vpn ocvpn
One-Click VPN (OCVPN) is a cloud-based solution that greatly simplifies the provisioning and configuration of IPsec VPN. The control plane is managed separately from the data plane, and this happens automatically as devices join/leave the VPN, as subnets are added/removed, when dynamic external IPs change (e.g. DHCP/PPPoE), and when WAN interface bindings change (as in the dual WAN redundancy case).
History
The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.1.
Command | Description |
---|---|
config subnets edit <id> set type {subnet | interface} set interface <name> |
LAN interfaces can now be specified instead of just subnet IP/netmask. Note that |
The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.
Command | Description |
---|---|
config vpn ocvpn |
New Configure One-Click VPN settings. |
config vpn ocvpn set status {enable | disable} Enable/disable Overlay Controller cloud assisted VPN. set poll-interval {integer} Overlay Controller VPN polling interval. range[30-120] config subnets edit {id} # Internal subnets to register with Overlay Controller VPN service. set id {integer} ID. range[0-4294967295] set type {subnet | interface} Subnet type. subnet Configure participating subnet IP and mask. interface Configure participating LAN interface. set subnet {ipv4 classnet any} IPv4 address and subnet mask. set interface {string} LAN interface. size[15] - datasource(s): system.interface.name next set ha-alias {string} Hidden HA alias. size[35] end