Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
VIN: Multiple Connections OS X
Version 1.1 | Release 1.3 | May 2016
Copyright © 2016 iWebGate. All Rights Reserved.
No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of iWebGate as provided by the explicit terms and conditions of our license agreement.
Basic Rights of Use
Thank you for choosing iWebGate. Registration of your product is required during the installation process outlined in this document. Registration of a single product entitles you to begin using the product for the specific purposes of the product. Additional licensing might be required to use additional features. For more information about iWebGate, visit us at http://www.iwebgate.com.
Trademarks
Microsoft, Windows, Windows NT, and Vista are registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or trademarks of their respective holders.
Statement of Conditions
To ensure proper operational function and/or reliability of the product is maintained, iWebGate reserves the right to make changes to the product described within this document, via electronic means or otherwise, without notice. iWebGate does not assume any liability that may occur due to the use, or application of, the product described herein.
Table of Contents
Introduction 4
Getting Started 4
Creating Multiple User Connections 7
Downloading VIN Connections 11
Using VIN Manager 19
4
Introduction This configuration of VIN allows the use of the virtual networking technology to use either
VIN Service or VIN Manager. This setup will instruct how to create multiple users (peers) or
different network locations on the same Virtual Invisible Network (VIN)
Be aware that using this VIN Service will consume one VPN LP license on the Virtual
Segmentation Platform (VSP) the entire time a connected machine is running this
configuration of VIN.
Getting Started Before setting up VPN LP, first download the VIN installation package from
www.iwebgate.com
Launch the package to begin the setup. Click Next when the setup screen appears.
5
Choose the install location, if you want to change it, and then click Install.
Type the username and password to the computer before clicking Install Software.
6
Wait as the VIN Manager installs. The status bar will show the progress of the installation.
The VIN Manager is now installed. Click Close to exit.
7
Creating Multiple User Connections VIN service supports connecting to other users or locations while using the same network.
These users will need to be created individually inside the Virtual Segmentation Platform
(VSP).
Log into the VSP using administrator credentials.
Click VPN LP on the administration toolbar.
8
Before individual connections can be configured, the initial VIN must be created by
clicking Add VPN.
1. Address: Enter a unique Name for the network, and choose a Network address.
2. Platform: Strict Checks sets whether clients connecting to this network should
validate the SSL certificate of the VSP; Broker Server and Broker Port are displayed
for reference.
3. Encryption Cipher: The Cipher Type to use for the encryption on this network. This
can be AES or Blowfish.
4. Encryption: The Phrase is the encryption key for this network. You can leave the
auto generated one, generate a new one, or type your own.
1 2
3 4
9
After creating a VPN, add network locations users or to it by clicking either Add Machine
or Add User in the Nodes module.
1. Provide a unique username for the node. This name can only exist once in the list.
2. Type a password.
3. Mark the user as persistent
Automatically generates a
hidden password Shows the password
10
If configuring a User account node, select the account from the drop down list and
configure node settings if applicable.
Repeat the process for the second user. At least two individual connections should be
displayed in the Nodes section.
11
Downloading VIN Connections After creating a VPN and users, the individual information of the peers on the VIN must
be downloaded from the VSP to be used with VIN Service.
While logged into the VSP, select a VPN from the list in VPN LP.
In the Nodes section, click the download icon to retrieve the peer.zip file that
contains:
ca.pem - the CA certificates file
peer.conf - peer configuration for the node
vlan.key - encryption key for the VIN
Make sure to download each configuration file and follow
the steps outlined below for each one.
12
Open the VIN folder in the iWebGate main folder found in Applications.
If the Peer folder has a red circle on it, the folder’s permissions will need to be change.
13
Right click peer and select Get Info.
Click the padlock icon on the bottom of the folder info screen. This will allow you to
unlock and change permissions for the Peer folder.
14
Type in the login credentials to the computer to modify privileges.
Under everyone, use the dropdown list to change the privilege to Read & Write.
15
The peer folder will now have permissions unlocked and the red circle will be gone.
Open the folder containing the downloaded peer files. Select all files and click Copy 3
Items.
16
In the VIN Peer folder, paste the three copied peer files.
In the warning popup, check Apply to All before clicking Replace. This will replace all the
old peer files with the ones downloaded from the VSP.
Type in the login credentials to the change the peer logs in the folder.
17
After the peer files have been replaced, revert the permission to the folder back to No
Access to prevent access to encryption keys.
Use the daemon-restart script to restart the iWebGate VIN Service.
18
Type in the login credentials.
As the connection establishes, a popup may appear asking to accept incoming network
connections. Click Allow.
Repeat this process for each VIN connection.
19
Using VIN Manager VIN connections can also be made using the VIN Manager.
Add a new VSP to the VIN Manager to display available VINs, select Platforms and then
click Add Platform.
Fill out all the Platform Details before clicking OK.
Platform Name The name to display in the platform list
Address The URL of the VSP
Account Your VSP username
Password Your VSP password. You will be prompted to enter this
password each time you reconnect or update these details.
20
A popup will appear notifying of a successful platform login.
21
Non-persistent VINs will sit idle until you choose to connect to them. When logging in to
the platform, instead of using a user account’s login credentials, type the node’s name
and password associated with the VIN. This information is found in the VSP.
Click the toggle next to a VIN to connect to it.
A popup will appear notifying of a successful connection.
Version 1.1 | Release 1.3 | May 2016