Configuring VPN Networks

You configure VPN networks at the vpn networks level.

To create a VPN network, use the following command:

Admin@nodename# create vpn networks <parameters>

VPN network parameters:

Parameter

Description

name

VPN network name.

description

VPN network description.

ip-range

Range of IP addresses to be used by the clients and the server. Format: <IP_start-IP_end>

Exclude the addresses assigned to the VPN interface used with this network from the range. Do not enter network addresses or the broadcast address here.

mask

Subnet mask, e.g. 255.255.255.0.

use-system-dns

Assign DNS servers used by UserGate to the client:

  • on: use system DNS servers

  • off: do not use system DNS servers

dns-servers

DNS servers that will be passed to the client.

routes-ip

VPN route. Specify an IP address in the following formats: "A.B.C.D" or "A.B.C.D/m".

routes-ip-list

VPN route. Specify a group of IP addresses. For more details on creating IP address groups using CLI, see the Configuring IP Addresses section.

all-routes

No VPN connection routing restrictions when using the UserGate VPN client.

include-routes-ip

IP addresses access to which should be routed via VPN connection when using the UserGate VPN client.

include-routes-ip-list

IP address list access to which should be routed via VPN connection when using the UserGate VPN client.

exclude-routes-ip

IP addresses access to which should be disabled via VPN connection when using the UserGate VPN client.

exclude-routes-ip-list

IP address list access to which should be disabled via VPN connection when using the UserGate VPN client.

restrict-lan-access

Restrict access to the local network when using the UserGate VPN client.

Example of creating a VPN network:

Admin@nodename# create vpn networks name "Test VPN network" description "This is a new test VPN network" ip-range 10.10.3.2-10.10.2.200 mask 255.255.255.0

To edit network parameters, use the following command:

Admin@nodename# set vpn networks <network-name> <parameters>

To delete a VPN network or individual parameters of a network, use the following command:

Admin@nodename# delete vpn networks <network-name>

To display information about a VPN network, use the following command:

Admin@nodename# show vpn networks <network-name>