Jump to:navigation, search
Wiki

VPN configuration Roadwarrior

From Securepoint Wiki




























In dieser Seite werden die Variablen für unterschiedliche Sprachen definiert.
Diese Seite wird auf folgenden Seiten eingebunden



















































Information about the VPN configuartion for Roadwarrior using Securepoint Unified Security Console

Last adaptation to the version: 2.8

New:
  • iOS Profile, die Cloud Shield verwenden, können ausgewählt werden
  • Windows VPN profiles can be used as Roadwarriors
notempty
This article refers to a Beta version
-
Access: portal.securepoint.cloud  Unified Security Console VPN configuration
Requirement
notempty
VPN configuration in the USC require a UTM v14.0 or higher


Add Roadwarrior

To add a Roadwarrior, click the  Satellit / Roadwarrior button on an active, connected core UTM.
A dialog window will open where the new Roadwarrior can be configured
Caption Value Description
Dialog window for adding a Roadwarrior
Type Roadwarrior Select Roadwarrior as the type
Name RW_General The name to be used for this Roadwarrior
Transfer network 10.0.2.0/24 Enter a private IPv4 or IPv6 address to be used as the transfer network.
Profile
 Android RW  iOS RW  Windows VPN RW Profile selection.
Possible options are

Devices from these profiles can be connected to this network after the configuration is published.
Multiple profiles can be selected.

Only when all fields are filled in does the  Add button become active, and the Roadwarrior can then be added using it.
Finally, this configuration must be applied using the  Publish button.

Edit Roadwarrior

A Roadwarrior can be edited via the button
Caption Value Description
Dialog window for editing a Roadwarrior
Type Roadwarrior The type of a Roadwarrior cannot be changed
Name RW-Smartphones The Name used for this Roadwarrior.
Transfer network 10.0.2.0/24 IPv4- or IPv6 address, to be used as the transfer network
Profile
 Android RW  iOS RW  Windows VPN RW Profile selection.
Possible options are

Devices from these profiles can be connected to this network after the configuration is published.
Multiple profiles can be selected.

Finally, this configuration must be applied using the  Publish button.

Add Roadwarrior rule

Caption Value Description
Dialog window for adding a packet filter rule for an address pool
Direction  Roadwarrior  Core-UTM Indicates the direction of the packet filter rule (Source → Destination)
Source Roadwarrior | 10.0.2.0/24 The source of the packet filter rule is always the address pool of the transfer network in which the Roadwarriors are located. (Cannot be changed)
Destination Please select a network object Selection of an existing network object. Existing network groups and network objects are listed.

If no suitable network object is available, a new one can be created via the button.

Name Name Name to be assigned to the network object
Type Host Type of the network object. By Default, Host is selected, altenatively, Network can be chosen.
Address IP address IPv4 or IPv6 address that the network object should use as the transfer network.
Zone Select a Zone Zone in which the network object should be located. If no appropriate zone is available, one must be created in the UTM.
Network Group Select Network Group Adds this network object to an existing network group.
Service     Selection of an existing service. Existing service groups and services are listed.
  • A service can only be selected after a destination has been choosen.
    • Name Service name Service name.
    Service group name Service group name Adds the service to an existing service group.
    Protocol Select protocol Protocol to be used for the service.
    Retrieved from "https://wiki.securepoint.de/index.php?title=USC/VPN/Roadwarrior&oldid=97320"