You can use any WTI device to connect to an OpenVPN server. To do this at the WTI main command prompt enter:
/VPN
2. OpenVPN (Client Site-To-Site)
Then choose an empty entry and use the screen below as a template to help define the parameters for the OpenVPN connection.
OPENVPN DETAILS: [opentest] IPv4/IPv6 (certificate configuration sample)
1. Enable: On
2. Tunnel Name: opentest
3. Security: PKI (X.509 Certificates)
4. Driver: TUN – IP
5. Protocol: UDP
6. Compression: Enable LZO Compression
7. Primary Host/Addr: 98.174.158.28 – VPN Address
8. Primary Host Port: 1194
9. Secondary Host/Addr: (undefined)
10. Secondary Host Port: 1194
11. Server Certificate: (defined) – (send the openvpn ca.crt file)
12. Client Cert File: (defined) – (send the openvpn client1.crt file)
13. Private Key File: (defined) – (send the openvpn client1.key file)
14. Tunnel Options: (undefined)
Enter: # to change, to exit and save configuration ..
If you want to change the ciphers used by OpenVPN you can enter these under the "14. Tunnel Options" menu selection.
VPN CUSTOM TUNNEL OPTIONS:
1. (choose any blank selection)
2.
3.
Enter: # to select menu, to return to previous menu … 1
IPSEC VPN CUSTOM OPTIONS DETAILS: [opensharedsecret] IPv4/IPv6
1. Parameter: cipher
2. Value: AES-256-CBC
Enter: # to change, to exit and save configuration …
<esc> out to the main menu and you can check the OpenVPN status by issuing the ifconfig command to verify that the vpn tunnel is established:
CPM> /bash ifconfig
eth0 Link encap:Ethernet HWaddr 00:09:9B:02:0D:96
inet addr:192.10.10.231 Bcast:192.10.10.255 Mask:255.255.255.0
inet6 addr: fe80::209:9bff:fe02:d96/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:29 errors:0 dropped:1 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2662 (2.5 Kb) TX bytes:648 (648.0 b)
Interrupt:56
eth1 Link encap:Ethernet HWaddr 00:09:9B:02:0D:97
inet addr:12.23.46.230 Bcast:12.23.46.255 Mask:255.255.255.192
inet6 addr: fe80::209:9bff:fe02:d97/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:329 errors:0 dropped:0 overruns:0 frame:0
TX packets:212 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:35595 (34.7 Kb) TX bytes:30691 (29.9 Kb)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.8.0.6 P-t-P:10.8.0.5 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
OPENVPN CLIENT TUNNEL: (Pre-shared Secret key configuration sample)
Enter the number of the VPN Client you want to start changing.
1. opentest
2. opensharedsecret
3.
4.
5.
Enter: # to select menu, to return to previous menu … 2
OPENVPN DETAILS: [opensharedsecret] IPv4/IPv6
1.Enable: On
2. Tunnel Name: opensharedsecret
3. Security: Pre-shared Secret (Static Key File)
4. Driver: TUN – IP
5. Protocol: UDP
6. Compression: Enable LZO Compression
7. Primary Host/Addr: 98.174.158.28
8. Primary Host Port: 1194
9. Secondary Host/Addr: (undefined)
10. Secondary Host Port: 1194
11. Pre-Shared Key: (defined) – send the openvpn shared.key file
12. Tunnel Options: (defined)
Enter: # to change, to exit and save configuration … 12
VPN CUSTOM TUNNEL OPTIONS:
1. (choose any blank selection)
2.
3.
Enter: # to select menu, to return to previous menu … 1
IPSEC VPN CUSTOM OPTIONS DETAILS: [opensharedsecret] IPv4/IPv6
1. Parameter: ifconfig
2. Value: 10.8.0.2 10.8.0.1
Enter: # to change, to exit and save configuration …