Adding OpenVPN tunnels in Untangle SD-WAN Router

Overview

Untangle SD-WAN router implements OpenVPN to route traffic to remote networks. This enables devices behind Untangle SD-WAN router to access remote resources using the VPN tunnel or to access the Internet using the VPN tunnel.

You can configure OpenVPN tunnels as WAN Interfaces for full tunnel routing, or as LAN interfaces for routing only to specific remote networks. 

Adding an OpenVPN tunnel

To create a new VPN tunnel:

1. Navigate to Settings > Network > Interfaces.
2. Click Add.
3. Set an Interface Name to help you identify this VPN tunnel interface.
4. In Bound to, select any WAN to let Untangle SD-WAN router choose the best path or specify a persistent WAN interface.
5. If you plan to use the VPN interface for Internet routing, enable Is WAN. Otherwise the VPN interface is not used in WAN Policies and Traffic shaping rules.
6. Click Browse… to upload the OpenVPN configuration file that you obtain from your OpenVPN server. Note that the configuration file must include the server certificate.
7. If you need to edit the configuration, click the Inline Edit checkbox.
8. If your OpenVPN server requires authentication, enter the credentials in the Username and Password fields.
9. Click Create to add the VPN tunnel interface.

To remove a VPN interface, click the Delete button in the Actions column of the associated VPN interface.

Routing Internet traffic over OpenVPN tunnels

If your VPN tunnel connects to a security gateway such as Untangle NG Firewall, you may prefer to send specific types of Internet traffic through the VPN server for added security, content filtering, user based access control, and reporting. 

This common type of configuration requires at least one WAN Policy and at least one WAN Rule. Refer to Routing traffic via VPN tunnels for specific configuration and examples.