Table of Contents
Advertisement
Clicking on "Save" temporarily saves the current entries/changes.
Temporary stored settings/changes are saved until a reboot of the router.
Only after you confirm via "Apply Changes", will the changes be applied (activated) and stored permanently.
27.3 OpenVPN
OpenVPN Basics
• OpenVPN basically works with two tunnel IP addresses. That is, each connection has two IP address-
es, over which the traffic is handled.
• Depending on the authentication method OpenVPN either works in point-to-point procedure (in the
case of static key or no authentication), or server/client mode (in the case of X.509 certificates).
• OpenVPN can have three different authentication methods:
° none: No certificate or key is necessary. This method is mainly used to test the connection. The
tunnel data will
° static key: A 1024 bit key that each partner needs is generated for the connection. Similar to the
password.
° X.509 certificates: For certificates, a distinction is made between the following variants:
a) Each participant needs the same RootCA and an own certificate signed by RootCA.
b) As a) but with additional user and password prompt.
c) As b) but without own certificate. This means that the participants need only a RootCA and user/
password.
• OpenVPN can use an http proxy server as an outgoing connection.
- Important for the integration into existing company networks with internet access -
• The setting of the transmission protocol (UDP or TCP) is freely adjustable with OpenVPN. As well as
the port numbers to be used.
But the changes are not yet enabled.
Clicking on "Close" discards the current input/changes.
NOT
be encrypted.
NO T I CE
VPN | Page 201 of 324
Advertisement
Table of Contents
