SOTI VPN | Configuration Details

Important: The SOTI Virtual Private Network (VPN) profile configuration requires a Premium Plus or an Enterprise Plus SOTI MobiControl license. To assign a VPN server in your profile configuration, you must have Assign VPN Servers permission.
Configure the following settings when:

Network

VPN Servers Select to add a VPN server. When adding a VPN server, specify the external IP address of the server for clients to connect to in the Address field. Then, specify the port number and select a VPN server from your enrolled VPN servers.
Note: You may specify a different port number for traffic forwarding if necessary; however, make sure to use port 51820 for forwarding traffic to the SOTI VPN server.
Remember: When selecting a VPN server, you see a list of all enrolled VPN servers that you have the permissions to assign. If you do not see your VPN server listed, verify that the user has the Assign VPN Servers permissions. Also, make sure that the server itself is enabled. See Configuring SOTI VPN Server Settings.
Internal Domain Name Service (DNS) Server Address [Optional] Specify the IP address of the internal DNS server used to resolve addresses on your enterprise network.
Note: If you leave this value blank, it uses your device’s default DNS server to resolve Fully Qualified Domain Names (FQDN).
Applications
Important: Per-app VPN configuration is only available for Android Work Managed, Corporate Owned Personal Enabled (COPE), and Work Profile devices. Windows Modern devices do not support this feature.
Per App VPN Enable this toggle to grant VPN access to specific applications. Select to search for an application. Applications not part of this list are exempt from using the VPN.
Tip: You can select to import a list of applications in a .csv or a .txt file.

Split Tunnel

Split-tunnel VPN Enable this toggle to configure a split tunnel where the device uses a VPN connection for specific resources. Specify the resources using the Classless Inter-domain Routing (CIDR) notation. Only connections to the address ranges specified in the Tunneled Resources field use the VPN.
Tunneled Resources Select to add IP addresses of your tunneled resources.