MoRoS LAN PRO 2.0
Functions
41
Authentication type
Usage
Characteristics
None
For testing purposes and
to connect networks
without encryption.
No encrypted connection. It is not
possible to log in several clients at
the server at the same time.
Static key
For encrypted connections
of one client and one ser-
ver each in small applica-
tions
Encrypted connection. It is not
possible to log in several clients at
the server at the same time
User name/password
and common CA cer-
tificate (can only be
configured at the
OpenVPN client)
For encrypted connections
from one or more clients
to an OpenVPN server.
Flexible application for several cli-
ents.
Certificate-based;
each participant has
an individual certifi-
cate and key.
For encrypted connections
from one or more clients
to an OpenVPN server.
Solution for maximum security,
but the configuration is more
complicated.
Table 12: Authentication methods for OpenVPN
For detailed information and troubleshooting, we also recommend the OpenVPN web
site:
http://openvpn.net/howto.html
12.3.2
OpenVPN Server Basic Settings
You can use the MoRoS LAN PRO 2.0 as VPN server, if you want to send confidential data
via an unsecured network, for example. This section describes the basic settings for the
VPN Server. The basic settings of the MoRoS LAN PRO 2.0 are reasonable factory defaults,
which you may change in certain circumstances. The VPN basic settings are used to de-
fine which port of the MoRoS LAN PRO 2.0 is used to create the VPN tunnel and if the
VPN transmission is performed with the UDP or the TCP protocol. You can also define if
LZO compression is used, which encryption algorithm is used during the transmission,
how large the tunnel packets are supposed to be, and in which intervals the VPN server
will send VPN pings. In addition, you will have the option to display the OpenVPN status,
the current configuration file, to create a configuration for an OpenVPN remote terminal,
and to display a log of the last connection. For example, the created configuration can be
used to set up an OpenVPN packet on a client PC. The OpenVPN packet for Windows cli-
ents can be downloaded from the INSYS MICROELECTRONICS web site:
www.insys-tec.de/en/en/driver/
This program is used as remote terminal, if you want to establish an OpenVPN connec-
tion to a Windows PC.
Configuration with the web interface
In order to use
the OpenVPN server for a connection
, check in the menu "LAN
(ext)" on the page "OpenVPN server" the checkbox "Activate OpenVPN server".
In order to
define the local port at the MoRoS LAN PRO 2.0 as well as the port
at the remote terminal
, enter a value for the required port into the entry fields
"Tunnelling over port (local / remote)" (default setting 1194).