The routers of INSYS icom can act as OpenVPN server and/or establish connections to an OpenVPN server as OpenVPN client.

This Configuration Guide shows how to configure an INSYS icom router as OpenVPN client.

The description in this Configuration Guide follows a configuration in the new user interface (web interface) available from icom OS 5.5. Update your router to the latest version of icom OS for the required functionality of the new user interface. The description of this configuration in the classic web interface is available in this Configuration Guide.


The router shall be included into an existing OpenVPN network as client.


The Startup wizard of the router permits to prepare an optional OpenVPN connection besides the configuration of Internet access.

It is prerequisite that the respective certificates and keys or an OpenVPN configuration file are available and the configuration of the server is known. We act on the assumption that the router is in default settings for the following proceeding.

Warning Update your router to iom OS 7.3 or later first! All encryption algorithms that are no longer considered sufficiently secure have been removed starting with this version, which eliminates the possibility of such algorithms being used inadvertently.

Configuration via web interface

  1. Open the user interface of the router in a browser: insys.icom [1]

  2. Click on To Startup wizard under auto fix Startup wizard on the splash screen.

  3. Click in the handshake outline WizardsStartup wizard menu on   START  auto fix white  .

  4. If necessary, change the settings for System time and click on   NEXT  menu right white  .

  5. Enter a User name and Password for Authentication or configure an Authentication through certificates and click on   NEXT  menu right white  .

  6. Configure the Internet connection and click on   NEXT  menu right white  .

  7. Select under Type of VPN connection OpenVPN and as Client as Mode.

    1. If you have an OpenVPN configuration file, select Import Client Configuration (.ovpn) and upload the configuration file in the field below. [2].

    2. If you configure the OpenVPN client manually, select Manual client configuration and configure the connection to the OpenVPN server manually:

      • Enter the address of the OpenVPN server as VPN server address.

      • Enter the port addresses of the tunnel used by the OpenVPN server local and remote for Tunneling via port.

      • Upload the necessary certificates and keys.

  8. Click on   NEXT  icon: menu-right_white]  .

  9. If necessary, modify the LAN settings and click on   NEXT  menu right white  .

  10. Click on   SUBMIT   to save the settings of the Startup wizard.

  11. Click on   FINALIZE  cog white   to complete the Startup wizard.

Functional test

Open the view dashboard outline StatusDashboard page in the menu and observe the establishment of the WAN chain with the OpenVPN tunnel in the WAN chain section.


  • The status of the WAN chain and their interfaces is displayed on the view dashboard outline StatusDashboard page. If an interface does not achieve the online condition, its condition can also be examined on this page.

  • When configuring the OpenVPN connection with the Startup wizard, only the most important settings are made, but in most cases these are sufficient to establish a connection. If this is not possible, check the detailed settings of the OpenVPN connection. To do this, click on pencil in the line of the created OpenVPN interface in the lan NetworkInterfaces menu in the OpenVPN section to check or edit the settings. Click on menu right to extended view at the top right to show the detailed settings.

  • In case the OpenVPN server requires a static key for authentication and encryption (tls-crypt) or only for authentication (tls-auth) additionally, or a user name/password combination for authentication additionally, these need to be configured also.

  • If no network traffic is achieved, the tools integrated in the router can be used for debugging.

  • Check in the view dashboard outline StatusLog-View menu the messages in the OpenVPN log. [3].

  • Disable the IP filters for IPv4 in the lan NetworkFirewall / NAT menu under Settings IP filter to check whether incorrect filter settings are the reason for connection problems.

Back to the Configuration Guides for icom OS Smart Devices

Back to overview

1. Default IP address:; authentication depending on configuration; default for past firmware versions: User name: insys, Password: icom
2. Various OpenVPN servers, such as the icom Connectivity Suite, provide ready-made configuration files for clients that contain a complete OpenVPN configuration and the associated certificates and keys
3. The selection of log files is limited to files that already contain entries