If the VPN gat eway i s s erv ing as a VPN gateway to a local subnet (e.g. the console server has a
Management LAN co nfigured) enter the private subnet details in Left Subnet. Use the CIDR
notation (where the I P address number is followed by a slash and the number of ‘one’ bits in the
binary notation of the netmask). For exampl e 192.168.0.0/24 indic ates an IP address whe re t he
first 24 bits are use d as t he network address. This is the same as 255.255.255.0. If the VPN
access i s only to the console server it self and to its attached se rial console devices then leave
Left Subnet blank
If there is a VPN gateway at the remote end, enter the private subnet det ai l s in Right Subnet.
Again use the CIDR n otation and leave blank if there is only a remot e host
Select Initiate Tunnel if the tunnel c onnection is to be initiated from the Left console server end.
This can only be initi ated from the VPN gateway (Lef t ) i f the remote end was configured with a
static (or dyndns) I P address
Click Apply to save changes
Note It is essential the configuration details set up on the advanced console serv er (referred to as the
Left or Local host) exact l y matches the set up ente red when configuring the Re m ote (Right)
host/gateway or software client.

4.10 OpenVPN

The LES1508A, LES1408A, LES1416A, LES1432A, LES1448A, LES1308A, LES1316A, LES1332A, LES1348A,

LES1208A-R2, LES1216A-R2, LES1232 and LES1248A-R2 console servers include OpenVPN which is based

on TSL (Transport Layer Security) and SSL (Secure Socket Layer). With OpenVPN, i t is easy to build
cross-platform, point-to-point VPNs usi ng x509 PKI (Public Key Inf rastructure) or custom configuration
files.
OpenVPN allow s se cure tunneling of data through a single TCP/UDP port over an unsecured network,
thus providing secure access to multiple sites and secure remote administration to a console server over
the Internet.
OpenVPN also allow s t he use of Dynamic IP addresses by both the server and client thus providing client
mobility. For example, an OpenVPN tunnel may be established between a roaming windows client and a
console server within a data centre.
Configuration of OpenVPN can be complex so a simple GUI interface is prov ided for basic set up as
described below. However for more detai l ed i nformation on configuring OpenVPN Access ser ver or client
refer to the HOW TO and FAQs at http://www.openvpn.net

4.10.1 Enable the OpenVPN

Select OpenVPN on the Serial & Networks menu
Click Add and complete the Add OpenVPN Tunnel screen

_____________________________________________________________________

724-746-5500 | blackbox.com Page 71