VPN Setup
Integrate DuploCloud with OpenVPN by provisioning VPNs for users
DuploCloud integrates with OpenVPN by provisioning VPNs for users added through the DuploCloud Portal. The OpenVPN setup involves a two-step process: accepting the OpenVPN agreement in the GCP Marketplace, and Provisioning a VPN in the DuploCloud Portal.
Accepting OpenVPN
Accept the OpenVPN Free Tier (Bring Your Own License) agreement in the GCP marketplace:
Log into your GCP account.
In the Google Cloud Console, navigate to the Marketplace.
Search for OpenVPN in the Marketplace.
Select the product (OpenVPN Free Tier) and accept the agreement.
Provisioning a VPN
In the DuploCloud Portal, navigate to Administrator -> System Settings.
Select the VPN tab.
Click Provision VPN. Behind the scenes, DuploCloud launches a cloud formation script to provision the OpenVPN. OpenVPN is ready to use.
You can find the OpenVPN admin password in the cloud formation stack in your GCP console.
Optional VPN Configurations
Provisioning a VPN While Creating a User
In the DuploCloud Portal, navigate to Administrator -> Users.
Click Add. The Create User pane displays.
Enter the username in the Username field.
In the Roles field, select the appropriate role(s) for the user.
Select Provision VPN.
Click Submit.
Deleting VPN Access for a User
See Deleting a VPN user. To delete VPN access, you must have administrator privileges.
Opening a VPN Port
By default, users connected to a VPN can SSH or RDP into virtual machines (VMs). Users can also connect to internal Load Balancers and application endpoints. However, you must open a VPN port to connect to other Services, such as databases and ElastiCach.
In the DuploCloud Portal, navigate to Administrator -> Tenants.
Select the Tenant in the NAME column.
Select the Security tab.
Click Add. The Add Tenant Security pane displays.
In the Source Type field, select Ip Address.
In the IP CIDR field, enter the VPN IP address range in CIDR notation, for example,
10.0.0.0/24
or192.168.1.0/24
.In the Protocol list box, select the protocol you wish to allow through the VPN port.
Enter the range in the Port Range field, specify the port or range of ports that need to be opened.
Enter a brief description of the security rule being added in the Description field.
Click Add. The VPN port is open.
Last updated