Rev 4 May.17
39
7
7: How to Configure a VPN
The oMG can be configured to provide access to one or more Virtual Private
Networks (VPNs). A VPN allows LAN devices connected the oMG to access an
enterprise network and vice versa.
The oMG supports the following VPNs and VPN related technologies:
•
IPSec VPNs: LAN to LAN (most common) and Host to LAN. For documentation
on configuring IPSec VPNs, see
•
Certificates and pre-shared keys.
VPN configuration on the oMG consists of creating a VPN profile with settings that
match those of a VPN server. Before configuring a VPN on the oMG it's important to
first gather some or all of the following information:
oMG
•
LAN IP Subnetwork
•
LAN Mask
•
LAN IP Address
•
Security components such as pre-shared key, certificates etc.
Note: Using pre-shared keys (PSK) for authentication on some VPN servers will require the
oMG to have a static IP on the WAN interface used for VPN.
VPN Server
•
Server IP Address
•
Destination Network IP Address
•
Destination Network Mask
•
Security components such as pre-shared key, server certificates etc.
To configure a VPN Profile:
1.
Ensure one or more WAN links have been properly configured as described in
Section 5.1 - Basic WAN Link Configuration.
2.
Ensure one or more LAN segments have been configured as described in 6.2 -
Configuring LAN Segments.
3.
Navigate to WAN > VPNs to display the available VPNs and click Add New IPsec
VPN to access the VPN Configuration page.
Figure 7-1: VPN Listing Screen