VPN on Demand

Domotz gives you the possibility to create a VPN directly from your Domotz Agent, without the need of subscribing to any external service.

The feature is accessible from the Agent Dashboard, by selecting the following tile:

VPN on Demand 1

and then clicking on the VPN tab:

VPN on Demand 2

There are two different VPN Routing Policies available:

  • GLOBAL: using this option all the traffic generated from the PC on which you configure the VPN will be routed through the VPN. This means that you’ll be able to reach all the devices visible to the Domotz Agent (VLANs devices and additional subnets). Moreover all the internet traffic from your PC will pass through the VPN and it will be encrypted. Your global IP address will become the one of the Domotz Agent.
  • LOCAL: with this configuration only the devices connected to the same subnet of the Domotz Agent will be reachable from your PC, and your internet traffic won’t pass through the VPN. Your global IP address will remain unchanged.

VPN on Demand 3

Once you open the VPN tunnel a configuration file will be downloaded. You can import the configuration file with VPN free clients. You can try with the following external tools:

VPN on Demand 4

The VPN tunnel will stay active for 1 hour. You can close it anytime. If you loose the configuration file you need to close the tunnel and open it again; the configuration is new and different everytime.

The data consumption during a VPN session is deducted from your monthly Remote Connection Traffic.

 

If you have installed the Domotz Agent either via the Snapcraft (on an Ubuntu machine) or you have the Domotz Agent on the Virtual Machine (VirtualBox, VMWare or Hyper-V) the following commands should be executed from within the machine itself:

sudo snap install domotzpro-agent-publicstore
sudo snap connect domotzpro-agent-publicstore:firewall-control
sudo snap connect domotzpro-agent-publicstore:network-observe
sudo snap connect domotzpro-agent-publicstore:raw-usb
sudo snap connect domotzpro-agent-publicstore:shutdown
sudo snap connect domotzpro-agent-publicstore:system-observe

sudo sh -c 'echo tun >> /etc/modules'
sudo modprobe tun

 
This will basically make the Domotz Agent able to control the network stack to create a VPN on Demand tunnel.

After doing that restart the Agent package:
 
sudo snap restart domotzpro-agent-publicstore

Updated on April 25, 2022

Was this article helpful?