1. Manuals
  2. Brands
  3. Tavve Manuals
  4. Firewall
  5. zoneranger
  6. User manual

Tavve zoneranger User Manual page 380

Hide thumbs
Table of Contents

Advertisement

The rgviClientWithPassword.key file is password-protected, so when OpenVPN is started,
you
will
rgviClientWithPassword.p12
Note that the Ranger Gateway should be running and the RGVI service should be enabled and
configured to accept connections from this client before the RGVI client is started. You can verify
that the RGVI client has successfully started and connected to the RGVI service on the Ranger
Gateway by verifying that the IP address associated with RGVI client is listed in the output of the
following command (executed on the Ranger Gateway server):
/opt/tavve/gateway/bin/rgvi status
Starting the OpenVPN Client Automatically
If you prefer to have the OpenVPN client start automatically when the operating system is restarted,
copy the following files from the rgvi directory on the Ranger Gateway install CD to the
/etc/csw/openvpn
rgviClient.conf
rgviClient.crt
rgviClientNoPassword.key
tavveCA.crt
After the files have been copied, you will need to edit the rgviClient.conf file to specify the
list of Ranger Gateway candidates, as described above. In addition, you will need to modify the
rgviClient.conf
used, because there is no way to provide a key file password when the client is started automatically.
Two changes are required:
1. Comment out the " key rgviClientWithPassword.key " line.
2. Uncomment the " # key rgviClientNoPassword.key " line.
Note that the " # " character denotes a comment line. The resulting two lines should be as follows:
# key rgviClientWithPassword.key
key rgviClientNoPassword.key
The recommended steps for configuring the OpenVPN client to be started automatically when the
operating system is restarted are as follows:
1. Create a copy of the /etc/init.d/openvpn script (initially created by the OpenVPN
installer), in the same directory, by executing the following command:
2. Edit the newly-created /etc/init.d/rgviClient file to indicate that the sample
RGVI configuration should be used. To do this, replace the line that reads:
with:
3. Create
/etc/init.d/rgviClient
ZoneRanger 5.5 User's Guide
be
prompted
to
enter
directory:
file to indicate that the rgviClientNoPassword.key key file should be
cp /etc/init.d/openvpn /etc/init.d/rgviClient
OPENVPN_CONF=/etc/csw/openvpn/openvpn.conf
OPENVPN_CONF=/etc/csw/openvpn/rgviClient.conf
a
symbolic
link
the
password.
The
file is rgvi .
in
the
/etc/rc3.d
file, by executing the following command:
password
for
the
default
directory
to
the
380
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Table of Contents