Table 5: Openvpn® Client - Grandstream Networks GWN7000 Configuration Manual
Multi-wan gigabit vpn router
Hide thumbs
Also See for GWN7000:
- User manual (155 pages) ,
- Management & provisioning (23 pages) ,
- Quick start manual (17 pages)
Table of Contents
Advertisement
Field
Enable
VPN Name
Protocol
Interface
Local Port
Remote OpenVPN® Server
Remote OpenVPN® Server
Port
Auth Mode
Encryption Algorithm
Digest Algorithm
Table 5: OpenVPN® Client
Description
Click on the checkbox to enable the OpenVPN® client feature.
Enter a name for the OpenVPN® client.
Choose the Transport protocol from the dropdown list, either TCP or
UDP. The default protocol is UDP.
Select the interface used to connect the GWN7000 to the uplink,
either WAN1, WAN2 or All.
Configure the listening port for OpenVPN® server.
The default value is 1194.
Configure the remote OpenVPN® server IP address.
Configure the remote OpenVPN® server port.
Choose the server mode the OpenVPN® server will operate with, 4
modes are available:
•
PSK: used to establish a point-to-point OpenVPN®
configuration. A VPN tunnel will be created with a server
endpoint of a specified IP and a client endpoint of specified
IP. Encrypted communication between client and server will
occur over UDP port 1194, the default OpenVPN® port.
•
SSL: Authentication is made using certificates only (no
user/pass authentication). Each user has a unique client
configuration that includes their personal certificate and key.
This is useful if clients should not be prompted to enter a
username and password, but it is less secure as it relies only
on something the user has (TLS key and certificate).
•
User Auth: Authentication is made using only CA, user and
password, no certificates. Useful if the clients should not
have individual certificates.
Less secure as it relies on a shared TLS key plus only
something the user knows (Username/password).
•
SSL + User Auth: Requires both certificate and username /
password. Each user has a unique client configuration that
includes their personal certificate and key.
Most secure, as there are multiple factors of authentication
(TLS Key and Certificate that the user has, and the
username/password they know).
Choose the encryption algorithm from the dropdown list to encrypt
data so that the receiver can decrypt it using the same algorithm.
Choose digest algorithm from the dropdown list, which will uniquely
identify the data to provide data integrity and ensure that the receiver
has an unmodified data from the one sent by the original host.
GWN7000 VPN Guide
P a g e
|
18
Advertisement
Table of Contents
