Overview
Netmaker's Managed Endpoint is a dedicated netclient instance maintained on Netmaker's infrastructure to perform various network functions. It acts as a versatile tool, providing solutions for remote access, improving network reachability, and ensuring failover capabilities. This documentation outlines the features, setup, and usage of the Managed Endpoint in Netmaker SaaS (software as a service).
Features
Remote Access Gateway: Facilitates secure remote access to local networks.
Relay: Enhances reachability for devices behind restrictive NAT or CGNAT.
Failover: Ensures continuous network availability by rerouting traffic through the Managed Endpoint.
Internet Gateway: Internet gateways allow hosts in a Netmaker mesh network to connect to the internet via the managed endpoint as an internet gateway.
Example Usages
1. Remote Access Gateway
When accessing a local network remotely, using the Managed Endpoint as a Remote Access Gateway provides a more reliable and secure method.
Steps to Configure:
Access Netmaker Dashboard: Log in to your Netmaker account.
Navigate to the Default Network: Go to the 'Networks' section and then ‘netmaker’.
Configure a Remote Access Gateway with Client:
Click on 'Remote Access'.
Select 'Create Config' button to generate a new client config.
Configure the network and access settings as required.
Click the ‘Create Client’ button to finish.
Connect Clients:
Download the vpn configuration file.
Install wireguard client on the remote devices.
Connect using the provided configuration file.
Or use ‘Remote Access Client (RAC)’ to connect.
2. Relay
For devices behind restrictive NAT or CGNAT, using the Managed Endpoint as a Relay server can make them reachable.
Steps to Configure:
Access Netmaker Dashboard: Log in to your Netmaker account.
Navigate to the Default Network: Go to the 'Networks' section and then ‘netmaker’.
Create a Relay:
Click on the 'Relays' tab.
Press the 'Create Relay' button.
Now select the managed endpoint as the host.
Finally press the ‘Create Relay’ button to finish creating the relay server.
Create Relayed Hosts:
Click on the ‘Add relayed host’ button.
Select all the hosts in your network that you want to be relayed through the relay server.
Then press the ‘Update relay’ button to finish setting up the relay configuration.
3. Failover
Setting the Managed Endpoint as a Failover ensures that if a machine moves to an inaccessible environment (e.g., behind CGNAT), it will automatically route through the Managed Endpoint, ensuring continuous availability.
Steps to Configure:
Access Netmaker Dashboard: Log in to your Netmaker account.
Navigate to the Default Network: Go to the 'Networks' section and then ‘netmaker’.
Create a Failover:
Go to the ‘Hosts’ tab.
Toggle the ‘Failover Node’ on the managed endpoint host.
Now the managed endpoint will act as a failover node when it is needed.
5. Internet Gateway
The Managed Endpoint can be configured as an Internet Gateway, allowing all outbound traffic from the local network to be routed through it. This is useful for centralized control over internet access, traffic logging, and implementing network security policies.
Steps to Configure:
Access Netmaker Dashboard: Log in to your Netmaker account.
Navigate to the Default Network: Go to the 'Networks' section and then ‘netmaker’.
Create an Internet Gateway:
Click on the 'Internet Gateways' tab.
Then press the ‘Create Internet Gateway’ button.
Select the managed endpoint instance as the host.
And then select hosts which will route their internet traffic through the gateway.
Finally press ‘Create Internet Gateway’ to finish creating the gateway.
Conclusion
Netmaker's Managed Endpoint provides robust solutions for network management, improving remote access, reachability, and availability. By leveraging these features, users can ensure secure and reliable network connectivity, even in challenging environments.