Remote RMX-3200 Version 5.2x Configuration Guide
Configuring a Site VPN Connection: Configuring the Site VPN
8-6
Configuring the Site VPN
To configure the site VPN:
1. Configure the site VPN controller with instance name
site with default cipher,
keep-alive, port and protocol
.
config controller openvpn site mode site-server
2. Configure site interface with IP address 192.168.101.1/24
config interface openvpn site ip address 192.168.101.1/24
3. Configure the routes for the site VPN clients to reach the site LAN:
config controller openvpn site client-route ethernet 3
Tip: Multiple routes can be added to reach different subnets at the same site by
executing the command multiple times for each additional route.
4. Configure the IP addresses and ports of the site NEs to be accessed over the site
VPN:
config controller openvpn allow-access 192.168.111.100 tcp 20-80
tcp 443 udp 161
config controller openvpn allow-access 192.168.111.101 tcp 20-80
tcp 443 udp 161
Notes: By default, the Remote RMX-3200 blocks all traffic to the site LAN.
ICMP ping requests and replies are automatically allowed for each IP
address specified.
In this scenario, you will:
Configure the site VPN controller
Configure the interface for client routes
Configure the IP address and ports to access over the site VPN
Verify the configuration
Show the number of clients connected to the site VPN
To Next Page
Loading...
