In this tutorial, we will be demonstrating connectivity from a RediGate 120C to an OpenVPN server.
Once you have successfully loaded the .star file on the RediGate, using the root user credentials in putty, you should be able to run the command “openvpn --version” and see a Sep 13 2016 build of OpenVPN:
Copy and paste the "Firewall" object from the RediGate-to-OpenVPN configuration into your configuration:
Each configuration can only have 1 firewall, so if you already have a firewall object, you will need to delete the existing one or edit the "Port Management" and "Custom IPTABLES" objects to match that of the RediGate-to-OpenVPN firewall configuration |
In this step, you will use the OpenVPN Connect client to connect once from your PC to the RediGate account, and in the process obtain the user credential file.
Be careful to follow the instructions below exactly, to make sure you retain the ability to copy/paste the text as expected. |
Create a connection using OpenVPN Connect with the RediGate user credentials.
For this demo, use the Server as vpn.mqtt.com (but in actual application, you will need to use your own server).
auth-user-pass
" so that the line reads "auth-user-pass /etc/openvpn/auth.txt
"vpn.mqtt.com
" to be the IP address or URL of your server.Confirm all settings are correct, and send a "1" value to the the "VPN.Start" tag to initiate the connection. For examples on how to send MQTT values to non-Ignition systems, see OpenVPN MQTT API Reference
You can edit the default values for the AuthName, AuthPass, and OpenVPN_CONF.txt by changing the PreInitRTDB values under the "VirtualUnit3-VPN-NAT-Tags": |