You configure VPN networks at the vpn networks level.
To create a VPN network, use the following command:
Admin@nodename# create vpn networks <parameters>
VPN network parameters:
Parameter |
Description |
---|---|
name |
VPN network name. |
description |
VPN network description. |
ip-range |
Range of IP addresses to be used by the clients and the server. Format: <IP_start-IP_end> Exclude the addresses assigned to the VPN interface used with this network from the range. Do not enter network addresses or the broadcast address here. |
mask |
Subnet mask, e.g. 255.255.255.0. |
use-system-dns |
Assign DNS servers used by UserGate to the client:
|
dns-servers |
DNS servers that will be passed to the client. |
routes-ip |
VPN route. Specify an IP address in the following formats: "A.B.C.D" or "A.B.C.D/m". |
routes-ip-list |
VPN route. Specify a group of IP addresses. For more details on creating IP address groups using CLI, see the Configuring IP Addresses section. |
all-routes |
No VPN connection routing restrictions when using the UserGate VPN client. |
include-routes-ip |
IP addresses access to which should be routed via VPN connection when using the UserGate VPN client. |
include-routes-ip-list |
IP address list access to which should be routed via VPN connection when using the UserGate VPN client. |
exclude-routes-ip |
IP addresses access to which should be disabled via VPN connection when using the UserGate VPN client. |
exclude-routes-ip-list |
IP address list access to which should be disabled via VPN connection when using the UserGate VPN client. |
restrict-lan-access |
Restrict access to the local network when using the UserGate VPN client. |
Example of creating a VPN network:
Admin@nodename# create vpn networks name "Test VPN network" description "This is a new test VPN network" ip-range 10.10.3.2-10.10.2.200 mask 255.255.255.0
To edit network parameters, use the following command:
Admin@nodename# set vpn networks <network-name> <parameters>
To delete a VPN network or individual parameters of a network, use the following command:
Admin@nodename# delete vpn networks <network-name>
To display information about a VPN network, use the following command:
Admin@nodename# show vpn networks <network-name>