1. Manuals
  2. Brands
  3. Seneca Manuals
  4. Server
  5. VPN BOX2
  6. User manual

Seneca VPN BOX2 User Manual

Virtual private network server
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
USER MANUAL
This document is the property of SENECA srl. Unauthorized duplication and reproduction (even partial) is prohibited. The
content of this document refers to the described products and technologies. Despite the continuous effort to achieve
perfection, all the technical data contained in this document can be modified or added for technical and commercial needs;
it is impossible to completely eliminate discrepancies and inconsistencies. However, the content of this documentation is
subject to periodic review. For any question, do not hesitate to contact our structure or write to the e-mail addresses
indicated above.
VPN BOX2 Hardware
VPN BOX2 Virtual Machine SW
VIRTUAL PRIVATE NETWORK SERVER
SENECA s.r.l.
Via Austria, 26 - 35127 - PADOVA - ITALY
Tel. +39.049.8705355 - 8705359 Fax. +39.049.8706287
Website:
www.seneca.it
Technical service:
supporto@seneca.it
Commercial information:
(Other)
(IT),
support@seneca.it
commerciale@seneca.it
Page 1
(Other)
(IT),
sales@seneca.it

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the VPN BOX2 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Seneca VPN BOX2

Summary of Contents for Seneca VPN BOX2

  • Page 1 (Other) This document is the property of SENECA srl. Unauthorized duplication and reproduction (even partial) is prohibited. The content of this document refers to the described products and technologies. Despite the continuous effort to achieve perfection, all the technical data contained in this document can be modified or added for technical and commercial needs;...
  • Page 2 USER MANUAL – VPN-BOX2 Date Revision Note Author Code 02/05/2023 1 First edition MI00601-0 12/05/2023 2 Translation MI00601-1...

  • Page 3: Table Of Contents

    4. INSTALLAZIONE VPN BOX2..................8 4.1. INSTALLAZIONE HARDWARE .......................... 8 4.2. INSTALLAZIONE VM ............................9 5. CONFIGURAZIONE DI RETE ETHERNET DI DEFAULT .......... 10 6. PRIMA CONFIGURAZIONE DEL VPN BOX2 ............11 6.1. LOGIN ................................12 6.2. WELCOME ..............................13 6.1. MODE ................................14 6.1.
  • Page 4 7.11. CONFIG. ADVANCED............................40 7.12. LOGS ................................41 7.13. BACKUP .................................42 8. RESET DI FABBRICA ED AGGIORNAMENTO DEL VPN BOX2 ......43 8.1. RESET DI FABBRICA ............................43 8.1. AGGIORNAMENTO DEL VPN BOX2 ........................44 9. CONFIGURAZIONE DEL ROUTER/FIREWALL ............45 10. PRINCIPIO DI FUNZIONAMENTO VPN NETWORK SINGLE LAN ......47 10.1.

  • Page 5: Seneca Vpn Box2

    1. SENECA VPN BOX2 ATTENTION! IN NO EVENT, SHALL SENECA S.R.L. OR ITS SUPPLIERS BE LIABLE FOR LOSS OF REGISTRATION DATA/INCOME OR FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES RESULTING FROM NEGLIGENCE OR THE IMPROPER OR IRRESPONSIBLE USE OF Z-LINK2-LO, EVEN IF SENECA IS AWARE OF SUCH POSSIBLE DAMAGES.

  • Page 6: Software Open Source

    VPN BOX2 is only compatible with VPN Client Communicator versions > v4.0.0.0. All the software needed to use the VPN BOX2 product can be downloaded from the official product page in the SOFTWARE & APP section. The VPN BOX2 is available in two versions: Hardware and Virtual Machine (vmware) the following are the...

  • Page 7: Specifiche Hardware

    Support host: Intel-VT or AMD-V / Hypervisor: VMware The configurations can be changed after the creation of the server to ensure the application scalability. For further instructions on using the OVF format to start a VPN BOX2 Virtual Machine see the VM Installation chapter.

  • Page 8: Installazione Vpn Box2

    The VPN BOX2 hardware does not require a keyboard, mouse or monitor to operate. However, they may be required in case of technical service by Seneca personnel. • Start the VPN BOX2 by pressing and releasing the ON/OFF button on the front panel of the box once only •...

  • Page 9: Installazione Vm

    USER MANUAL – VPN-BOX2 4.2. VM INSTALLATION In the case of virtual machine installation, the file with the ".ovf" extension must be imported into your virtualization software. All the supplied accessory files must be in the same folder as the OVF file to avoid errors during the import and creation of the virtual machine.

  • Page 10: Configurazione Di Rete Ethernet Di Default

    Intel-VT or AMD-V technologies which must be previously activated in the bios. 5. DEFAULT ETHERNET NETWORK CONFIGURATION Regardless of the Hardware or Virtual type, the VPN BOX2 is supplied by default with its Ethernet port set to DCHP (automatically obtain IP address from the network).

  • Page 11: Prima Configurazione Del Vpn Box2

    6. FIRST TIME CONFIGURATION OF THE VPN BOX2 To configure the VPN BOX2 it is necessary to use a browser of the same type used for Internet browsing. Once you have obtained the current IP of the server via SDD, start the web browser and enter the following URL in the address bar: Errore.

  • Page 12: Login

    At each access, including the first configuration, the server asks the user to identify himself: The default login credentials are as follows: Username: supervisor Password: seneca ATTENTION! For security reasons it is recommended to change the default credentials of the user with maximum "supervisor"...

  • Page 13: Welcome

    Creating a new configuration • Restoring a VPN BOX2 from backup file In the case of restoring the backup file, you can choose whether to import a file from a previous VPN BOX v1 installation or a file from a VPN BOX2...

  • Page 14: Mode

    Click on the "Backup" text, select the backup file you wish to restore and confirm by clicking on "upload": At the end of the file upload, the VPN BOX2 server will restart, wait for the procedure to complete. 6.1. MODE...
  • Page 15 USER MANUAL – VPN-BOX2 In Single LAN mode it is not possible to choose between the number of simultaneous users as all users belonging to that network will have simultaneous access to all the devices of the Single LAN network: To learn more about the differences between the two operating modes Single Lan and Point to Point, see the respective chapters on the operating principles: "vpn network single lan operating principle"...

  • Page 16: Network

    6.1. NETWORK The "network" popup of the first configuration wizard allows you to set the communication parameters of the VPN BOX2. The following window shows the classic network settings of an Ethernet-based device which can be static or dynamic with the help of DHCP:...
  • Page 17 Default: 192.168.90.1 Address of the server for name resolution, it can be an IP belonging to the LAN of the VPN BOX2 or even external. Default: 8.8.8.8 IP address or hostname of the NTP server to be used for time synchronization of the VPN BOX2 server Default: time.inrim.it...

  • Page 18: Security

    USER MANUAL – VPN-BOX2 6.1. SECURITY The "security" popup of the first configuration wizard allows you to set/change the default passwords • of the user with maximum "supervisor" access privileges • of devices for preliminary authentication (to be entered in the configuration menu of the device itself) For comparison, see the user manual of the device used in the "VPN configuration"...

  • Page 19: License

    If the user does not have a license code, he can continue leaving the "Key" field empty, the VPN BOX2 will still be operational with the following limitations:...

  • Page 20: Amministrazione Del Server

    USER MANUAL – VPN-BOX2 7. SERVER ADMINISTRATION In this chapter the functions of each item of the navigation menu of the VPN BOX2 server will be studied in depth. 7.1. HOME The home page will be visible immediately after the user login. It is divided into 3 main sections: the...
  • Page 21 USER MANUAL – VPN-BOX2 The upper part showing the version of the VPN BOX2 application, the license and the related characteristics of the supported devices and users (1) Panel of active services (2) which reflects the server's operation at that precise moment. In the event of a service not working properly, the icon placed alongside would be a red X to indicate an error status.

  • Page 22: Devices

    USER MANUAL – VPN-BOX2 7.2. DEVICES The Device section contains the list of all Seneca devices connected to the VPN BOX2. There is no add device button as it is the device itself which, properly configured, will appear in the list.
  • Page 23 USER MANUAL – VPN-BOX2 Immediately after registration, the device status is "New" and the device itself is waiting to be configured; in this state the device will not perform any operation and will not connect in VPN. During registration, the device provides its identification data: •...

  • Page 24: Users

    7.3. USERS The Users section contains the list of all users authorized to log in to the VPN BOX2 server. The content of the page is divided into two parts: the user list in tabular form (1) and the commands/actions area (2). An edit and delete button will appear for each user line except for the two system accounts "device"...
  • Page 25 Users: allows you to manage users and view the relative menu page Logs: allows you to view the system log page of the VPN BOX2 application Configurations: allows you to manage the configurations of the VPN BOX2 server. See Server...
  • Page 26 USER MANUAL – VPN-BOX2 System: creates a replica of the "supervisor" user by assigning the user being created maximum privileges on the system. Term & Conditions Tick to accept the terms of service of the VPN BOX2 software...
  • Page 27 (2): Each created user will have the possibility to access the VPN BOX2 through the Login via browser but does not yet have the possibility to connect with the VPN to the devices. To do this, it is necessary to create an access group which will put a certain number of users in relation with the devices they can access and above all with the relative access method to be used, SL or P2P.

  • Page 28: Groups

    Example: Suppose we have two users called X and Y and 4 Seneca devices Z, X, Q, K. We want to configure the VPN BOX2 server so that user X can see all the devices while user Y only Q and K.
  • Page 29 USER MANUAL – VPN-BOX2 Single LAN VPN access mode (Mode = Single LAN): Parameter Meaning Name Group name Mode VPN operating mode Users Users who are part of the Group. Expand the drop down menu and select Box Version Version of the communication protocol between device and vpnbox.
  • Page 30 USER MANUAL – VPN-BOX2 VPN Point to Point Access Mode (Mode = Point to Point): Parameter Meaning Name Group name Mode VPN operating mode Users Users who are part of the Group. Expand the drop down menu and select Devices Devices that are part of the Group.

  • Page 31: Networks (Vpn)

    This section allows you to manage the VPN Networks or the connection resources between users and devices. They are of two types too, SL and P2P like groups. In a mixed configuration where the VPN BOX2 is to be used for both SL and P2P connections, other networks will have to be created via this page.
  • Page 32 USER MANUAL – VPN-BOX2 The confirmation of the operation or any error is signalled in the upper right of the notification area: By clicking on a Network in the actions menu, you can perform the following operations: • Setup: opens the popup with the Network settings •...
  • Page 33 USER MANUAL – VPN-BOX2 Parameter Meaning Name Group name Port TCP or UDP port used for all connections of devices and users belonging to this group. Network Indicates the virtual VPN address space that will be assigned to devices and users when connected to this group.

  • Page 34: Config. General

    Server name that will be displayed in the title bar in order to identify the VPN BOX2 more easily Station / URL Full address of the VPN BOX2 server (the one that must be typed into the address bar of the browser) Google Map / Key To use this service, registration with the third-party Google Maps service is required.

  • Page 35: Config. Network

    Dyndns / Username To use this service, registration on the third-party portal DynDns.IT is required. Once the account is active, to connect it to the VPN BOX2 server, it will be necessary to enter the DynDns account credentials in this field.

  • Page 36: Config. Snmp

    Address Email address of the account created with the provider. It will be the sender of all Emails sent by the VPN BOX2 server to the user. Username Username of the account created with the provider.

  • Page 37: Config. Backup (Automatici)

    USER MANUAL – VPN-BOX2 7.9. CONFIG. BACKUP (AUTOMATICI) This feature creates an image of the VPN Box configuration which can be saved as a local file or sent to a customer's Dropbox service for future use. It is recommended to back up the entire configuration often so as not to lose any data: The meaning of each parameter is shown in the following table: Parameter Meaning...
  • Page 38 Dropbox / API Key To use this service, registration with the third-party Dropbox service is required. Once the account is active, to connect it to the VPN BOX2 server, it will be necessary to enter the apikey of the service in this field.

  • Page 39: Config. Certbot

    7.10. CONFIG. CERTBOT The certbot page contains the parameters relating to the automated issue service of SSL/TLS certificates for accessing the VPN BOX2 from the browser via HTTPS: The meaning of each parameter is shown in the following table: Parameter...

  • Page 40: Config. Advanced

    Before proceeding with a possible factory default reset, make sure you have a recent backup of the entire application on an external medium and NOT on the VPN BOX2 disk itself. The lower part (2) contains the configurations that allow maximum flexibility in the configuration of the VPN BOX2 server but are to be used only in cases of extreme necessity.

  • Page 41: Logs

    USER MANUAL – VPN-BOX2 7.12. LOGS The logs section is useful to check the status of the services in case of errors. It is divided by type of Services through which it is possible to browse by selecting the respective tabs (1). is also possible to filter (2) the visualization by searching for a specific text or choosing the events by severity in order to obtain a less dispersive representation of the events in the content section (3).

  • Page 42: Backup

    Run Backup: manually start a backup which at the end will appear in the list with the others • Restore: load an external backup file to restore it on the VPN BOX2 in use. • Restore from V1: load a backup file of the previous VPN BOX server version and restore it with appropriate migration to the VPN BOX2 in use.

  • Page 43: Reset Di Fabbrica Ed Aggiornamento Del Vpn Box2

    USER MANUAL – VPN-BOX2 8. FACTORY RESET AND UPDATE OF THE VPN BOX2 8.1. FACTORY RESET Restoring the factory settings is performed with a dedicated command accessible in the configuration menu section. To perform the factory reset, proceed as follows: •...

  • Page 44: Aggiornamento Del Vpn Box2

    USER MANUAL – VPN-BOX2 8.1. UPDATING YOUR VPN BOX2 The update of the VPN BOX2 application can be started as follows: • In the top bar, select the "Firmware update" icon • Tick "Upload file" (1) • Select the update zip file (2) •...

  • Page 45: Configurazione Del Router/Firewall

    9. ROUTER/FIREWALL CONFIGURATION The network services of the VPN BOX2 are exposed on the local Ethernet interface of the server and to be accessible by remote devices and users they must be published outside the network through rules to be introduced on the perimeter firewall.
  • Page 46 USER MANUAL – VPN-BOX2 how to acquire this IP address. Changing the router ports is mandatory only if the VPN Box is in a LAN (addresses 192.168.x.x, 10.x.x.x and 172.x.x.x), if it is installed on a public network (therefore with a public IP address visible from the Internet) no router configuration will be required.

  • Page 47: Principio Di Funzionamento Vpn Network Single Lan

    Mobile. ATTENTION! This mode configures a virtual LAN network requiring the allocation of different local IPs on all Seneca devices belonging to the network, as the VPN clients are all connected at the same time and always visible to the rest of the network. This requirement is especially necessary if you want the networks downstream...

  • Page 48: Configurazione Della Vpn

    • Creation of Single LAN group which will contain both users and devices • Configuration of the Seneca devices by entering their web pages and entering the credentials to point to the VPN BOX2 • In the Devices menu click on the actions menu of each new device inserted (normally being new they appear in grey) click on "Setup"...

  • Page 49: Principio Di Funzionamento Vpn Point To Point

    USER MANUAL – VPN-BOX2 POINT TO POINT VPN OPERATING PRINCIPLE This scenario is typical when you have many sites with identical systems and networks. Since it is not possible to create a network with multiple identical IP addresses, it is necessary to create multiple networks which must be independent.

  • Page 50: Configurazione Della Vpn

    To do this, it will be necessary to create in the VPN BOX2 a group and user scheme of the type shown in the...

  • Page 51: Connessione Tramite Vpn Client Communicator

    12.1. VPN GUI CONNECTION (SL or P2P) In this mode, access is possible with the same credentials used to connect to the VPN BOX2 server via browser. Once logged in with the application you get a tabular view of the connected Seneca devices and their status.

  • Page 52: Connessione Vpn Service Mode (Solo Sl)

    USER MANUAL – VPN-BOX2 12.1. VPN SERVICE MODE CONNECTION (SL ONLY) There are cases when it is necessary for a PC to be automatically connected to a VPN network when starting up and, to be able to do it autonomously, it is necessary to enable the service mode of the VPN Client Communicator.

  • Page 53: Connessione Diretta Dal Browser

    12.2. DIRECT CONNECTION FROM THE BROWSER To make the user connection faster, there is a direct button on the Devices page of the VPN BOX2 which allows you to automatically launch the VPN Client Communicator application, already logged in and configured to start the connection to the selected device.
  • Page 54 USER MANUAL – VPN-BOX2 • Once connected, the VPN Client Communicator will minimize itself with a notification message • The browser will also show the successful vpn connection via the VPN ON flag...

  • Page 55: Connessione Tramite Client Smartphone (Solo Modo Single Lan)

    USER MANUAL – VPN-BOX2 CONNECTION VIA SMARTPHONE CLIENT (ONLY SINGLE LAN MODE) By exporting the configuration from the Devices > Options menu and clicking on the "Download OpenVPN" button, it is possible to download the VPN client configuration file in the standard OpenVPN format to be used on all the OpenVPN Client connect native APPs.
  • Page 56 VPN BOX2 were saved, select the .ovpn file and press "Select". Now the connection will be imported and ready for use in a few seconds.

  • Page 57: Glossario

    IP address of packets in transit through network devices - such as routers or firewalls. It is used to expose the Services of the VPN BOX2, which will be located in a local network headed by a firewall, to the Internet.

Table of Contents