This guide is intended for IT administrators, who are looking to route user traffic through a static IP address, for whitelisting purposes.
Why might you need this? Consider these two common scenarios:
Netmaker allows you to deploy an endpoint, and use that endpoint to route all internet-bound traffic, which can then be whitelisted on firewalls, in order to allow either inbound or outbound traffic via a particular IP. Let’s walk through the steps.
In your Netmaker dashboard, both on-prem and via our cloud version, you will see a Node already deployed. In our cloud version, you select a region for your endpoint. On-prem, the server acts as an endpoint.
You can use this endpoint to route the traffic, but if you already have a specific IP you would like to use, you can also deploy your own.
If you want to use a pre-existing IP, you can deploy the netclient on a device with that IP (note: must run Linux).
To do this, simply click the “+Add device” button, and follow the steps
Once the node is visible in your dashboard, you can set it as a Gateway, which will allow it to route traffic from other devices in your VPN to the internet.
To do this, navigate to the “Gateways” screen. Click “+ Create Gateway” and select the node.
Make sure to enable "Set as Internet Gateway" and set a "Default client DNS" resolver (if you don't know what to use, we recommend Google DNS 8.8.8.8).
The last step as an administrator is to invite users to use the VPN. Add their email addresses (or create usernames manually). Additionally, grant them access to the platform. Note: if using our Pro version, you can enabled IDP sync, so that your workspace will be able to join automatically.
When inviting users, select “Service Users”, which will only grant them access to use the VPN client.
Next, add them to the group which has access to the network, which will be “[network name] User Group”
Then, Click “Create User Invites”
Users will then need to download the VPN client, for which they can go to netmaker.io/download.
After installing the client, they will use their credentials (either username/password or oauth) to log in.
They will see the network, and simply click the toggle to connect and disconnect.
‍
While connected, all of this user's internet traffic will flow through the endpoint you have deployed.
Use this endpoint’s public IP when whitelisting traffic, and your users will have access!
Got questions? Email help@netmaker.io to learn more.
GETÂ STARTED