Client sub-tab

The VPN client configuration settings are generally used for failover scenarios. This is when a main secure connection fails over to a less secure connection type. The VPN tunnel is used to secure traffic. When the Nodegrid device is configured as an VPN client, it is bound to a network interface (optional) and the VPN tunnel is automatically established when the bounded interface starts. Multiple client configurations can be added that support different connection and interface details.

Add Client

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. Click Add (displays dialog). 
   1. Enter Name
   2. On Network Connection drop-down, select one (None, ETH0, ETH1, hotspot)
3. In Remote Server menu, select one:
   • Single Gatewayradio button, enter details:
     • Gateway IP Address
       
     • Gateway Port (default: 1194)
     • Connection Protocol drop-down, select one (UDP, TCP)
   • Multiple Gateway radio button (expands dialog) 
     • Gateways (comma separated).
4. Enter details:
   1. Tunnel MTU (MTU size for tunnel interface) (default: 1500)
   2. Use LZO data compress Algorithm checkbox
   3. Ignore obtained default gateway checkbox
   4. HMAC/Message Digest Alg drop-down, select one
   5. Cipher Alg drop-down, select one
5. On Authentication Method drop-down, select one.
   • TLSselection
     • TLS Authentication Key drop-down, select one
     • TLS Authentication Direction drop-down, select one
     • CA Certificate drop-down, select one
     • Client Certificate drop-down, select one
     • Client Private Key drop-down, select one
   • Static Keyselection:
     • Secret drop-down, select one
     • Local Endpoint (Local IP)
       
     • Remote Endpoint (Remote IP)
   • Passwordselection:
     • Username
       
     • Password
       
     • CA Certificate drop-down, select one.
   • Password plus TLSselection:
     • Username
       
     • Password
       
     • TLS Authentication Key drop-down, select one
     • TLS Authentication Direction drop-down, select one
     • CA Certificate drop-down, select one
     • Client Certificate drop-down, select one
     • Client Private Key drop-down, select one
6. Click Save.

Edit Client

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. On Subnet/Netmask column, click a name.
3. Make changes, as needed.
4. Click Save.

Delete Client

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. Select checkbox to be deleted.
3. Click Delete.

Start Client VPN

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. Select checkbox next to client to be started.
3. Click Start VPN.

Stop Client VPN

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. Select checkbox next to client to be stopped.
3. Click Stop VPN.

Import OVPN

1. Go to Network :: VPN drop-down :: SSL VPN :: Client.
2. Click Import OVPN (displays dialog). 
   1. Enter Name
   2. On Network Connection drop-down, select one (NONE, ETH0, ETH1, hotspot)
3. In OVPN File menu, select one
   • Local Computer radio button (expands dialog), click Choose File. Locate and select the file.
   • Local System radio button (expands dialog). On OVPN filename drop-down, select one.
   • Remote Server radio button (expands dialog), enter details:Enter URL (URL can be the IP address or hostname/FQDN. If using IPv6, use brackets [ ... ]. Supported protocols: FTP, TFTP, SFTP, and SCP.)
     Enter Username and Password
      (optional) Select The path in url to be used as absolute path name checkbox.
4. Click Save.