Black Box LES1216A-R2 Manuale Utente
If the VPN gateway is serving as a VPN gateway to a local subnet (e.g. the console server has a
Management LAN configured) enter the private subnet details in Left Subnet. Use the CIDR
notation (where the IP address number is followed by a slash and the number of ‘one’ bits in the
binary notation of the netmask). For example 192.168.0.0/24 indicates an IP address where the
first 24 bits are used as the network address. This is the same as 255.255.255.0. If the VPN
access is only to the console server itself and to its attached serial console devices then leave
Left Subnet blank
notation (where the IP address number is followed by a slash and the number of ‘one’ bits in the
binary notation of the netmask). For example 192.168.0.0/24 indicates an IP address where the
first 24 bits are used as the network address. This is the same as 255.255.255.0. If the VPN
access is only to the console server itself and to its attached serial console devices then leave
Left Subnet blank
If there is a VPN gateway at the remote end, enter the private subnet details in Right Subnet.
Again use the CIDR notation and leave blank if there is only a remote host
Select Initiate Tunnel if the tunnel connection is to be initiated from the Left console server end.
This can only be initiated from the VPN gateway (Left) if the remote end was configured with a
static (or dyndns) IP address
static (or dyndns) IP address
Click Apply to save changes
Note
It is essential the configuration details set up on the advanced console server (referred to as the
Left or Local host) exactly matches the set up entered when configuring the Remote (Right)
host/gateway or software client.
Left or Local host) exactly matches the set up entered when configuring the Remote (Right)
host/gateway or software client.
4.10 OpenVPN
The LES1508A, LES1408A, LES1416A, LES1432A, LES1448A, LES1308A, LES1316A, LES1332A, LES1348A,
LES1208A-R2, LES1216A-R2, LES1232 and LES1248A-R2 console servers include OpenVPN which is based
on TSL (Transport Layer
Security) and SSL (Secure Socket Layer). With OpenVPN, it is easy to build
cross-platform, point-to-point VPNs using x509 PKI (Public Key Infrastructure) or custom configuration
files.
files.
OpenVPN allows secure tunneling of data through a single TCP/UDP port over an unsecured network,
thus providing secure access to multiple sites and secure remote administration to a console server over
the Internet.
thus providing secure access to multiple sites and secure remote administration to a console server over
the Internet.
OpenVPN also allows the use of Dynamic IP addresses by both the server and client thus providing client
mobility. For example, an OpenVPN tunnel may be established between a roaming windows client and a
console server within a data centre.
mobility. For example, an OpenVPN tunnel may be established between a roaming windows client and a
console server within a data centre.
Configuration of OpenVPN can be complex so a simple GUI interface is provided for basic set up as
described below. However for more detailed information on configuring OpenVPN Access server or client
refer to the HOW TO and FAQs at http://www.openvpn.net
described below. However for more detailed information on configuring OpenVPN Access server or client
refer to the HOW TO and FAQs at http://www.openvpn.net
4.10.1 Enable the OpenVPN
Select OpenVPN on the Serial & Networks menu
Click Add and complete the Add OpenVPN Tunnel screen
_____________________________________________________________________
724-746-5500 | blackbox.com
Page 71