Changes

Template:Networking rutos manual vpn (view source)

Revision as of 16:07, 7 December 2020

1,062 bytes added ,  16:07, 7 December 2020
no edit summary
Line 1: Line 1:  
<!-- Template uses {{{name}}}, {{{series}}}    -->
 
<!-- Template uses {{{name}}}, {{{series}}}    -->
 
{{Template:Networking_rutos_manual_fw_disclosure
 
{{Template:Networking_rutos_manual_fw_disclosure
| fw_version = {{{series}}}_R_00.02.05.1
+
| fw_version = {{{series}}}_R_00.02.06
 
| series    = {{{series}}}
 
| series    = {{{series}}}
 
}}
 
}}
Line 22: Line 22:  
{{{name}}} devices run OpenVPN version <b>2.4.5</b>.
 
{{{name}}} devices run OpenVPN version <b>2.4.5</b>.
   −
===OpenVPN client===
+
===OpenVPN Client===
 
----
 
----
 
An <b>OpenVPN client</b> is an entity that initiates a connection to an OpenVPN server. To create a new client instance, go to the <i>Services → VPN → OpenVPN</i> section, select <i>Role: Client</i>, enter a custom name and click the 'Add' button. An OpenVPN client instance with the given name will appear in the "OpenVPN Configuration" list.
 
An <b>OpenVPN client</b> is an entity that initiates a connection to an OpenVPN server. To create a new client instance, go to the <i>Services → VPN → OpenVPN</i> section, select <i>Role: Client</i>, enter a custom name and click the 'Add' button. An OpenVPN client instance with the given name will appear in the "OpenVPN Configuration" list.
Line 248: Line 248:  
</ul>
 
</ul>
   −
===OpenVPN server===
+
===OpenVPN Server===
 
----
 
----
 
An <b>OpenVPN server</b> is an entity that waits for incoming connections from OpenVPN clients. To create a new server instance, go to the <i>Services → VPN → OpenVPN</i> section, select <i>Role: Server</i>, enter a custom name and click the 'Add' button. An OpenVPN server instance with the given name will appear in the "OpenVPN Configuration" list. Only one OpenVPN server instance is allowed to be added.
 
An <b>OpenVPN server</b> is an entity that waits for incoming connections from OpenVPN clients. To create a new server instance, go to the <i>Services → VPN → OpenVPN</i> section, select <i>Role: Server</i>, enter a custom name and click the 'Add' button. An OpenVPN server instance with the given name will appear in the "OpenVPN Configuration" list. Only one OpenVPN server instance is allowed to be added.
Line 490: Line 490:  
<b>Generic Routing Encapsulation</b> (<b>GRE</b>) is a tunneling protocol used to establish point-to-point connections between remote private networks. GRE tunnels encapsulate data packets in order to route other protocols over IP networks.
 
<b>Generic Routing Encapsulation</b> (<b>GRE</b>) is a tunneling protocol used to establish point-to-point connections between remote private networks. GRE tunnels encapsulate data packets in order to route other protocols over IP networks.
   −
===GRE: main & tunnel settings===
+
===GRE: Main & Tunnel Settings===
 
----
 
----
 
To create a new GRE instance, go to the <i>Services → VPN → GRE</i> section, enter a custom name and click the 'Add' button. A GRE instance with the given name will appear in the "GRE Configuration" list.
 
To create a new GRE instance, go to the <i>Services → VPN → GRE</i> section, enter a custom name and click the 'Add' button. A GRE instance with the given name will appear in the "GRE Configuration" list.
Line 566: Line 566:  
</table>
 
</table>
   −
===GRE: routing settings===
+
===GRE: Routing Settings===
 
----
 
----
 
<b>Routing settings</b> are used to configure routes to networks that are behind the device that hosts the opposite GRE instance. To add a new route, simply click the 'Add' button. For information on configuring the route refer to the figure and table below.
 
<b>Routing settings</b> are used to configure routes to networks that are behind the device that hosts the opposite GRE instance. To add a new route, simply click the 'Add' button. For information on configuring the route refer to the figure and table below.
Line 596: Line 596:  
To begin configuration, click the button that looks like a pencil located next to the instance.
 
To begin configuration, click the button that looks like a pencil located next to the instance.
   −
===IPsec instance===
+
===IPsec Instance===
 
----
 
----
 
The <b>general settings</b> section is used to configure the main IPsec parameters. Refer to the figure and table below for information on the configuration fields located in the general settings section.
 
The <b>general settings</b> section is used to configure the main IPsec parameters. Refer to the figure and table below for information on the configuration fields located in the general settings section.
   −
[[File:Networking_rutx_vpn_ipsec_ipsec_configuration_general_v2.png|border|class=tlt-border]]
+
[[File:Networking_rutos_vpn_ipsec_ipsec_instance_general_settings.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 680: Line 680:  
</ul>
 
</ul>
   −
====Advanced settings====
+
====Advanced Settings====
 
----
 
----
   Line 705: Line 705:  
</table>
 
</table>
   −
===IPsec instance: connection settings===
+
===IPsec Instance: Connection Settings===
 
----
 
----
    
The <b>connection settings</b> section is used to configure the main parameters of an IPsec connection. Refer to the figure and table below for information on the configuration fields located in the connection settings section.
 
The <b>connection settings</b> section is used to configure the main parameters of an IPsec connection. Refer to the figure and table below for information on the configuration fields located in the connection settings section.
   −
====General settings====
+
====General Settings====
 
----
 
----
   −
[[File:Networking_rutx_vpn_ipsec_ipsec_configuration_connection_settings_v1.png|border|class=tlt-border]]
+
[[File:Networking_rutos_vpn_ipsec_connection_settings_general_settings.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 735: Line 735:  
             </ul>
 
             </ul>
 
         </td>
 
         </td>
 +
    </tr>
 +
    <tr>
 +
    <td><span style="color: red;">Tunnel:</span> Default route</td>
 +
        <td>off {{!}} on; default: <b>off</b></td>
 +
        <td>Turn on to route all traffic through IPSec tunnel.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
Line 760: Line 765:  
             </ul>
 
             </ul>
 
         </td>
 
         </td>
    </tr>
  −
    <tr>
  −
    <td><span style="color: red;">Tunnel:</span> Default route</td>
  −
        <td>off {{!}} on; default: <b>off</b></td>
  −
        <td>Turn on to route all traffic through IPSec tunnel.</td>
   
     </tr>
 
     </tr>
 
</table>
 
</table>
Line 781: Line 781:  
----
 
----
   −
[[File:Networking_rutx_vpn_ipsec_ipsec_configuration_connection_settings_advanced_v1.png|border|class=tlt-border]]
+
[[File:Networking_rutos_vpn_ipsec_connection_settings_advanced_settings.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 865: Line 865:  
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
     <td><span style="color: red;">Tunnel:</span> Passthrough</td>
+
     <td><span style="color: red;">Tunnel:</span> Passthrough interfaces</td>
         <td>interface(s); default: <b>none</b></td>
+
         <td>network interfaces; default: <b>none</b></td>
         <td>Choose interface(s) for passthrough.</td>
+
         <td>Network interfaces to include in IPsec Passthrough.</td>
 +
    </tr>
 +
    <tr>
 +
    <td><span style="color: red;">Tunnel:</span> Passthrough subnets</td>
 +
        <td>ip/netmask; default: <b>none</b></td>
 +
        <td>Networks to include in IPsec Passthrough.</td>
 
     </tr>
 
     </tr>
 
</table>
 
</table>
Line 1,027: Line 1,032:  
===PPTP client===
 
===PPTP client===
 
----
 
----
A <b>PPTP client</b> is an entity that initiates a connection to a PPTP server. To create a new client instance, go to the <i>Services → VPN → PPTP</i> section, select <i>Role: Client</i>, enter a custom name and click the 'Add' button. A PPTP client instance with the given name will appear in the "PPTP Configuration" list.
+
A <b>PPTP client</b> is an entity that initiates a connection to a PPTP server. To create a new client instance, go to the <i>Services → VPN → PPTP</i> section, select <i>Role: Client</i>, enter a custom name and click the 'Add' button:
 +
 
 +
[[File:Networking_rutos_vpn_pptp_client_add_button.png|border|class=tlt-border]]
   −
To begin configuration, click the button that looks like a pencil next to the client instance. Refer to the figure and table below for information on the PPTP client's configuration fields:
+
You should be redirected to the configuration page for the newly added PPTP Client which should look similar to this:
   −
[[File:Networking_rutx_vpn_pptp_client_configuration_v2.png|border|class=tlt-border]]
+
[[File:Networking_rutos_vpn_pptp_client.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,067: Line 1,074:  
===PPTP server===
 
===PPTP server===
 
----
 
----
A <b>PPTP server</b> is an entity that waits for incoming connections from PPTP clients. To create a new server instance, go to the <i>Services → VPN → PPTP</i> section, select <i>Role: Server</i>, enter a custom name and click the 'Add' button. A PPTP server instance with the given name will appear in the "PPTP Configuration" list. Only one PPTP server instance is allowed to be added.
+
A <b>PPTP server</b> is an entity that waits for incoming connections from PPTP clients. To create a new server instance, go to the <i>Services → VPN → PPTP</i> section, select <i>Role: Server</i>, enter a custom name and click the 'Add' button:
   −
A server needs to have a [[Private_and_Public_IP_Addresses#Public_IP_address|public IP address]] in order to be available from the public network (the Internet).
+
[[File:Networking_rutos_vpn_pptp_server_add_button.png|border|class=tlt-border]]
   −
To begin configuration, click the button that looks like a pencil next to the server instance. Refer to the figure and table below for information on the PPTP server's configuration fields:
+
You should be redirected to the configuration page for the newly added PPTP Server which should look similar to this:
   −
[[File:Networking_rutx_vpn_pptp_server_configuration_v2.png|border|class=tlt-border]]
+
[[File:Networking_rutos_vpn_pptp_server.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,102: Line 1,109:  
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
       <td>User name</td>
+
       <td>Timeout</td>
       <td>string; default: '''none'''</td>
+
      <td>integer; default: <b>none</b></td>
 +
      <td>Time in seconds. If no packets pass through the tunnel between this server and a client, the server will terminate the connection to that client after the amount of time specified in this field passes.</td>
 +
    </tr>
 +
    <tr>
 +
      <td>Primary DNS</td>
 +
      <td>ip; default: <b>none</b></td>
 +
      <td>IP address of the primary DNS server.</td>
 +
    </tr>
 +
    <tr>
 +
      <td>Secondary DNS</td>
 +
      <td>ip; default: <b>none</b></td>
 +
      <td>IP address of the secondary DNS server.</td>
 +
    </tr>
 +
</table>
 +
----
 +
The <b>User List</b> section is used to user authentication settings required to successfully connect to this server. The list is empty by default. Click the 'Add' button to create a new PPTP User:
 +
 
 +
[[File:Networking_rutos_vpn_pptp_server_user_list_add_button.png|border|class=tlt-border]]
 +
 
 +
[[File:Networking_rutos_vpn_pptp_server_user_list.png|border|class=tlt-border]]
 +
 
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
      <td>Username</td>
 +
       <td>string; default: <b>none</b></td>
 
       <td>Username used for authentication to this PPTP server.</td>
 
       <td>Username used for authentication to this PPTP server.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Password</td>
 
       <td>Password</td>
       <td>string; default: '''none'''</td>
+
       <td>string; default: <b>none</b></td>
 
       <td>Password used for authentication to this PPTP server.</td>
 
       <td>Password used for authentication to this PPTP server.</td>
 
     </tr>
 
     </tr>
Line 1,118: Line 1,154:  
</table>
 
</table>
    +
<b>Note:</b> there can only one PPTP Server configuration on the device.
 
{{#ifeq:{{{series}}}|RUTX|      <!--      ONLY FOR RUTX        -->
 
{{#ifeq:{{{series}}}|RUTX|      <!--      ONLY FOR RUTX        -->
 
==SSTP==
 
==SSTP==
Line 1,132: Line 1,169:  
Refer to the figure and table below for information on the SSTP instance's configuration fields:
 
Refer to the figure and table below for information on the SSTP instance's configuration fields:
   −
[[File:Networking_rutx_vpn_sstp_configuration_v1.png|border|class=tlt-border]]
+
[[File:Networking_rutos_manual_vpn_sstp_sstp_instance.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,189: Line 1,226:  
Refer to the figure and table below for information on the fields contained in the Stunnel Globals section.
 
Refer to the figure and table below for information on the fields contained in the Stunnel Globals section.
   −
[[File:Networking_rutx_vpn_stunnel_globals_v1.png|border|class=tlt-border]]
+
[[File:Networking_rutos_manual_vpn_stunnel_globals.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,237: Line 1,274:  
Refer to the figure and table below for information on the Stunnel instance's configuration fields:
 
Refer to the figure and table below for information on the Stunnel instance's configuration fields:
   −
[[File:Networking_rutx_vpn_stunnel_instance_v1.png|border|class=tlt-border]]
+
[[File:Networking_rutos_manual_vpn_stunnel_configuration.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,335: Line 1,372:  
To begin configuration, click the button that looks like a pencil located next to the instance. Refer to the figures and tables below for information on the DMVPN instance configuration:
 
To begin configuration, click the button that looks like a pencil located next to the instance. Refer to the figures and tables below for information on the DMVPN instance configuration:
   −
[[File:Networking_rutx_vpn_dmvpn_dmvpn_parameters_configuration_v1.png]]
+
[[File:Networking_rutos_manual_vpn_dmvpn_dmvpn_parameters_configuration.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,366: Line 1,403:  
<br>
 
<br>
 
----
 
----
[[File:Networking_rutx_vpn_dmvpn_gre_parameters_configuration_v1.png]]
+
[[File:Networking_rutos_manual_vpn_dmvpn_gre_parameters_configuration.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 1,504: Line 1,541:  
To begin configuration, click the button that looks like a pencil next to the client instance. Refer to the figure and table below for information on the L2TP client's configuration fields:
 
To begin configuration, click the button that looks like a pencil next to the client instance. Refer to the figure and table below for information on the L2TP client's configuration fields:
   −
[[File:Networking_rutx_vpn_l2tp_client_configuration_v2.png|border|class=tlt-border]]
+
[[File:Networking_rutos_manual_vpn_l2tp_client.png|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Retrieved from "https://wiki.teltonika-networks.com/view/Special:MobileDiff/76015"

Navigation menu