Yealink W60P Administrator's Manual page 68

Administrator's Guide for W60P DECT IP Phones
DECT IP phones use OpenVPN to achieve VPN feature. To prevent disclosure of private
information, tunnel endpoints must authenticate each other before secure VPN tunnel is
established. After VPN feature is configured properly on the DECT IP phone, the DECT IP phone
acts as a VPN client and uses the certificates to authenticate the VPN server.
To use VPN, the compressed package of VPN-related files should be uploaded to the DECT IP
phone in advance. The file format of the compressed package must be *.tar. The related VPN
files are: certificates (ca.crt and client.crt), key (client.key) and the configuration file (vpn.cnf) of
the VPN client.
The following table lists the unified directories of the OpenVPN certificates and key in the
configuration file (vpn.cnf) for Yealink DECT IP phones:
VPN files
ca.crt
client.crt
client.key
For more information, refer to
Procedure
VPN can be configured using the following methods.
Central Provisioning
(Configuration File)
Web User Interface
Handset User Interface
Details of Configuration Parameters:
static.network.vpn_enable
Description:
Enables or disables OpenVPN feature on the DECT IP phone.
48
Description
CA certificate
Client certificate
Private key of the client
OpenVPN Feature on Yealink IP phones
y000000000077.cfg
Parameters
Unified Directories
/config/openvpn/keys/ca.crt
/config/openvpn/keys/client.crt
/config/openvpn/keys/client.key
.
Configure VPN feature and upload a
TAR file to the DECT IP phone.
Parameters:
static.network.vpn_enable
static.openvpn.url
Configure VPN feature and upload a
TAR file to the DECT IP phone.
Navigate to:
http://<phoneIPAddress>/servlet?p=ne
twork-adv&q=load
Configure VPN feature.
Permitted Values
0 or 1
Default
0