Jump to:navigation, search
Wiki










































































De.png
Fr.png


Integration of any devices into the Mobile Security Portal via VPN

Last adaptation to the version: 1.4.8 (09.2019)

New:

  • Copy & paste of VPN configurations
  • Layout optimization for mobile view
  • English translation



Recommended VPN Clients

Es ist möglich, jeden beliebigen VPN-Client zu verwenden. Wir empfehlen (und haben getestet):

Windows: Securepoint SSL-VPN

Mac: Tunnelblick

Linux: OpenVPN



Other devices (VPN) Overview

Overview of VPN devices

In the overview Other devices (VPN) new devices can be added, existing ones edited and deleted via VPNs. The view can be displayed in the list or grid view. You can also view details and update the list.

Naturally, you can't enforce such extensive administration as with iOS or Android devices.
However, it is possible to filter and scan network traffic for viruses.


General Options

Function Description
 Search Search for specific strings in device names.
Add device
  Add device
s.u.
Import configuration
  Import configuration
Existing VPN profiles for individual devices can be imported here.
Show details
Show / hide details: For a large number of profiles, it can be helpful to hide the display of the most important details.
List view / Grid view
/
Switch between list and grid view.
Refresh
Refresh the display

Devices (VPN) - Options

edit

Export

Download configuration

CA.pem herunterladen

Delete

Devices (VPN) - Options
The button at the top right of each device (VPN) tile provides the following options:

Function Description
  Edit View and change device (VPN) settings. For details see Add device (VPN).
  Expor Exports the VPN configuration to a *.vpn file.
 Copy Copying the VPN-configuration to the clipboard
  Download config Downloads a *.zip file with the following files: ca.crt , client.crt , client.key , config.ovpn , pass.txt
  Download CA.pem
  Delete Deletes the device configuration (VPN) from the portal. The deletion must be confirmed with OK.




Copy & paste of VPN-configurations

Click on the logo of the VPN-tile to mark it. In the general options, another field now appears under the filter mask:

Caption Button Description
Action for selected items  Please choose Execute the selected action with Ok
 Copy Copies one or more selected VPN-configurations to the clipboard.
 Delete Deletes one or more selected VPN-configurations
New button   Paste Inserts a copy of a VPN-configuration from the clipboard.
This also works from one tenant / customer to another as long as they are assigned to the same reseller account.   AnyIdeas GmbH

Add device (VPN)

  Add device Adds additional devices.


Action Default Description
Name Name The name of the device
Protocol TCP The protocol used for the VPN tunnel: TCP or UDP
Port filter type Filter network traffic based on network ports:
Open All ports are enabled
closed Only port 80 (http) and 443 (https) are enabled.
Selection Port filter rule selection: Specify which port collections are open for network traffic:























Port-Collection Port Protocol Application
Administrative Tools 21 TCP ftp
3389 TCP ms-rdp
23 TCP telnet
5900 TCP vnc
22 TCP ssh
5938 TCP/UDP teamviewer
Communication 3478-3481 UDP Skype
49152-65535 UDP
49152-65535 TCP
5222 TCP Google Push-Notifications
5223 UDP
5228 TCP
VOIP 5060 UDP SIP/RTP
7070-7089 UDP
VPN 1194 TCP OpenVPN
1194 UDP
500 UDP IPSec
4500 UDP & ESP
1701 UDP L2TP
Mail 25 TCP smtp
587 TCP
465 TCP smtps
110 TCP pop3
995 TCP
143 TCP imap
993 TCP
SSL interception Default Defines whether SSL traffic is intercepted or not. The default value is the interception of traffic based on the response of the content filter.
Content Filter Whitelist Add entries Click box: Web pages to be whitelisted. Possible entries: Contentfilter
Content-Filter-Blacklist Add entries Click box: Websites which should be blacklisted.
Disable for IP addresses Adding SSIDs Enter WLAN SSIDs for which you want to disable the security functions.
Disable for IP addresses Add IPs Enter IP addresses or networks for which the security functions are to be disabled, i.e. the single host 192.0.2.192/32 or the entire subnet 192.0.2.0/24. Use the cursor keys to navigate within the mask.
  Save



Integrating a device into the Securepoint Mobile Security Portal

The following steps must be carried out one after the other to integrate a new device via VPN:

  1.   Add device, configure and   Save

  2. /   Download configuration Download the required configuration files and certificates in a *.zip file.

  3. Transfer the configuration files (*.zip - file) safe to the device to be connected and unpack it there.
  4. Open VPN client on device
  5. Configure client ( for Securepoint VPN client: Settings / Import Import of OVPN file)
  6. Establish VPN connection