Implementation of a tool to manage dynamic virtual private networks on demand in order to interconnect remote isolated devices to the Cloud

Abstract

[ANGLÈS] Nowadays, most industrial manufacturers do not have the possibility to configure or control their remote and isolated machines from wherever, as these machines are usually located in internal and industrial networks without internet access, due to security restrictions. This causes an extra cost on device administration and maintenance, as the only possibility to configure them is going to the factory personally. The aim of this project is to provide an end-to-end IP tunnel (VPN service), from the customer PC at home to a final and remote/isolated machine located on a factory, using the MYKOOTS M2M Platform as the transparent medium. Initially, it will be presented the architecture that integrates the whole VPN service, and the networking part. Firstly, the VPN service has been designed using a standard Linux distribution such as Ubuntu. The main software used for providing the service will be OpenVPN server. The key management will be done with the EasyRSA tool. It will be programmed some scripts using shell scripting programming. Secondly, after a critical drawback found on Ubuntu in a very specific case, the VPN service will be implemented on the operating system Router OS from Mikrotik. The base scripting programming will be the same, although now there are some specific functions that interconnect the Ubuntu OS to the Router OS. Once the end-to-end service is configured and ready to be used, it is time to integrate it on MYKOOTS M2M Platform. It will be created a service that will be directly integrated with the MYKOOTS Front End, so customer can manage their end-to-end tunnels. Finally, as an example, it will be showed a real test case.