Szablon: Web openvpn: Różnice pomiędzy wersjami
Z Elproma Wiki Knowledge Base
| (Nie pokazano 7 pośrednich wersji utworzonych przez tego samego użytkownika) | |||
| Linia 1: | Linia 1: | ||
The <b>OpenVPN</b> page of {{{model}}} | The <b>OpenVPN</b> page of {{{model}}} {{{type}}} is used to configure the OpenVPN tunnel. | ||
==OpenVPN== | ==OpenVPN== | ||
| Linia 35: | Linia 35: | ||
To enable the instance check the Enabled box and to start/stop specific instance use Start/Stop button. You can also edit or delete each instance. | To enable the instance check the Enabled box and to start/stop specific instance use Start/Stop button. You can also edit or delete each instance. | ||
[[File:web_openvpn.png|800px| | [[File:web_openvpn.png|800px|frameless|class=tlt-border]] | ||
===OpenVPN - Add from template=== | ===OpenVPN - Add from template=== | ||
| Linia 56: | Linia 56: | ||
|} | |} | ||
[[File:web_openvpnaddt.png|800px| | [[File:web_openvpnaddt.png|800px|frameless|class=tlt-border]] | ||
===OpenVPN - Add from OVPN configuration file=== | ===OpenVPN - Add from OVPN configuration file=== | ||
| Linia 62: | Linia 62: | ||
To add new OpenVPN instance from OVPN file provide instance name, upload the .ovpn file and use Upload button. | To add new OpenVPN instance from OVPN file provide instance name, upload the .ovpn file and use Upload button. | ||
[[File:web_openvpnaddo.png|800px| | [[File:web_openvpnaddo.png|800px|frameless|class=tlt-border]] | ||
===OpenVPN - Edit: basic=== | ===OpenVPN - Edit: basic=== | ||
| Linia 88: | Linia 88: | ||
| dev_type | | dev_type | ||
| tun or tap, default: tun | | tun or tap, default: tun | ||
| Type of used device | | Type of used device: tun (tunnel) or tap (bridged) | ||
|- | |- | ||
| ifconfig | | ifconfig | ||
| Linia 108: | Linia 108: | ||
| comp_lzo | | comp_lzo | ||
| yes, no or adaptive, default: yes | | yes, no or adaptive, default: yes | ||
| Use fast LZO compression | | Use fast LZO compression | ||
|- | |- | ||
| keepalive | | keepalive | ||
| Linia 126: | Linia 126: | ||
| Remote host name or IP address. To remove the host use red "x" button and to add new host provide the address and use green "+" button | | Remote host name or IP address. To remove the host use red "x" button and to add new host provide the address and use green "+" button | ||
|- | |- | ||
| | | secret | ||
| | | file | ||
| | | Enable Static Key encryption mode (non-TLS) | ||
|- | |||
| key_direction | |||
| 0 or 1, default: 0 | |||
| The key direction for 'tls-auth' and 'secret' options | |||
|- | |- | ||
| | | pkcs12 | ||
| | | file | ||
| | | PKCS#12 file containing keys. Use the button to select, upload or delete keys. | ||
|- | |- | ||
| ca | | ca | ||
| | | ca.crt file | ||
| Certificate authority | | Certificate authority. Use the button to select, upload or delete certificate. | ||
|- | |||
| dh | |||
| *.pem file | |||
| Diffie-Hellman parameters. Use the button to select, upload or delete file. | |||
|- | |- | ||
| cert | | cert | ||
| | | *.crt file | ||
| Local certificate | | Local certificate. Use the button to select, upload or delete certificate. | ||
|- | |- | ||
| key | | key | ||
| | | *.key file | ||
| Local private key | | Local private key. Use the button to select, upload or delete key. | ||
|- | |- | ||
| proto | | proto | ||
| | | udp, tcp-client, tcp-server, udp6, tcp6-client or tcp6-server. Default: udp | ||
| Use protocol | | Use protocol | ||
|} | |} | ||
nice, port, dev_type, ifconfig, server, server_bridge, keepalive, client_to_client, secret, key_direction, pkcs12 and proto are optional parameters. If you need to add them, choose the parameter on the bottom of the page and use Add button. | nice, port, dev_type, ifconfig, server, server_bridge, keepalive, client_to_client, secret, key_direction, pkcs12 and proto are optional parameters. If you need to add them, choose the parameter on the bottom of the page and use Add button. | ||
[[File:web_openvpneditb.png|800px|frameless|class=tlt-border]] | |||
===OpenVPN - Edit: advanced=== | ===OpenVPN - Edit: advanced=== | ||
There are two configurations modes: basic and advanced. The tables below shows how to configure the OpenVPN instance in Advancedmode. | |||
<b>Service</b> | |||
{| class="wikitable" | {| class="wikitable" | ||
| Linia 163: | Linia 175: | ||
! Description | ! Description | ||
|- | |- | ||
| Name | | verb | ||
| | | 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10 or 11, default: 3 | ||
| | | Set output verbosity | ||
|- | |||
| mlock | |||
| On/Off, default: Off | |||
| Disable Paging | |||
|- | |||
| disable_occ | |||
| On/Off, default: Off | |||
| Disable options consistency check | |||
|- | |||
| nice | |||
| integer, default: 0 | |||
| Change process priority | |||
|} | |||
<b>Networking</b> | |||
{| class="wikitable" | |||
|- | |||
! Name | |||
! Value | |||
! Description | |||
|- | |||
| | |||
| | |||
| | |||
|} | |||
<b>VPN</b> | |||
{| class="wikitable" | |||
|- | |||
! Name | |||
! Value | |||
! Description | |||
|- | |||
| | |||
| | |||
| | |||
|} | |||
<b>Cryptography</b> | |||
{| class="wikitable" | |||
|- | |||
! Name | |||
! Value | |||
! Description | |||
|- | |||
| | |||
| | |||
| | |||
|} | |} | ||
[[Category:{{{model}}} User Manual]] | [[Category:{{{model}}} User Manual]] | ||
Aktualna wersja na dzień 13:32, 26 kwi 2024
The OpenVPN page of {{{model}}} {{{type}}} is used to configure the OpenVPN tunnel.
OpenVPN
OpenVPN is a virtual private network (VPN) system that implements techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It implements both client and server applications.
OpenVPN Instances
In this section you can find a list of configured OpenVPN instances and their current state.
| Name | Description |
|---|---|
| Name | |
| Enabled | Check box for enabling the instance |
| Started | Start status |
| Start/Stop | Start or stop the instance |
| Port | Instance port number |
| Protocol | Type of protocol |
To enable the instance check the Enabled box and to start/stop specific instance use Start/Stop button. You can also edit or delete each instance.
OpenVPN - Add from template
To add new OpenVPN instance from template provide instance name, choose the template and use Add button.
| Name | Value | Description |
|---|---|---|
| Name | string | Instance name |
| Template | Client configuration for an ethernet bridge VPN, Client configuration for a routed multi-client VPN, Simple client configuration for a routed point-to-point VPN, Server configuration for an ethernet bridge VPN, Server configuration for a routed multi-client VPN or Simple server configuration for a routed point-to-point VPN, default: none | Instance template |
OpenVPN - Add from OVPN configuration file
To add new OpenVPN instance from OVPN file provide instance name, upload the .ovpn file and use Upload button.
OpenVPN - Edit: basic
There are two configurations modes: basic and advanced. The table below shows how to configure the OpenVPN instance in Basic mode.
| Name | Value | Description |
|---|---|---|
| verb | -- remove --, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10 or 11, default: 3 | Set output verbosity. Level 3 is recommended if you want a good summary of what's happening without being swamped by output. 0 means No output except fatal errors. |
| nice | default: 0 | Change process priority |
| port | default: 1194 | TCP/UDP port for both local and remote |
| dev_type | tun or tap, default: tun | Type of used device: tun (tunnel) or tap (bridged) |
| ifconfig | default: 10.200.200.3 10.200.200.1 | Set tun/tap adapter parameters |
| server | default: 10.200.200.0 255.255.255.0 | Configure server mode |
| server_bridge | default: 192.168.1.1 255.255.255.0 192.168.1.128 192.168.1.254 | Configure server bridge |
| nobind | On/Off, default: On | Do not bind to local address and port |
| comp_lzo | yes, no or adaptive, default: yes | Use fast LZO compression |
| keepalive | default: 10 60 | Helper directive to simplify the expression of --ping and --ping-restart in server mode configurations |
| client | On/Off, default: On | Configure client mode |
| client_to_client | On/Off, default: Off | Allow client-to-client traffic |
| remote | default: vpnserver.example.org | Remote host name or IP address. To remove the host use red "x" button and to add new host provide the address and use green "+" button |
| secret | file | Enable Static Key encryption mode (non-TLS) |
| key_direction | 0 or 1, default: 0 | The key direction for 'tls-auth' and 'secret' options |
| pkcs12 | file | PKCS#12 file containing keys. Use the button to select, upload or delete keys. |
| ca | ca.crt file | Certificate authority. Use the button to select, upload or delete certificate. |
| dh | *.pem file | Diffie-Hellman parameters. Use the button to select, upload or delete file. |
| cert | *.crt file | Local certificate. Use the button to select, upload or delete certificate. |
| key | *.key file | Local private key. Use the button to select, upload or delete key. |
| proto | udp, tcp-client, tcp-server, udp6, tcp6-client or tcp6-server. Default: udp | Use protocol |
nice, port, dev_type, ifconfig, server, server_bridge, keepalive, client_to_client, secret, key_direction, pkcs12 and proto are optional parameters. If you need to add them, choose the parameter on the bottom of the page and use Add button.
OpenVPN - Edit: advanced
There are two configurations modes: basic and advanced. The tables below shows how to configure the OpenVPN instance in Advancedmode.
Service
| Name | Value | Description |
|---|---|---|
| verb | 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10 or 11, default: 3 | Set output verbosity |
| mlock | On/Off, default: Off | Disable Paging |
| disable_occ | On/Off, default: Off | Disable options consistency check |
| nice | integer, default: 0 | Change process priority |
Networking
| Name | Value | Description |
|---|---|---|
VPN
| Name | Value | Description |
|---|---|---|
Cryptography
| Name | Value | Description |
|---|---|---|
[[Category:{{{model}}} User Manual]]