Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual

23.1 VPN Server Configuration

285

Figure 23.2

VPN server settings — basic parameters

The action will be applied upon clicking the Apply button in the Interfaces tab.

IP address assignment

Specification of a subnet (i.e. IP address and a corresponding network mask) from which

IP addresses will be assigned to VPN clients and to remote endpoints of VPN tunnels

which connect to the server (all clients will be connected through this subnet).

By default (upon the first start-up after installation), WinRoute automatically selects a free

subnet which will be used for VPN. Under usual circumstances, it is not necessary to

change the default subnet. After the first change in VPN server settings, the recently

used network is used (the automatic detection is not performed again).

Warning

Make sure that the subnet for VPN clients does not collide with any local subnet!

WinRoute can detect a collision of the VPN subnet with local subnets. The collision may

arise when configuration of a local network is changed (change of IP addresses, addition

of a new subnet, etc.), or when a subnet for VPN is not selected carefully. If the VPN

subnet collides with a local network, a warning message is displayed upon saving of the

settings (by clicking Apply in the Interfaces tab). In such cases, redefine the VPN subnet.

Figure 23.3

VPN server — detection of IP collision

It is recommended to check whether IP collision is not reported after each change in

configuration of the local network or/and of the VPN!

Notes:

1.

Under certain circumstances, collision with the local network might also arise when

a VPN subnet is set automatically (if configuration of the local network is changed