3 managing ssl vpn settings via the cli – Westermo RedFox Series User Manual

Page 858

Advertising
background image

Westermo OS Management Guide

Version 4.17.0-0

36.3

Managing SSL VPN settings via the CLI

The WeOS unit can be configured as SSL VPN server gateway (waiting for clients
to connect), or as an SSL VPN client (initiating connections). We start out by
shown the CLI commands available when configuring an SSL VPN server gateway
(”[no] server” command set to ”server”).

Command

Default

Section

General SSL VPN Server Gateway Settings
tunnel

Section 35.3.1

[no] ssl <INDEX>

Section 36.3.1

server

Server

Section 36.3.2

[no] enable

Enabled

Section 36.3.3

[no] description <STRING>

empty

Section 36.3.4

[no] type <layer2|layer3>

layer3

Section 36.3.5

[no] pool start <IPADDR>

Disabled

Section 36.3.6

<num <NUM>|end <IPADDR>>
[netmask NETMASK]

[no] push-network <NETWORK/LEN>

Disabled

Section 36.3.7

Authentication Settings

[no] certificate

Empty

Section 36.3.9

[no] ca-certificate

Empty

Section 36.3.10

[no] tls-auth label <KEY LABEL>

Empty

Section 36.3.11

[direction <0|1>]

[no] aaa-method <remote-server <ID>|

Disabled

Section 36.3.12

local <ID>>

Data Security Settings

[no] crypto <aes128-cbc|. . . >

aes128-cbc

Section 36.3.14

[no] auth <sha1|md5>

sha1

Section 36.3.15

Additional/Advanced Settings

[no] protocol <tcp|udp>

UDP

Section 36.3.16

[no] port

1194

Section 36.3.17

[no] outbound

Auto

Section 36.3.18

[no] keepalive <interval <SEC>

interval 10

Section 36.3.19

Continued on next page

858

➞ 2015 Westermo Teleindustri AB

Advertising
This manual is related to the following products:
See also other documents in the category Westermo Equipment: