Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.0.6
Download PDF
Copy Link

vpn ocvpn

One-Click VPN (OCVPN) is a cloud-based solution that greatly simplifies the provisioning and configuration of IPsec VPN. The control plane is managed separately from the data plane, and this happens automatically as devices join/leave the VPN, as subnets are added/removed, when dynamic external IPs change (e.g. DHCP/PPPoE), and when WAN interface bindings change (as in the dual WAN redundancy case).

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.1.

Command Description

config subnets

edit <id>

set type {subnet | interface}

set interface <name>

LAN interfaces can now be specified instead of just subnet IP/netmask.

Note that interface is only available when type is set to interface.

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

config vpn ocvpn

New config command.

Configure One-Click VPN settings.

config vpn ocvpn
    set status {enable | disable}   Enable/disable Overlay Controller cloud assisted VPN.
    set poll-interval {integer}   Overlay Controller VPN polling interval. range[30-120]
    config subnets
        edit {id}
        # Internal subnets to register with Overlay Controller VPN service.
            set id {integer}   ID. range[0-4294967295]
            set type {subnet | interface}   Subnet type.
                    subnet     Configure participating subnet IP and mask.
                    interface  Configure participating LAN interface.
            set subnet {ipv4 classnet any}   IPv4 address and subnet mask.
            set interface {string}   LAN interface. size[15] - datasource(s): system.interface.name
        next
    set ha-alias {string}   Hidden HA alias. size[35]
end

vpn ocvpn

One-Click VPN (OCVPN) is a cloud-based solution that greatly simplifies the provisioning and configuration of IPsec VPN. The control plane is managed separately from the data plane, and this happens automatically as devices join/leave the VPN, as subnets are added/removed, when dynamic external IPs change (e.g. DHCP/PPPoE), and when WAN interface bindings change (as in the dual WAN redundancy case).

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.1.

Command Description

config subnets

edit <id>

set type {subnet | interface}

set interface <name>

LAN interfaces can now be specified instead of just subnet IP/netmask.

Note that interface is only available when type is set to interface.

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

config vpn ocvpn

New config command.

Configure One-Click VPN settings.

config vpn ocvpn
    set status {enable | disable}   Enable/disable Overlay Controller cloud assisted VPN.
    set poll-interval {integer}   Overlay Controller VPN polling interval. range[30-120]
    config subnets
        edit {id}
        # Internal subnets to register with Overlay Controller VPN service.
            set id {integer}   ID. range[0-4294967295]
            set type {subnet | interface}   Subnet type.
                    subnet     Configure participating subnet IP and mask.
                    interface  Configure participating LAN interface.
            set subnet {ipv4 classnet any}   IPv4 address and subnet mask.
            set interface {string}   LAN interface. size[15] - datasource(s): system.interface.name
        next
    set ha-alias {string}   Hidden HA alias. size[35]
end