Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual Page 286
- Page / 368
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
Chapter 23 Kerio VPN
286
later).
2. Regarding two VPN tunnels, it is also examined when establishing a connection
whether the VPN subnet does not collide with IP ranges at the other end of the tunnel
(remote endpoint).
If a collision with an IP range is reported upon startup of the VPN server (upon click-
ing Apply in the Interfaces tab), the VPN subnet must be set by hand. Select a network
which is not used by any of the local networks participating in the connection. VPN
subnets at each end of the tunnel must not be identical (two free subnets must be
selected).
3. VPN clients can also be assigned IP addresses according to login usernames. For
details, see chapter 15.1.
SSL certificate
Information about the current VPN server certificate. This certificate is used for ver-
ification of the server’s identity during creation of a VPN tunnel (for details, refer to
chapter 23.3). The VPN server in WinRoute uses the standard SSL certificate.
When defining a VPN tunnel, it is necessary to send the local endpoint’s certificate fin-
gerprint to the remote endpoint and vice versa (mutual verification of identity — see
chapter 23.3).
Hint
Certificate fingerprint can be saved to the clipboard and pasted to a text file, email mes-
sage, etc.
Click Change SSL Certificate to set parameters for the certificate of the VPN server. For
the VPN server, you can either create a custom (self-subscribed) certificate or import a cer-
tificate created by a certification authority. The certificate created is saved in the sslcert
subdirectory of the WinRoute installation directory as vpn.crt and the particular private
key is saved at the same location as vpn.key.
Methods used for creation and import of SSL certificates are described thoroughly in
chapter
11.1.
Note: If you already have a certificate created by a certification authority especially for
your server (e.g. for secured Web interface), it is also possible to use it for the VPN server
— it is not necessary to apply for a new certificate.
DNS configuration for VPN clients
To allow VPN clients to access to local hosts using the hostnames, they need at least one local
DNS server.
The WinRoute’s VPN server allows for the following options of DNS server configuration:
• Use WinRoute as DNS server — IP address of a corresponding interface of WinRoute
host will be used as a DNS server for VPN clients (VPN clients will use the DNS module;
see chapter 8.1). This is the default option in case that the DNS module is enabled in
WinRoute.
- Kerio WinRoute Firewall 6 1
- Contents 3
- Quick Checklist 7
- Introduction 9
- 2.2 Conflicting software 10
- 2.3 System requirements 11
- 2.4 Installation - Windows 12
- Sharing 15
- 2.9 WinRoute Components 23
- WinRoute Administration 27
- Chapter 4 32
- 4.2 License information 33
- 4.6 User counter 45
- Network interfaces 47
- Figure 5.2 Editing interfaces 50
- Internet Connection 53
- 6.3 Connection Failover 62
- Chapter 6 Internet Connection 64
- 6.4 Network Load Balancing 66
- Traffic Policy 71
- 7.2 How traffic rules work 78
- 7.4 Basic Traffic Rule Types 90
- 7.5 Policy routing 95
- 7.8 Use of Full cone NAT 101
- 7.9 Media hairpinning 102
- Chapter 8 104
- 8.1 DNS module 104
- Figure 8.1 DNS settings 105
- 8.2 DHCP server 110
- 8.4 Proxy server 121
- 8.5 HTTP cache 124
- Bandwidth Limiter 130
- User Authentication 137
- Web Interface 141
- HTTP and FTP filtering 147
- 12.2 URL Rules 148
- 12.5 FTP Policy 162
- Antivirus control 167
- 13.3 HTTP and FTP scanning 172
- 13.4 Email scanning 176
- Definitions 180
- 14.2 Time Ranges 181
- 14.3 Services 183
- 14.4 URL Groups 187
- Description 189
- User Accounts and Groups 190
- 15.2 Local user accounts 193
- Step 1 — basic information 194
- 15.5 User groups 210
- Administrative settings 214
- 16.3 Update Checking 216
- Advanced security features 218
- Other settings 224
- 18.3 Relay SMTP server 229
- Status Information 231
- 19.4 Alerts 243
- Figure 19.12 Alert Definitions 244
- Basic statistics 248
- Figure 20.1 User statistics 249
- 20.2 Interface statistics 250
- Chapter 21 254
- Chapter 22 262
- 22.1 Log settings 262
- Figure 22.1 Log settings 263
- Chapter 22 Logs 264
- Syslog Logging 264
- 22.2 Logs Context Menu 265
- 22.3 Alert Log 269
- 22.4 Config Log 269
- 22.5 Connection Log 270
- 22.6 Debug Log 271
- 22.7 Dial Log 273
- 22.8 Error Log 275
- 22.9 Filter Log 276
- 22.10 Http log 277
- 22.11 Security Log 278
- 22.12 Sslvpn Log 280
- 22.13 Warning Log 280
- 22.14 Web Log 281
- Kerio VPN 283
- 23.1 VPN Server Configuration 284
- Chapter 23 Kerio VPN 320
- Paris branch office server 332
- Chapter 24 335
- Chapter 25 338
- 25.2 Configuration files 339
- Technical support 351
- 26.2 Tested in Beta version 352
- Legal Notices 353
- Used open source items 354
- Glossary of terms 357
© 2020, manymanuals.com. All rights reserved. | 0.355 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals