Business Community > Gateways > Site-to-Site VPN does not see devices on other end
< Gateways

Site-to-Site VPN does not see devices on other end

Site-to-Site VPN does not see devices on other end

Site-to-Site VPN does not see devices on other end
Site-to-Site VPN does not see devices on other end
2024-11-11 18:58:42 - last edited 2024-11-12 01:59:30
Tags: #VPN #Controller Related
Model: FR365  
Hardware Version: V1
Firmware Version: 1.0.2 Build 20240718 Rel.82712

Hi. Need some help here.

 

I have setup Automatic Site-to-Site VPN connection. Office has a FR205 unit and external site FR365.

 

Have opened UDP port on the modem 1164 and forward to the router. This port was documented in OpenVPN documentation.

 

Office has IP addresses in the 192.168.1.xx range and remote site in the 192.168.17.xx range

 

How can I verify that connection has been established and access devices on either site.

 

Thanks.

 

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Site-to-Site VPN does not see devices on other end-Solution
2024-11-12 01:32:51 - last edited 2024-11-12 01:59:30

Hi @wllmdjngh 

Thanks for posting in our business forum.

Go to Insight and view the VPN status.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
Recommended Solution
  1  
  1  
#2
Options
8 Reply
Re:Site-to-Site VPN does not see devices on other end-Solution
2024-11-12 01:32:51 - last edited 2024-11-12 01:59:30

Hi @wllmdjngh 

Thanks for posting in our business forum.

Go to Insight and view the VPN status.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
Recommended Solution
  1  
  1  
#2
Options
Re:Site-to-Site VPN does not see devices on other end
2024-11-12 15:11:36

  Thanks @Clive_A.

Nothing is reported.  Only message shown:

 

 

 

I am a user of a VPN Client to server comunication. Not experienced on setting up VPN.

 

Should a user be setup to connect to remote site or sites should be visible when Site-to-Site is configured?

 

Regards.

  0  
  0  
#3
Options
Re:Site-to-Site VPN does not see devices on other end
2024-11-13 01:08:38

Hi @wllmdjngh 

Thanks for posting in our business forum.

wllmdjngh wrote

  Thanks @Clive_A.

Nothing is reported.  Only message shown:

 

 

 

I am a user of a VPN Client to server comunication. Not experienced on setting up VPN.

 

Should a user be setup to connect to remote site or sites should be visible when Site-to-Site is configured?

 

Regards.

If there is no tunnel displayed then the VPN is not up.

Consider the regular steps of VPN troubleshooting. It looks like they don't connect due to the IP issue. Generic IPsec Site-to-Site guide on the official website, FAQ, would be helpful in your examination.

 

How to set up Site-to-Site Manual IPsec VPN Tunnels on Omada Gateway via Omada Controller

How to set up site-to-site Auto IPsec VPN Tunnels on Omada Gateway in Controller Mode

 

You are on Site-to-Site. If possible, I recommend you draw a diagram with the IPs specified. Especially the WAN if they are actually on the public Internet.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
  1  
  1  
#4
Options
Re:Site-to-Site VPN does not see devices on other end
2025-02-22 23:12:12

 Hi  @Clive_A,
@Clive_A Still trying to setup VPN between 2 sites.

Our setup is:

Each site has dual ISP connections with modems

Only one Modem at each site is setup with DMZ zone pointing to the respective Festa router

Ping respond to both sites each with respective domain

IP range are different at each site

Created a Shared key with OpenSSL

Have no VLAN setup

 

Below is an image of one the router configuration. The second router is similar with the exception for the Remote Gateway and Subnets.
Advanced configuration default.

 

Have not been able to establish the VPN connection.

When this is accomplished, would like to be able to use hostnames instead of IP address on either side.  Is this possible. Should DHCP L2 be checked for this to be enabled?

Appreciate your input.

  0  
  0  
#5
Options
Re:Site-to-Site VPN does not see devices on other end
2025-02-24 02:38:01

Hi @wllmdjngh 

Thanks for posting in our business forum.

wllmdjngh wrote

 Hi  @Clive_A,
@Clive_A Still trying to setup VPN between 2 sites.

Our setup is:

Each site has dual ISP connections with modems

Only one Modem at each site is setup with DMZ zone pointing to the respective Festa router

Ping respond to both sites each with respective domain

IP range are different at each site

Created a Shared key with OpenSSL

Have no VLAN setup

 

Below is an image of one the router configuration. The second router is similar with the exception for the Remote Gateway and Subnets.
Advanced configuration default.

 

 

Have not been able to establish the VPN connection.

When this is accomplished, would like to be able to use hostnames instead of IP address on either side.  Is this possible. Should DHCP L2 be checked for this to be enabled?

Appreciate your input.

Hostname might not be possible as right now this model does not support LAN DNS.

But something you might try.

You can edit your current hosts file on your computer to map the hostname to a remote computer IP. That should work.

Or you can dedicate a local DNS server that you host yourself and set this DNS server as the LAN DNS. This will save you time to configure the hosts file on each computer in the LAN.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
  1  
  1  
#6
Options
Re:Site-to-Site VPN does not see devices on other end
2025-02-24 10:03:08

  Thanks for the tip @Clive_A .

 

Now the only issue pending is the connection which I have not been able to establish.

 

Any tips on that?

 

Thanks

  0  
  0  
#7
Options
Re:Site-to-Site VPN does not see devices on other end
2025-02-25 01:23:32

Hi @wllmdjngh 

Thanks for posting in our business forum.

wllmdjngh wrote

  Thanks for the tip @Clive_A .

 

Now the only issue pending is the connection which I have not been able to establish.

 

Any tips on that?

 

Thanks

VPN Connectivity and Access Troubleshooting Guide

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced. ● I don't provide ETA for any products/features. No comment.
  1  
  1  
#8
Options
Re:Site-to-Site VPN does not see devices on other end
2025-03-08 23:20:01

  @wllmdjngh 

I am frustrated. Dedicated a lot of time to figure out how to establish this type of connection between only 2 sites.  When operational, more site could be implemented.

 

Thought that TP-Link Festa would be an easy setup for VPN, as mentioned in the sales literature.  Little knowledge to implement small business networks.

Have tried so many options and no way I have been able to establish such a connection.

 

Have some networking knowledge but I am no expert and do not pretend to be anytime in the future.

To check with Wireshark goes above my level of knowlege and no time to investigate..

 

Configuration setup:

Remote site with Festa Festa FR365 v1.0

Modem to Fiber optic to ISP with dynamic IP and DDNS is setup

Modem is setup with DMZ to the router

Have been able to connect through any port with port forwarding to any equiment on the network.

 

HQ Same setup but with Festa FR205 v1.0

 

Settings router to modem is dinamic IP instead of static IP. Don't think this will influence different outcome.

Same ISP for VPN setup

 

Tried with Autoconfiguration and manual configuration.

Appreciate any feedback what could be wrong with my setup.

  0  
  0  
#9
Options

Information

Helpful: 0

Views: 611

Replies: 8

Tags

VPN Controller Related
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.