What is it? Domain Filtering Preset Modes are an easy way to quickly configure the type of content to block using Cyber Shield Domain Filtering. Each mode blocks a preset selection of Category Groups. A Category Group consists of various related content categories. The three blocking preset modes are: Basic: Adds blocking of websites in […]
What is it? OpenVPN Cloud is a secure, reliable, multi-tenant, virtualized network-as-a-service (NaaS) that provides the foundation for evolving security initiatives like ZTNA and SASE. Since it is a multi-tenant service, when you signup for the service, OpenVPN Cloud creates a virtually dedicated worldwide private network exclusively for your use. This virtual network is called […]
OpenVPN is changing the following terminology used in the OpenVPN Cloud Administration Portal: VPN is changing to WPC (Wide-area Private Cloud) VPN IP address is changing to Tunnel IP address These new terms will not affect the product functionality of users or administrators in any way. They simply identify these terms more appropriately as the […]
An "owner" is a special type of user that has the rights to administer and configure all aspects of the VPN, including billing and subscriptions.
When traffic is split between the VPN interface and other interfaces, split tunneling is said to be in use. When split tunneling is not in use, all traffic uses the VPN interface, which includes internet traffic.
Services are defined as access to specific applications, IP address ranges, and protocols. Services need to be restricted to specific user groups, networks, or hosts.
OpenVPN Connect Auth is the authentication policy that can be enforced during the VPN connection attempts by users belonging to a specific group.
The use of split tunneling is based on the configuration of the Internet Access setting for networks, hosts, and user groups. An administrator should set this based on the desired handling of internet traffic. For example, internet traffic can enter the VPN and exit out of a connected network acting as a VPN egress.
OpenVPN Cloud does not provide direct egress of Internet traffic. Any traffic to the Internet that enters the VPN needs to exit out of a customer’s network. A network can be configured as an exit point for internet traffic by turning the VPN Egress setting ON.
A host represents a server running on the customer’s private network that the VPN is directly extended to by running a connector on the same computing instance as the server.
An Access Group defines a specific access control configuration by specifying the access relationship between sources (i.e. who?) and destinations (i.e. what?).
Device allowance is the default value for all User Groups that limits the number of devices each user can use to connect to the VPN. This value can be changed per User Group if an administrator wants to grant a specific set of users the ability to use more or fewer devices.
This configuration option provides control over the means of distribution of the profile to your VPN users. If Manual distribution is selected, users need to receive the profile from an administrator for each user device and import the profile themselves.
This configuration option provides control over the means of distribution of the profile to users of the VPN. If automatic distribution is selected, users can retrieve profiles using credentials and manager their devices.
A connector VPN subnet is the range of IPv4 address and IPv6 addresses from which IP addresses are assigned to connector clients, which provides OpenVPN Cloud connectivity to networks and hosts.
A user VPN subnet is the range of IPv4 address and IPv6 addresses from which IP addresses are assigned to user devices.
An administrator can configure one of the OpenVPN Cloud VPN regions as the default VPN region for any new user groups and connectors.
An administrator can configure your VPN to use different public or private DNS servers instead of the default DNS servers provided by OpenVPN Cloud.
VPN topology determines whether access controls are in use or not. When set to Custom, your configured services and Access Groups become active.
When your VPN topology is set to full mesh, there is unrestricted access between all users, networks, and hosts.
An OpenVPN Cloud user group allows a set of users to share common settings, such as VPN regions, authentication methods, and so on.
A connector is a special type of OpenVPN Cloud device whose primary function is to provide OpenVPN Cloud connectivity to a private network subnet or private application server.
A network represents your organization's site, either on-premises or cloud based. An administrator configures a network if that network is to be part of the VPN in order to provide site-to-site access or remote access.
An OpenVPN Cloud profile is a configuration file that provides the necessary digital certificates and configuration details to connect to an OpenVPN Cloud VPN region.
A device is a computing entity (e.g. desktop, smartphone, IoT connected device) that has an OpenVPN client installed for access to a VPN.
An administrator is a special type of OpenVPN Cloud user that has been granted permissions to manage all aspects of the VPN.
An OpenVPN Cloud user is an entity that is provisioned by an administrator to authorize access to the VPN.
A VPN region is the geographic area that serves as an OpenVPN Cloud point of presence.