Proceed as follows to establish a VPN connection between two Intra2net systems:
Make sure that the preparatory steps have all been carried out as described in the 60. Chapter, „Preparing the configuration on the Intra2net system“ on both systems.
On the second Intra2net system, open the menu "" and copy the public part of the WireGuard key to the clipboard. On the first Intra2net system, go to the menu "", click "", paste the key from the clipboard and save.
On the first system, open the menu "" and create a new connection. Select the type "" and in the next step "".
Enter the external DNS hostname of the remote site and the UDP port number of the WireGuard interface there. Select the previously imported public key of the remote site.
Next, select the nets to be connected on both sides.
Configure the rights for incoming connections from the remote site. In particular, ensure that you do not select a firewall ruleset that is too permissive and only allow the connections that are actually required. If in doubt, create a dedicated firewall ruleset for this VPN connection.
The last step is to configure activation. A passively/manually started connection remains offline for the time being and is then started when required. This can be done via the mainpage, via an IP packet to be sent from this side or via a handshake from the other side.
If the connection is always started, the Intra2net system constantly tries to establish the connection and keep it open. For the latter in particular, a keepalive should also be configured, which keeps a connection online once it has been opened.
Export the connection configuration by clicking on "Download" and transfer it to the other side. The configuration contains the pre-shared key and should therefore only be transferred in encrypted form.
On the second system, open the menu "" and create a new connection. Select the type "".
Paste the previously exported configuration file and save.
If the VPN connection is to be permanently connected, we recommend configuring the connection so that it can be established from both sides. This increases stability and ensures that the connection is re-established more quickly in the event of an interruption.