Yealink VC Series Administrator's Manual

Also see for VC Series: Quick start guide

Contents

Configuring Network63outside the office, and site-to-site VPN allows employees in geographically separatedoffices to share one cohesive virtual network. VPN can also be classified by theprotocols used to tunnel the traffic. It provides security through tunneling protocols:IPSec, SSL, L2TP and PPTP.The system supports SSL VPN, which provides remote-access VPN capabilities throughSSL. OpenVPN is a full featured SSL VPN software solution that creates secureconnections in remote access facilities and is designed work with the TUN/TAP virtualnetworking interface. TUN and TAP are virtual network kernel devices. TAP simulates alink layer device and provides a virtual point-to-point connection, while TUN simulates anetwork layer device and provides a virtual network segment. The system usesOpenVPN to achieve the VPN feature. To prevent disclosure of private information,tunnel endpoints must authenticate each other before secure VPN tunnel is established.After the VPN feature is configured properly on the system, the system acts as a VPNclient and uses the certificates to authenticate the VPN server.To use VPN, the compressed package of VPN-related files should be uploaded to thesystem in advance. The file format of the compressed package must be *.tar. TheVPN-related files are: certificates (ca.crt and client.crt), key (client.key) and theconfiguration file (vpn.cnf) of the VPN client. For more information about how topackage a TAR file, refer toOpenVPN Feature on Yealink IP Phones, available online:http://www.yealink.com/DocumentDownload.aspx?CateId=142&flag=142.VPN feature parameters on the system are described below.Parameter Description Configuration MethodVPN->ActiveEnables or disables VPN featureon the system.Default: DisabledNote: You need to upload thecompressed package ofVPN-related files to the systemfirst before enabling the VPNfeature. If you change thisparameter, the system will rebootto implement the changes.Remote ControlWeb User InterfaceUpload VPNConfigUpload the compressedpackage of VPN-related files(*.tar) to the system.Web User InterfaceTo configure VPN via the web user interface:1. Click on Network->Advanced.2. In the VPN block, click Browse to locate the VPN file (*.tar) from your local system.3. Click Upload to upload the file to the system.