VIN: Multiple Connections OS X

Version 1.1 | Release 1.3 | May 2016

Copyright © 2016 iWebGate. All Rights Reserved.

No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of iWebGate as provided by the explicit terms and conditions of our license agreement.

Basic Rights of Use

Thank you for choosing iWebGate. Registration of your product is required during the installation process outlined in this document. Registration of a single product entitles you to begin using the product for the specific purposes of the product. Additional licensing might be required to use additional features. For more information about iWebGate, visit us at http://www.iwebgate.com.

Trademarks

Microsoft, Windows, Windows NT, and Vista are registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or trademarks of their respective holders.

Statement of Conditions

To ensure proper operational function and/or reliability of the product is maintained, iWebGate reserves the right to make changes to the product described within this document, via electronic means or otherwise, without notice. iWebGate does not assume any liability that may occur due to the use, or application of, the product described herein.

Table of Contents

Introduction 4

Getting Started 4

Creating Multiple User Connections 7

Downloading VIN Connections 11

Using VIN Manager 19

4

Introduction This configuration of VIN allows the use of the virtual networking technology to use either

VIN Service or VIN Manager. This setup will instruct how to create multiple users (peers) or

different network locations on the same Virtual Invisible Network (VIN)

Be aware that using this VIN Service will consume one VPN LP license on the Virtual

Segmentation Platform (VSP) the entire time a connected machine is running this

configuration of VIN.

Getting Started Before setting up VPN LP, first download the VIN installation package from

www.iwebgate.com

Launch the package to begin the setup. Click Next when the setup screen appears.

5

Choose the install location, if you want to change it, and then click Install.

Type the username and password to the computer before clicking Install Software.

6

Wait as the VIN Manager installs. The status bar will show the progress of the installation.

The VIN Manager is now installed. Click Close to exit.

7

Creating Multiple User Connections VIN service supports connecting to other users or locations while using the same network.

These users will need to be created individually inside the Virtual Segmentation Platform

(VSP).

Log into the VSP using administrator credentials.

Click VPN LP on the administration toolbar.

8

Before individual connections can be configured, the initial VIN must be created by

clicking Add VPN.

1. Address: Enter a unique Name for the network, and choose a Network address.

2. Platform: Strict Checks sets whether clients connecting to this network should

validate the SSL certificate of the VSP; Broker Server and Broker Port are displayed

for reference.

3. Encryption Cipher: The Cipher Type to use for the encryption on this network. This

can be AES or Blowfish.

4. Encryption: The Phrase is the encryption key for this network. You can leave the

auto generated one, generate a new one, or type your own.

1 2

3 4

9

After creating a VPN, add network locations users or to it by clicking either Add Machine

or Add User in the Nodes module.

1. Provide a unique username for the node. This name can only exist once in the list.

2. Type a password.

3. Mark the user as persistent

Automatically generates a

hidden password Shows the password

10

If configuring a User account node, select the account from the drop down list and

configure node settings if applicable.

Repeat the process for the second user. At least two individual connections should be

displayed in the Nodes section.

11

Downloading VIN Connections After creating a VPN and users, the individual information of the peers on the VIN must

be downloaded from the VSP to be used with VIN Service.

While logged into the VSP, select a VPN from the list in VPN LP.

In the Nodes section, click the download icon to retrieve the peer.zip file that

contains:

ca.pem - the CA certificates file

peer.conf - peer configuration for the node

vlan.key - encryption key for the VIN

Make sure to download each configuration file and follow

the steps outlined below for each one.

12

Open the VIN folder in the iWebGate main folder found in Applications.

If the Peer folder has a red circle on it, the folder’s permissions will need to be change.

13

Right click peer and select Get Info.

Click the padlock icon on the bottom of the folder info screen. This will allow you to

unlock and change permissions for the Peer folder.

14

Type in the login credentials to the computer to modify privileges.

Under everyone, use the dropdown list to change the privilege to Read & Write.

15

The peer folder will now have permissions unlocked and the red circle will be gone.

Open the folder containing the downloaded peer files. Select all files and click Copy 3

Items.

16

In the VIN Peer folder, paste the three copied peer files.

In the warning popup, check Apply to All before clicking Replace. This will replace all the

old peer files with the ones downloaded from the VSP.

Type in the login credentials to the change the peer logs in the folder.

17

After the peer files have been replaced, revert the permission to the folder back to No

Access to prevent access to encryption keys.

Use the daemon-restart script to restart the iWebGate VIN Service.

18

Type in the login credentials.

As the connection establishes, a popup may appear asking to accept incoming network

connections. Click Allow.

Repeat this process for each VIN connection.

19

Using VIN Manager VIN connections can also be made using the VIN Manager.

Add a new VSP to the VIN Manager to display available VINs, select Platforms and then

click Add Platform.

Fill out all the Platform Details before clicking OK.

Platform Name The name to display in the platform list

Address The URL of the VSP

Account Your VSP username

Password Your VSP password. You will be prompted to enter this

password each time you reconnect or update these details.

20

A popup will appear notifying of a successful platform login.

21

Non-persistent VINs will sit idle until you choose to connect to them. When logging in to

the platform, instead of using a user account’s login credentials, type the node’s name

and password associated with the VIN. This information is found in the VSP.

Click the toggle next to a VIN to connect to it.

A popup will appear notifying of a successful connection.

Version 1.1 | Release 1.3 | May 2016