Unable to access VPN client LAN in router over SSL VPN SERVER in router too.

Unable to access VPN client LAN in router over SSL VPN SERVER in router too.

17 Reply
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago - last edited 2 weeks ago

  @MME 

 

MR.S wrote

  @Raphyraphy 

 

I did a test here, an ER707-M2 with SSL VPN server and the same router has an OpenVPN client for some remote networks. when I connect to the SSL VPN with my PC, I only get the local networks on the ER707, I don't know how to route from the SSL VPN to the OpenVPN client on the same router. so I can't connect to any of the networks that go in the OpenVPN client on the router. I use a full tunnel so all traffic from my PC goes out on the ER707 LAN and WAN but not OpenVPN.

 

 

 

That's exactly it! Let's wait for the answer from @Clive_A  to see if he has any idea on how to route this. In any case thank you very much for your help, it is really much appreciated!

  0  
  0  
#12
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago - last edited 2 weeks ago

  @Raphyraphy 

 

I get it to work, Next hop is gw ip in openvpn tunnel on the client

 

 

 

 

 

 

 

 

 

  0  
  0  
#13
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago

  @MR.S 

 

My VPN client

 

 

So i tried with 192.168.113.1

 

 

But not working, very strange

 

  0  
  0  
#14
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago

  @Raphyraphy 

 

you should not use openvpn pool that overlaps with any of your LAN, put a random 10.xx.xx.xx ip pool on vpn. you have to do that on both of your vpn servers.

 

 

  0  
  0  
#15
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago

  @MR.S 

 

MR.S wrote

  @Raphyraphy 

 

you should not use openvpn pool that overlaps with any of your LAN, put a random 10.xx.xx.xx ip pool on vpn. you have to do that on both of your vpn servers.

 

 

 

To change the IP pool of the VPN Server no problem I put 10.23.1.10-10.23.100.

 

On the other hand to change the assignment of the local IP of the VPN Client, I tried to put 10.24.1.10-10.24.1.100, but I no longer had access to the server 10.101.1.25 even with the PCs connected directly to the router of the VPN Client (the router that contains all the VPNs), and since it is during the day, I cannot completely cut this access while I do some tests. I guess I need to create a new VLAN 10.24.1.1 in this router for it to work... I will do some tests tonight, thanks.

  0  
  0  
#16
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago - last edited 2 weeks ago

  @MR.S 

 

Just to confirm that I'm going in the right direction, the local IPs indicated in the OpenVPN client configuration, do you also have a VLAN already created which contains this range of IPs?

 

 

  0  
  0  
#17
Options
Re:Unable to access VPN client LAN in router over SSL VPN SERVER in router too.
2 weeks ago

  @Raphyraphy 

 

NO, VPN ip pool should be VPN ip pool not LAN interface. so make sure that the VPN pool does not overlap with any of the other networks you have. and you have to do it on both vpn servers.
so the only thing you have to do now is change the pool on your vpn servers and it should work. I have tested on an ER8411 and it worked on that too

 

  0  
  0  
#18
Options