Chapter 21 Kerio VPN

VPN server — it is not necessary to apply for a new certificate.

DNS

Figure 21.4 VPN server settings — specification of DNS servers

Specify a DNS server which will be used for VPN clients:

Use WinRoute as DNS server — IP address of a corresponding interface of WinRoute host will be used as a DNS server for VPN clients (VPN clients will use the DNS for- warder).

If the DNS Forwarder is already used as a DNS server for local hosts, it is recom- mended to use it also for VPN clients. The DNS forwarder provides the fastest re- sponses to client DNS requests and possible collision (inconsistency) of DNS records will be avoided.

Note: If the DNS forwarder is disabled (refer to chapter 5.3), the option is not avail- able.

Use specific DNS servers — primary and secondary DNS servers specified through this option will be set for VPN clients.

If another DNS server than the DNS forwarder in WinRoute is used in the local net- work, use this option.

Advanced

Listen on port

The port on which the VPN server listens for incoming connections (both TCP and UDP protocols are used). The port 4090 is set as default (under usual circumstances it is not necessary to switch to another port).

302

Page 302
Image 302
Kerio Tech Firewall6 manual Advanced, Listen on port, 302