Siemens SCALANCE S615 Getting Started page 28

OpenVPN tunnel between SCALANCE S615 and SINEMA RC Server
2.1 Procedure in principle
Requirement
SINEMA RC Server
● The SINEMA RC server is connected to the WAN. You will find the configuration steps in
the Getting Started "SINEMA Remote Connect".
SCALANCE S615
● The S615 is connected to the WAN , refer to "Connecting SCALANCE S615 to the WAN
(Page 9)".
The steps in configuration are the same for all devices, the only difference being the
settings, see table "Settings used (Page 25)".
● The S615 can be reached via PC1 or PC2 and you are logged in to the WBM as "admin".
● A valid KEY-PLUG SINEMA Remote Connect is inserted in the SCALANCE S.
Steps in configuration
Configuring access to SINEMA RC server
To allow a VPN connection to the SINEMA RC server, a route must be created on the S615:
1. Configuring a route (Page 29)
For the PC to be able to access the WBM of the SINEMA RC server via S615 as well, the
following steps are necessary on the S615:
1. Activate Basic NAT (Page 30)
2. Allow access (Page 31)
Configure a remote connection on the SINEMA RC server
1. Creating participant groups (Page 32)
2. Create devices (Page 34)
3. Configure communication relations (Page 36)
Configure a remote connection on the S615
● Secure OpenVPN connection with fingerprint (Page 38)
● Secure OpenVPN connection with CA certificate
– Loading a certificate (Page 41)
– Configure an OpenVPN connection to the SINEMA RC server (Page 42)
28
SCALANCE S615 Getting Started
Getting Started, 03/2015, C79000-G8900-C390-01