D-Link DSR-250v2 Product Manual - Page 104
AES-128 BF, CBC AES-192, AES-256, SHA1 SHA256, SHA512, Local authentication list, Server Policies,
View all D-Link DSR-250v2 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 104 highlights
Port Tunnel protocol Encryption algorithm Hash algorithm Tunnel type Client to client User-based authentication Local authentication Certificate verification Certificate TLS authentication key TLS key DH key Server policies Remote networks Local networks Enter the port number on which the OpenVPN server runs. The default port is 1194. Select either TCP or UDP to communicate with the remote host. Select the encryption algorithm from the drop-down menu. The options are AES-128, BFCBC, AES-192, and AES-256. Select the hash algorithm from the drop-down menu. The options are SHA1, SHA256, and SHA512. Select either Full Tunnel or Split Tunnel. Full Tunnel mode sends all the traffic from the client across the VPN tunnel to the gateway. Split Tunnel mode only sends traffic to the private LAN based on pre-specified client routes. If you select Split Tunnel, refer to Local Networks to create local networks. Enable this field to allow OpenVPN clients to communicate with each other in the split tunnel case. By default, it is disabled. This option provides an additional authentication method. You can enable this field to select an authentication server. Select a configured local authentications saved on the local server. To add a new local authentication server, click the Local authentication list link. For more details, refer to local authentication list section. Enable or disable certificate verification. This method does not require the client certificate; the client authenticates using the username/password only. It is enabled by default. Select the profile which has a list of certificates uploaded for the configured mode server /client. Enabling this adds TLS authentication, which adds a layer of authentication. It can be checked only when the TLS key is uploaded. It is disabled by default. Select the type of TLS certificate name. Select the DH key from the drop-down list. Advanced settings Enable or disable the Server Policies feature; if enabled, configure the Server policies under the Server policies section. Enable or disable the Remote networks feature; if enabled, configure this feature in the remote networks section. Enable or disable the Local networks feature; if enabled, configure this feature in the Local networks section. This section is available when you select Split Tunnel as the Tu nnel type. Client List It allows the user to generate the client's configuration. Furthermore, OmniSSL is an adaptable feature as it supports and gets installed on various operating systems following their respective procedures. The fields available on the Client list table are as follows: Field User name Update at Description It displays the OmniSSL client name. It displays the date and time when the user's certificates were last updated.