82
W&T
WireGuard VPN Box-to-Box
9�1 Overview WireGuard VPN Box-to-Box
In the Box-to-Box operating mode, a WireGuard tunnel is es-
tablished between two microwalls, through which the island
networks communicate in an encrypted and authenticated
manner.
In Box-to-Box-VPN, one microwall operates as a VPN server
to which other microwalls configured as VPN clients connect.
9�1�1 Configuration example VPN Box-to-Box
Island 1
192.168.10.0/24
Intranet
10.20.0.0/16
Microwall
VPN server
Machine
PC
192.168.10.100
10.20.0.10
WireGuard VPN tunnel
VPN server:
10.3.3.1
VPN client:
10.3.3.5
Microwall
VPN client
Island 2
192.168.20.0/24
10.20.0.20
192.168.20.100
192.168.20.1
192.168.10.1
Requirements
The microwalls are preconfigured with the addresses shown
in the sketch and can be reached via browser from the intra-
net. The local microwall is set as the gateway in the network
participants of the island networks.
i
In this example, the configuration file for the VPN client is
created on the VPN server microwall. This file contains the
client‘s private key and any preshared key used and must be
kept confidential. For critical applications, it is recommended
to perform the client configuration manually via the web in-
terface. In this case, the private key cannot be read.
i
If you use IP ranges other than those used here, note that
all networks must have different Net IDs.
Summary of Contents for 55211
Page 6: ...W T ...
Page 7: ...7 W T Subject to error and alteration 1 Legal information and safety ...
Page 12: ...12 W T ...
Page 56: ...56 W T Operation modes and rule configuration ...
Page 80: ...80 W T WireGuard VPN client ...
Page 84: ...84 W T WireGuard VPN Box to Box ...
Page 111: ...111 W T Subject to error and alteration Appendix Technical data and form factor ...