OpenVPN

OpenVPN

OpenVPN

OpenVPN is an open source based SSL VPN solution that is growing in popularity due to its cost-effective and lightweight nature and the ease of deployment. NoTouch contains OpenVPN and provides an easy to use configuration access. Available out of the box, any NoTouch machine, no matter if on PC or Raspberry Pi, can instantly connect to an OpenVPN-based VPN service.

Please not confuse OpenVPN and OpenConnect. OpenVPN is its own open source based VPN solution, whereas OpenConnect is intended for Cisco, Pulse/Juniper and Palo Alto VPN products. Both options are supported by NoTouch OS.


OpenVPN configuration

You will find the relevant parameters in the Services->OpenVPN section. Only a few parameters need to be set.

Start OpenVPN: The master switch to turn OpenVPN on or off.
OpenVPN server: Host name of IP address to connect to. Optionally, you may specify the TCP port number also in host:port notation. The default OpenVPN port is 1194.
Protocol: OpenVPN can run based on TCP or UDP. Depending on what your VPN concentrator is using, select the corresponding protocol here.
CA certificate: The root certificate of your OpenVPN installation. Simply enter the file name of the certificate uploaded to device.
Client certificate: This machine's client certificate. Simply enter the file name of the certificate uploaded to device.
Client certificate key: This machine's client certificate's private key. Simply enter the file name of the certificate uploaded to device.
Compression: Set it to the compression that the VPN concentrator expects.
Float: Allows the server address to change, provided that the certificate authentication still works (load balancing, fail-over)


Certificates can be uploaded directly to device by following steps mentioned in below article:

https://support.ncomputing.com/portal/kb/articles/upload-certificate-directly-to-rx-hdx-device

Certificates can be managed using NoTouch Center by following steps mentioned in below article:



Customization

The bundled software OpenVPN allows for much more detailed configuration. You can specify any configuration file option that you like, as for example defined in the openvpn.conf man page. Whatever you specify here will be used verbatim, that means you need to familiarize with the OpenVPN software's documentation OpenVPN 2.4 documentation



    • Related Articles

    • How to configure VPN connections on RX-HDX, RX420(HDX) or EX400 thin clients?

      All three thin client families come with support for OpenVPN and OpenConnect (free Cisco VPN client). To setup OpenVPN, see below link for instructions: http://rx-hdx.ncomputing.com/kb/OpenVPN   For OpenConnect, see below link for instructions: ...
    • initramfs - RX-HDX Image Recovery

      Method to recover from RX-HDX image corruption Revision date: February 27, 2019 Description: In some rare cases, certain RX-HDX software component(s) may become corrupted and resulted in the device not being able to boot up properly. The customer ...
    • RX-HDX Audio settings

      USB \ Analog Audio with firmware versions 2.40.3512 and newer. RX-HDX default setting optimizes the USB audio quality and performance. This may have a negative effect on analog audio. The following audio setting applies to RX-HDX firmware versions ...
    • RX-HDX Factory Reset

      This article is for administrators needing to reset an RX-HDX device with a manual process because it has somehow locked or stopped responding to the management tools. Introduction to Factory Rest (FW 2.40.2144+) Important - Do not use a KVM or ...
    • What is a RX-HDX Software Maintenance Update license and where can I purchase it?

      What does it cover? A valid RX-HDX Software Maintenance Update license (per device) enables the customer to receive the following software updates components for that device: RX-HDX firmware updates Quarterly update with the latest Citrix Workspace ...