Introduction for Administrative Users > Private Subnets on the OnBoard

Private Subnets on the OnBoard
Connected devices should be isolated (as recommended under Device Configuration) on a management network that is separate from the production network and from the public network. With the recommended configuration, the OnBoard administrator must create at least one private subnet for communicating with connected devices. The administrator must then assign to each connected device the following two address-related parameters:
If a device is not assigned a private subnet, the OnBoard attempts to contact the device using the default route, which cannot work unless the device is connected to a network on the public side of the OnBoard.
For more details about setting up subnets, see the following related topics.
Private subnets can be configured in the Web Manager on the Wizard Subnets screen or on the Network Private Subnets screen as described in:

Introduction for Administrative Users > Private Subnets on the OnBoard