Digi LR54 User Manual page 497
Hide thumbs
Also See for LR54:
- User manual (931 pages) ,
- Hardware reference manual (21 pages) ,
- Quick start manual (2 pages)
Table of Contents
Advertisement
Virtual Private Networks (VPN)
9. If Server managed certificates is not enabled:
a. Select the Authentication type:
n
n
n
b. Paste the contents of the CA certificate (usually in a ca.crt file), the Public key (for
example, server.crt), the Private key (for example, server.key), and the Diffie Hellman
key (usually in dh2048.pem) into their respective fields. The contents will be hidden when
the configuration is saved.
10. (Optional) Click to expand Access control list to restrict access to the OpenVPN server:
To limit access to specified IPv4 addresses and networks:
n
a. Click IPv4 Addresses.
b. For Add Address, click .
c. For Address, enter the IPv4 address or network that can access the device's
d. Click again to list additional IP addresses or networks.
To limit access to specified IPv6 addresses and networks:
n
a. Click IPv6 Addresses.
b. For Add Address, click .
c. For Address, enter the IPv6 address or network that can access the device's
d. Click again to list additional IP addresses or networks.
To limit access to hosts connected through a specified interface on the LR54 device:
n
a. Click Interfaces.
b. For Add Interface, click .
c. For Interface, select the appropriate interface from the dropdown.
d. Click again to allow access through additional interfaces.
To limit access based on firewall zones:
n
a. Click Zones.
b. For Add Zone, click .
LR54 User Guide
Certificate only: Uses only certificates for client authentication. Each client
requires a public and private key.
Username/password only: Uses a username and password for client
authentication. You must create an OpenVPN authentication group and user. See
Configure an OpenVPN Authentication Group and User
Certificate and username/password: Uses both certificates and a username and
password for client authentication. Each client requires a public and private key,
and you must create an OpenVPN authentication group and user. See
OpenVPN Authentication Group and User
service-type. Allowed values are:
A single IP address or host name.
l
A network designation in CIDR notation, for example, 192.168.1.0/24.
l
any: No limit to IPv4 addresses that can access the service-type.
l
service-type. Allowed values are:
A single IP address or host name.
l
A network designation in CIDR notation, for example, 2001:db8::/48.
l
any: No limit to IPv6 addresses that can access the service-type.
l
for instructions.
for instructions.
OpenVPN
Configure an
497
Advertisement
Table of Contents
