The Opengear device's secondary Ethernet, aka Management LAN, can be used to provide a backup network connection for inbound remote access. You may connect a direct Ethernet drop, or a broadband connection such as cable or DSL via an external modem/router.
When using DSL, the DSL router must be in router mode not bridged mode, i.e. it must terminate the PPPoE/PPPoA connection. Next, you typically configure port forwarding on the DSL router to forward e.g. SSH connections to the Opengear's Management LAN IP – consult DSL router documentation for details.
To configure:
- Login to the Opengear web UI as root or an admin user
- Click System -> Services -> Service Access and in the Management LAN column, select the services you would like to make available through the firewall, and Apply
- For more granular firewalling to restrict access by source network, please see this article
- Click System -> IP -> Management LAN Interface, uncheck Disable, configure IP settings and Apply
- If this connection requires a Gateway (e.g. via the DSL router's internal Ethernet port), you may set it here – the Opengear device uses policy-based routing to allow multiple default routes, ensuring return traffic is sent back out the correct interface
Note: If Management LAN is also being used for outbound failover (System -> IP -> Network Interface -> Failover -> Failover Interface), you may check Dormant Failover Interface to keep it up for inbound access during fail forward.
Comments
0 comments
Article is closed for comments.