 cipher aes-256-gcm

4. For the OpenVPN client, the command to configure the digest is openvpn-client x digest. For

example, the command to configure the OpenVPN client 1 to use SHA256, the command would

be:

digi.router> openvpn-client 1 digest sha256

5. Save the configuration on the OpenVPN client and/or server.

digi.router> save config

Configure keepalives on the OpenVPN tunnels

You can configure keepalive message to be sent periodically to detect whether the OpenVPN tunnel is

operational.

If there are no keepalive messages received for a configurable amount of time, the OpenVPN tunnel is

be brought down and then renegotiated.

The keepalive interval and timeout is only configured on the OpenVPN server and is pushed up to the

OpenVPN client during the tunnel negotiation. The OpenVPN server automatically doubles the

configured keepalive timeout to ensure that the OpenVPN client times out first.

Table of Contents

Other manuals for Digi TransPort LR54

Hardware Reference21 pages

Quick Start Guide2 pages

Related product manuals

Preview: Digi TransPort

Preview: Digi TransPort WR31

Digi TransPort WR31

Preview: Digi TransPort WR11

Digi TransPort WR11

Preview: Digi TransPort WR21

Digi TransPort WR21

Preview: Digi TransPort WR44

Digi TransPort WR44

Preview: Digi TransPort WR41

Digi TransPort WR41

Preview: Digi WR54

Preview: Digi IX10

Digi Connect WAN

Digi Connect IT 4

Preview: Digi Connect Series

Digi Connect Series

Preview: Digi AnywhereUSB Series

Digi AnywhereUSB Series