ESR series service routers.ESR-Series. User manual
•
•
•
•
To view L2TP server configuration, use the following command:
esr# show remote-access configuration l2tp remote-workers
15.3 Configuring server for remote access to corporate network via OpenVPN protocol
OpenVPN is a sophisticated tool based on SSL that implements Virtual Private Networks (VPN), enables
remote access and solves many different tasks related to data transmission security.
15.3.1 Configuration algorithm
Step Description Command Keys
1 Create OpenVPN server profile. esr(config)# remote-access
openvpn <NAME>
<NAME> – OpenVPN server profile
name, set by the string of up to 31
characters.
2 Specify the description of the
configured server (optional).
esr(config-openvpn-server)#
description <DESCRIPTION>
<DESCRIPTION> – OpenVPN server
description, set by the string of up to
255 characters.
3 Define the subnet from which IP
addresses are leased to users (only
for tunnel ip).
esr(config-openvpn-server)#
network <ADDR/LEN>
<ADDR/LEN> – subnet address, set
in the following format:
AAA.BBB.CCC.DDD/EE – network IP
address with prefix mask, where
AAA-DDD take values of [0..255] and
EE takes values of [16..29].
4 Specify an encapsulated protocol. esr(config-openvpn-server)#
protocol <PROTOCOL>
<PROTOCOL> – encapsulation type,
possible values:
TCP encapsulation in TCP
segments;
UDP encapsulation in UDP
datagrams.
5 Define type of connection with a
private network via OpenVPN server.
esr(config-openvpn-server)#
tunnel <TYPE>
<TYPE> – encapsulation protocol,
takes the following values:
ip – point-to-point connection;
ethernet – L2 domain
connection.
In addition to creating L2TP server, open UDP port 500, 1701, 4500 designed for connection handling
and enable ESP (50) and GRE protocol (47) for the tunnel traffic in the firewall.
To Next Page
Loading...