Connect two vpn routers including vlan

Connect two vpn routers including vlan

Connect two vpn routers including vlan
Connect two vpn routers including vlan
2024-11-04 11:07:58
Model: ER605 (TL-R605)  
Hardware Version:
Firmware Version:

Hi everyone,

 

I'm setting up a network where I want to allow remote access to a specific VLAN on the main site through a couple of TP-Link ER605 routers. Here's my current setup:

  • Main Site: ER605 router is connected to a Starlink satellite in bypass mode.
  • Remote Site: Another ER605 router, which needs to connect to the main site's VLAN.
  • Network: I have a Starlink subscription that provides a public IP address.

 

Goal: Allow devices on the remote site to access a specific VLAN on the main site through a secure connection, ideally using a VPN setup that the ER605 routers can handle.

I'm looking for advice on the following:

 

  1. VPN Setup: What’s the best way to set up VPN between the two ER605 routers to ensure secure and reliable connectivity? Has anyone had experience with IPsec or OpenVPN in this context?
  2. Starlink’s Public IP: Since I have a public IP, should I expect any additional firewall or port forwarding configurations for Starlink, or does the bypass mode handle this well?
  3. VLAN Configuration: What’s the recommended way to configure VLANs on the ER605 so that only the intended VLAN traffic is accessible from the remote site?

 

Any insights or examples from similar setups would be hugely appreciated! Thanks in advance for your help. 😊

  0      
  0      
#1
Options
1 Reply
Re:Connect two vpn routers including vlan
2024-11-06 00:47:39

Hi @rom27654 

Thanks for posting in our business forum.

When you configure the VPN for site to site, you configure the local and remote network, that's where you define the VLANs accessible for another site.

 

rom27654 wrote

 

  1. VPN Setup: What’s the best way to set up VPN between the two ER605 routers to ensure secure and reliable connectivity? Has anyone had experience with IPsec or OpenVPN in this context?
  2. Starlink’s Public IP: Since I have a public IP, should I expect any additional firewall or port forwarding configurations for Starlink, or does the bypass mode handle this well?
  3. VLAN Configuration: What’s the recommended way to configure VLANs on the ER605 so that only the intended VLAN traffic is accessible from the remote site?

 

Any insights or examples from similar setups would be hugely appreciated! Thanks in advance for your help. 😊

Not really sure what you mean best way. VPN is a secure and reliable way, regarding what kind of VPN types, usually, site-to-site is based on IPsec as it is designed for the site-to-site.

 

If you get the public IP address and it displays on the router's WAN interface, then you don't have to configure anything. Just VPN and make the connection.

 

You don't have to configure VLAN. As you have created the VLAN interfaces beforehand, you just configure the VPN and pick the correct remote/local networks for the job.

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#2
Options