VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN
VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN
2023-03-29 16:03:37
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.1.2 Build 20230210 Rel.62992

Hi, sorry for my english, i m learning.

 

Recently i bought 2 ER605 to connect VPN between 2 networks of the same company.

 

I have configured OPEN VPN  with user autentication.

 

That works, but i can ping any ip of the server by the client, although i can't ping any ip adress of the client by the server. For example, we have two equal devices that a person of the server need to access, she can only access the server device, but if she goes to the client, she can use the two devices.

 

please help me.

 

 

Network1 (server)

Local: 10.10.10.0/24
Router: 10.10.10.1
RANGE DHCP: 10.10.10.110 to 10.10.10.219
VPN IP POOL: 172.16.10.100 to 172.16.10.200

 

Screen of the server:

 

 

Network1 (client)

Local: 10.10.11.0/24
Router: 10.10.11.1
RANGE DHCP: 10.10.11.101 to 10.10.10.200
 

 

Screen of the client:
 

 

 

Thanks for the help.

  0      
  0      
#1
Options
3 Reply
Re:VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN
2023-03-29 17:56:45

  @lrodriguesthat I am still waiting for the Wireguard capable firmware for my ER605V1 but I think you want a tunnel between them, rather than client/server, because you want to route IPs from your two private subnets back and forth across the tunnel.  There has to be routing for this to work.

 

I know you can do what you want with client/server L2TP/IPSEC VPN....because that's what I have to do today.

<< Paying it forward, one juicy problem at a time... >>
  0  
  0  
#2
Options
Re:VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN
2023-03-29 18:48:20

  @d0ugmac1 Hi, thanks for response, ok, i have configured l2tp, in NAT mode, but still doesnt work, i can ping any IP from the client to the server but can't ping any ip from the server to the client .

I will send the prints to you see.(first i desactivate the open vpn server.)

 

 Router IP 10.10.10.1


 

 

Client Router IP 10.10.11.1

Thnks for any help.

 

 

 

  0  
  0  
#3
Options
Re:VPN With ER605 doesnt works winth LAN TO LAN on OpenVPN
2023-03-29 20:29:14 - last edited 2023-03-29 20:32:42

  @lrodriguesthat you are almost there, you just need it in 'Route' mode

 

 

Also your remote subnets are wrong.  If the server is on 10.10.10.x then the tunnel remote subnet is 10.10.11.0/24, and then if the client is on 10.10.11.x, it's remote subnet is 10.10.10.0/24.  They should never be the same subnet ie 172.24.0.0!

 

You can further use Policy Routes to force all users on 1 site to go via the VPN tunnel and access interenet etc from the other site if desired.

 

<< Paying it forward, one juicy problem at a time... >>
  2  
  2  
#4
Options