User's Manual

Table Of Contents

3.6.6 OpenVPN

Single point participating in the establishment of VPN is allowed to carry out ID verification by

preset private key, third-party certificate or username/password. OpenSSL encryption library and

SSLv3/TLSv1 protocol are massively used.

In OpenVPN, if a user needs to access to a remote virtual address (address family matching virtual

network card), then OS will send the data packet (TUN mode) or data frame (TAP mode) to the

visual network card through routing mechanism. Upon the reception, service program will

receive and process those data and send them out through outer net by SOCKET, owing to which,

the remote service program will receive those data and carry out processing, then send them to the

virtual network card, then application software receive and accomplish a complete unidirectional

transmission, vice versa.

From navigation tree, select "VPN>>OpenVPN", then enter “OpenVPN” page, and click <Add>.

Table 3-6-6 IPSec Configuration Parameters

OpenVPN

Function description: Configure OpenVPN parameters.

Parameters Description Default

Tunnel Name

OpenVPN tunnel name, cannot be changed by

the system

OpenVPN_T_

Enable Click to enable Enable

Mode Client/server Client

Protocol UDP/ICMP UDP

Port Set port 1194

OPENVPN Server Set OPENVPN Server address N/A

Authentication method

N/A, pre-

shared key, username/password,

digital certificate (multiple client), digital

certificate, username+digital certificate

N/A

Local IP Address Set local IP address N/A

Remote IP Address Set remote IP address N/A

Remote Subnet Set remote subnet address N/A

Remote Netmask Set remote subnet mask

255. 255.

255. 0

Link Detection Interval Set link detection interval 60 s

Link Detection Timeout Set link detection timeout 300 s