User Interface
R&S
®
GP-E/GP-S
119User Manual v16.2.1 ─ 01
Field Description
"Network IP Address" Specify the subnet from which the VPN clients will receive an IP address when
they connect to gateprotect Firewall. Enter a valid CIDR subnet notation (IP
address followed by a slash »/« and the number of bits set in the subnet mask,
for example 192.168.50.1/24 ).
"DHCP Start IP" /
"DHCP End IP"
Specify the range of IP addresses to be assigned to VPN clients.
"Remote Revocation
Check"
Optional: Select this checkbox to check client certificates against a remote
CRL/OCSP server. When you enable this option, make sure that the CA has at
least one CRL or OCSP-URL set. The OpenVPN server uses CRL or OCSP or
both depending on what the CA offers. Currently, for CRL and OCSP only the
first URL is used. If the remote verification fails, because the CA server cannot
be reached, the clients cannot connect. For more information, see "Certificates
Settings" on page 123.
The buttons at the bottom right of the editor panel depend on whether you add a new
OpenVPN C2S connection or edit an existing connection. For a newly configured con-
nection, click "Create" to add the connection to the list of available OpenVPN C2S con-
nections or "Cancel" to discard your changes. To edit an existing connection, click
"Close" as long as no changes have been made, "Save" to store the reconfigured con-
nection or "Reset" to discard your changes.
Click " Activate" in the toolbar at the top of the desktop to apply your configuration
changes.
For detailed instructions, see Chapter 4.12.3, "Setting Up a Client-to-Site VPN via
OpenVPN", on page 187.
OpenVPN Site-to-Site
gateprotect Firewall allows you to create a secure connection between two remote net-
works via the OpenVPN protocol.
OpenVPN Site-to-Site Overview
Navigate to "VPN > OpenVPN > Site-to-Site" to display the list of OpenVPN S2S con-
nections that are currently configured on the system in the item list bar.
In the expanded view, the columns of the table display the "Name" of the connection
and the "Certificate" used for the connection. The buttons in the last column allow you
to view and adjust the settings of an existing OpenVPN S2S connection, create a new
connection based on a copy of an existing OpenVPN connection or delete a connec-
tion from the system.
For further information, see Chapter 3.2, "Icons and Buttons", on page 21.
OpenVPN Site-to-Site Settings
Use the "Site-to-Site" settings to create a secure connection between two remote net-
works via the OpenVPN protocol.
Under "VPN > OpenVPN > Site-to-Site", you can add or edit an existing OpenVPN
S2S connection.
Menu Reference
To Next Page
Loading...