Table of Contents
Advertisement
Virtual Private Networks (VPN)
iii. Paste the contents of the public key (for example, server.crt) into the value of the
server_cert parameter:
(config vpn openvpn server name)> server_cert value
(config vpn openvpn server name)>
iv. Paste the contents of the private key (for example, server.key) into the value of the
server_key parameter:
(config vpn openvpn server name)> server_key value
(config vpn openvpn server name)>
v. Paste the contents of the Diffie Hellman key (usually in dh2048.pem) into the value of
the diffie parameter:
(config vpn openvpn server name)> diffie value
(config vpn openvpn server name)>
8. (Optional) Set the access control list to restrict access to the OpenVPN server:
To limit access to specified IPv4 addresses and networks:
n
(config vpn openvpn server name)> add acl address end value
(config vpn openvpn server name)>
Where value can be:
l
l
l
Repeat this step to list additional IP addresses or networks.
To limit access to specified IPv6 addresses and networks:
n
(config vpn openvpn server name)> add acl address6 end value
(config vpn openvpn server name)>
Where value can be:
l
l
l
Repeat this step to list additional IP addresses or networks.
To limit access to hosts connected through a specified interface on the IX30 device:
n
(config vpn openvpn server name)> add acl interface end value
(config vpn openvpn server name)>
Where value is an interface defined on your device.
IX30 User Guide
A single IP address or host name.
A network designation in CIDR notation, for example, 192.168.1.0/24.
any: No limit to IPv4 addresses that can access the service-type.
A single IP address or host name.
A network designation in CIDR notation, for example, 2001:db8::/48.
any: No limit to IPv6 addresses that can access the service-type.
Display a list of available interfaces:
OpenVPN
401
Advertisement
Table of Contents
