The SSL VPN functionality in the Console allows you to connect to the Edge Gateway remotely via a downloadable client and access any of the virtual machines running on your iland Cloud networks. The client requires no additional configuration on the client machine or network to function.
Supported client operating systems:
|Operating System||Supported Versions|
8 , 10 (including Windows 10 Secure Boot option enabled)
|Mac OS Sierra||10.12.6|
|Mac OS High Sierra||10.13.4|
|Mac OS Mojave||10.14.2 to 10.14.6|
|Linux Fedora||26, 28|
|Linux CentOS||6.0, 7.5|
As an administrator, you simply need to log into the Networking page of the iland cloud console, enable the SSL VPN functionality, and create users and passwords for all users that will access the iland cloud console. Then, provide them with the unique URL for your environment, and they can download the VPN and install it on as many devices as they please. By default, your Edge Gateway supports up to 100 simultaneous connections at once. See the Further Information section at the bottom of this page if you have a non-standard Edge deployment.
In order to set up the SSL VPN on your Edge gateway, you will need to know the following:
Remember: Even if you choose local authentication, these SSL VPN users are independent of other logins used to access your iland Cloud environment. VPN users will not be able to log in to the iland Console with these credentials, and Console users will need to have a second set of credentials created within the VPN configuration wizard if they want to use the SSL VPN.
There are also a few limitations on what the SSL VPN can and can't do. Here are some of the more important items:
Note: While the Console does not currently include support for adding custom Primary and Secondary DNS servers as part of the initial configuration, our SSL VPNs do support that functionality. At this time, if you need to add these servers to configure your internal DNS, please contact our support team via the live chat, the console support form, or https://www.iland.com/support
Navigate to the Networking page of the Console from the Secure Cloud Org level dashboard. Once it loads, Select the location of the Edge Gateway you want to modify. For each location, you should see the following list of edges displayed in the main window.
Select the gateway you want to work with from the list, and you will be brought to the configuration page for that gateway.
Once you have logged into your environment through the Console, navigate to the Networking tab and you should see the name of your Edge Gateway displayed at the top of the page. Click on the "Actions" Drop-Down Menu on the right-hand side of this panel, and select "SSL VPN".
This will open the configuration window for the SSL VPN in your iland Cloud environment.
As mentioned above, the SSL VPN Configuration page in the Console supports several different kinds of Authentication Servers. Below, you can find a list of the information needed to add each type of server, as well as their configuration options:
The final step after configuring and connecting to the SSL VPN is to allow access through the Edge firewall.
Once you are connected with the SSL VPN client, you will be able to access any of the machines on the subnets you configured in your iland Cloud environment. You can RDP, SSH, or connect using any protocol you have allowed on your network. Remember though, machines on the network are unable to communicate with clients connected via VPN, and connected clients are unable to communicate with each other as well.
If you have configured the client in the Console, and you still see issues connecting, here a few things you can do to try to resolve the problem:
If you have trouble downloading the client: