The Software-Defined Infrastructure module grants users secure, centralised routed access to the remote IP network segments that are connected to Lighthouse nodes.
While out-of-band management has traditionally focused on providing access to individual device consoles, there is also a need to access entire remote network segments for troubleshooting and management tasks.
IP access to a remote network is typically accomplished by establishing a VPN tunnel via the remote site's in-band gateway – during network disruptions or during initial setup, this access method may become unavailable. Software-Defined Infrastructure is a resilient solution for remote IP access that remains available regardless of the state of the in-band network.
The module's IP Access feature enables a central VPN service on Lighthouse. IP access simplifies client configuration management and automates IP connectivity between the client and target remote network (e.g. network discovery and routing).
The OpenVPN service on Lighthouse creates a bridge between the connecting clients and the node's Management LAN interface. This allows connected clients to access hosts on the node's Management LAN, as if they were physically present at the remote site.
For further detail, see this article.