Configuring VPN IP Pool

The first step to configure VIA Virtual Intranet Access. VIA provides secure remote network connectivity for Android, Apple iOS, Mac OS X, and Windows mobile devices and laptops. It automatically scans and selects the best secure connection to the corporate network. is to create a VPN Virtual Private Network. VPN enables secure access to a corporate network when located remotely. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security, and management policies of the private network. This is done by establishing a virtual point-to-point connection through the use of dedicated connections, encryption, or a combination of the two. IP Pool on the VPNC. To configure the VPN IP Pool, complete the following steps:

1. In the WebUI, set the filter to a group that contains at least one Branch Gateway configured as a VPNC.

The dashboard context for a group is displayed.

2. Under Manage, click Devices > Gateways.

   A list of gateways is displayed in the List view.

3. Click the Config icon.

   The configuration page for the VPNC group is displayed. You can configure VPN IP pool either in Basic Mode or in Advanced Mode.

   • If you are in the Basic Mode, complete the following steps:
     1. Click the VPN tab.
     2. Click + in the Address Pools table to add address pools. These address pools are used as Inner IPs for remotely connected APs and VIA client.
     3. Enter the following information to add a new address pool:
     • Pool name—The name of the pool.
     • Start address—The starting IPv4 address of the pool.
     • End address—The ending IPv4 address of the pool. The end IP address must be greater than or equal to the start IP address
     4. Select the address pool from the IAP-VPN pool drop-down list (Optional). This is the address pool that is used as the Inner IP of APs working in IAP-VPN mode, and is automatically mapped to the default VPN role.
        • You can view the address pools created in the Basic Mode page in Advanced Mode in the following tabs under VPN > General VPN.
        • Under Security > Roles, select default-vpn-role. Click More and expand VPN. The Address Pool is listed in the L2tp pool drop-down list.

• Click Advanced Mode to access the advanced configuration options.

  1. Click VPN >General VPN.
  2. Click + from the Address Pools table to open the Add New Address Pool section.
  3. Enter the following information in the Add New Address Pool section to create a new address pool:
  • Pool name—The name of the pool.
  • Start address(ipv4)—The starting IPv4 address of the pool.
  • End address(ipv4)—The ending IPv4 address of the pool. The end IP address must be greater than or equal to the start IP address.
  4. Configure the following additional VPN parameters based on your requirements:
  • Source-NAT—Enable this option if the IP addresses of VPN clients must be translated to access the network and select a NAT Network Address Translation. NAT is a method of remapping one IP address space into another by modifying network address information in Internet Protocol (IP) datagram packet headers while they are in transit across a traffic routing device. pool to be used for address translation from the NAT pool drop-down list .
  • VIA SSL fallback—Enable this option to allow VIA SSL Secure Sockets Layer. SSL is a computer networking protocol for securing connections between network application clients and servers over the Internet. fallback.
  • Primary DNS server—Specify the IP address of the Primary DNS Domain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element. Server to be pushed to the VPN client.
  • Secondary DNS server—Specify the IP address of the Secondary DNS Server to be pushed to the VPN client.
  • Primary WINS server—Specify the IP address of the Primary WINS Server to be pushed to the VPN client.
  • Secondary WINS server—Specify the IP address of the Secondary WINS Server to be pushed to the VPN client.

4. Click Save Settings.