NetComm Wireless NTC-6908 Technical Support Manual

Openvpn
Hide thumbs Also See for NTC-6908:

Advertisement

Quick Links

OpenVPN
Technical Support Guide

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the NTC-6908 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Summary of Contents for NetComm Wireless NTC-6908

  • Page 1 OpenVPN Technical Support Guide...
  • Page 2 Copyright© 2015 NetComm Wireless Limited. All rights reserved. The information contained herein is proprietary to NetComm Wireless. No part of this document may be translated, transcribed, reproduced, in any form, or by any means without prior written consent of NetComm Wireless.
  • Page 3: Table Of Contents

    Table of Contents Applicable devices ..................................4 Introduction ....................................4 OpenVPN Server Mode ................................. 5 Configuring an OpenVPN Server ................................6 Verifying the OpenVPN Connection Status ............................. 11 OpenVPN Client Mode ................................. 12 Certificate Files ...................................... 12 Configuring an OpenVPN Client ................................13 Verifying the OpenVPN Connection Status .............................
  • Page 4: Applicable Devices

    OpenVPN connection is established. A NetComm Wireless M2M router acting as a Server must be connected to an APN that provides a publicly routable IP address.
  • Page 5: Openvpn Server Mode

    OpenVPN Server Mode In OpenVPN Server Mode, a NetComm Wireless M2M Series Router acts as a host allowing M2M Routers in client mode or Windows/Linux software clients to establish a virtual private network connection. In order to establish a secure communications channel, a cryptographic key is exchanged between the server and the client using the Diffie-Hellman method of key exchange.
  • Page 6: Configuring An Openvpn Server

    Configuring an OpenVPN Server Log in to your NetComm Wireless M2M router using the “root” account. Refer to your device’s User Guide for further details performing this. Click on Networking, VPN, then OpenVPN. The OpenVPN List is displayed. Figure 2 - OpenVPN List Next to OpenVPN server list, click the +Add button.
  • Page 7 Enter the details in the fields provided to create a certificate for this router then click the Generate button at the bottom of the screen. The router displays a warning that the keys will take a few minutes to generate. Click the OK button. When it is complete, a certificate serial number and expiry date appear above the certificate fields.
  • Page 8 Figure 4 - OpenVPN Server configuration page OpenVPN Technical Support Guide www.netcommwireless.com v1.0...
  • Page 9 When it is done, you can click the Download P12 or Download TGZ buttons to save the certificate file. You may select the format required by the remote router. NetComm Wireless routers support both formats. If for some reason the integrity of your network has been compromised, you can return to this screen and use the Certificate drop down list to select the certificate and then press the Revoke button to disable it.
  • Page 10 OpenVPN Server. Click the Download CA certificate or Download CA TGZ button to save the certificate. Choose the format supported by your client router. NetComm Wireless routers support both formats. Note: If you wish to have more than one client connect to this OpenVPN Server, you must use Certificate Authentication mode as Username/Password only allows for a single client connection.
  • Page 11: Verifying The Openvpn Connection Status

    Verifying the OpenVPN Connection Status Open a command prompt and ping a remote client IP address. See the screenshot below for an example. Figure 7 - OpenVPN Server connection verification OpenVPN Technical Support Guide www.netcommwireless.com v1.0...
  • Page 12: Openvpn Client Mode

    In situations where you are using another third-party OpenVPN Server to generate certificates, the NetComm Wireless M2M Router will expect a tar archive compressed using GZip. There are three files that the OpenVPN client in a NetComm Wireless router will expect to see within a .tgz file:...
  • Page 13: Configuring An Openvpn Client

    Configuring an OpenVPN Client Login to your NetComm Wireless M2M Series Router using the “root” account. Click on Networking, VPN, then OpenVPN. The OpenVPN List is displayed. Figure 9 - OpenVPN List Next to OpenVPN client list, click the +Add button. The configuration window is displayed.
  • Page 14 Figure 9 - OpenVPN Client - Configuration page OpenVPN Technical Support Guide www.netcommwireless.com v1.0...
  • Page 15 Set OpenVPN profile to Enable. Type a name for the OpenVPN Client profile you are creating. In the Server IP address field, type the WAN IP address of the OpenVPN Server. From the Type drop down list, select TUN or TAP. TAP is used with Ethernet bridging. In this example, we have selected TUN.
  • Page 16: Verifying The Openvpn Connection Status

    Username / Password Authentication Enter the username and password to authenticate with the OpenVPN Server. Figure 11 - OpenVPN Client - Username/Password section Use the Choose a file/Browse button to locate the CA certificate file you saved from the OpenVPN Server and then press the Upload button to send it to the router.
  • Page 17: Openvpn Peer-To-Peer Mode

    OpenVPN Peer-To-Peer Mode OpenVPN Peer-To-Peer Mode is the quickest and easiest way to establish a secure connection between two points. In Peer-To- Peer Mode one node acts as a master and accepts a single connection from a slave. In OpenVPN Peer-To-Peer mode, both the master and the slave generate a secret key which is then passed on to the other for authentication.
  • Page 18: Configuring An Openvpn Peer-To-Peer Connection

    Configuring an OpenVPN Peer-To-Peer Connection Perform the following steps on two NetComm Wireless M2M Series Routers: Login to your NetComm Wireless M2M Series Routers using the “root” account. Click on Networking, VPN, then OpenVPN. The OpenVPN List is displayed. Figure 14 - OpenVPN List Next to OpenVPN P2P list, click the +Add button.
  • Page 19: Openvpn Peer-To-Peer Example

    Set OpenVPN profile to Enable. In the Profile name field, type a name for the OpenVPN Peer-To-Peer profile you are creating. On the router designated as the master, leave the Server IP address field empty. On the router designated as the slave, enter the WAN IP Address of the master.
  • Page 20 OpenVPN Peer-To-Peer Slave Figure 16 - OpenVPN Peer-To-Peer Slave Example OpenVPN Technical Support Guide www.netcommwireless.com v1.0...
  • Page 21: Verifying The Openvpn Peer-To-Peer Connection Status

    Verifying the OpenVPN Peer-To-Peer Connection Status Open a command prompt on either the master or the slave and ping the OpenVPN Gateway address assigned to the remote router. See the screenshots below for an example. OpenVPN Peer-To-Peer Master Figure 17 - OpenVPN Peer-To-Peer Master connection verification OpenVPN Technical Support Guide www.netcommwireless.com v1.0...
  • Page 22 OpenVPN Peer-To-Peer Slave Figure 18 - OpenVPN Peer-To-Peer Slave connection verification OpenVPN Technical Support Guide www.netcommwireless.com v1.0...

Table of Contents