Client-Side access to OpenVPN access server
OpenVPN Access Server is a server that authenticates remote client access requests (either locally or through an authentication server) and provides OpenVPN tunnel configuration information to the requesting client. It also provides OpenVPN client software if the client requires it, although this is not required for vRouter clients. The configuration information allows the client to then establish an OpenVPN tunnel and an OpenVPN server with minimal configuration on the client side.
The sequence of events is as follows:
The vRouter has the OpenVPN client software preloaded and can use OpenVPN Access Server to obtain the information needed to establish an OpenVPN tunnel with an OpenVPN server. The only required configuration information is the IP address or host name of OpenVPN Access Server, a username and password for OpenVPN Access Server, and, potentially, the tunnel username and tunnel password for establishing the tunnel with the OpenVPN server.
The following figure shows an OpenVPN setup that uses OpenVPN Access Server, an authentication server, and an OpenVPN server.
You can use the show interfaces command to show the assigned IP address on the client side of the OpenVPN tunnel.