Solution for Remote Administration using VPN Tunnel without activating Remote Management

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Solution for Remote Administration using VPN Tunnel without activating Remote Management

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Solution for Remote Administration using VPN Tunnel without activating Remote Management
Solution for Remote Administration using VPN Tunnel without activating Remote Management
2022-08-31 12:00:42 - last edited 2022-08-31 13:26:32
Model: Archer VR2100v  
Hardware Version: V1
Firmware Version: 1.7.0 0.9.1 v009e.0 Build 220115 Rel.1642n

Hello all,

I am using a VR2100v with OpenVPN to securely connect to my home network from external (internet). The setup of OpenVPN worked without any problems, but I could not connect to the router administration web page, because every time I got the error "Forbidden Access". A "fast" solution for this error is the activation of the "Remote Management" in the menu "Advanced -> System Tools -> Administration". However, it should be mentioned that this setting also allows an access to the router administration website via the WAN IP/DNS address. This may not be desirable for security reasons. A solution to access the router administration web page without activating the remote management but using VPN connection is to set a second IP address for the router under the menu "Advanced -> Network -> LAN Settings", whereby the second IP address should be within the IP range that the VPN server provides for the clients. 

 

Example Configuration:

 

LAN Settings (Menu: Network)
-----------------------------------------
IP Address: 192.168.1.1
Subnet Mask: 255.255.255.0

Second IP: Checked
IP Address: 192.168.0.1
Subnet Mask: 255.255.255.0

 

 

OpenVPN (Menu: VPN)
-----------------------------------------
Enable VPN Server: Checked
Service Port: Your Desired Protocol (For me TCP)
Service Port: Your Desired Port
VPN Subnet/Netmask: 192.168.0.0 / 255.255.255.0

 

 

Administration (Menu: System Tools)

-----------------------------------------

Remote Management: Unchecked
 

 

 

With these IP settings I am able to access on the Router-Administration Website using the VPN Connection only without having the Remote Management setting activated, and therefore without letting a WAN connection to the Remote-Adminsitration Website.


I would like to point out that I am not a network (security) specialist  and I cannot ensure that this method is secure or not. I just wanted to offer a solution that worked for me.

 

With kind regards,
opcodex64

  5      
  5      
#1
Options
4 Reply
Re:Solution for Remote Administration using VPN Tunnel without activating Remote Management
2022-09-07 07:36:27

  @opcodex64 Strange. When I try this it complains about both subnets being the same and won't allow it when I come to reconfig the router's VPN settings.

  0  
  0  
#2
Options
Re:Solution for Remote Administration using VPN Tunnel without activating Remote Management
2022-09-07 07:39:49

  @myke52 

Hello myke52,

 

I know! I forgot to mention that you have to first set up the OpenVPN settings and enabling it and then you have to configure the Second IP in LAN Settings ! If you first configure the Second IP and then OpenVPN, then OpenVPN will complain !!

 

I just figured this out two days ago. 


Can you try this way and tell me if it worked ?

 

 

  1  
  1  
#3
Options
Re:Solution for Remote Administration using VPN Tunnel without activating Remote Management
2022-09-07 08:19:26

  @opcodex64 Thanks. It works but complains about not being able to resolve an IP address to a MAC address when I login to the router admin panel over VPN. I assume it's referring to the new 2nd IP?

  0  
  0  
#4
Options
Re:Solution for Remote Administration using VPN Tunnel without activating Remote Management
2022-09-07 16:57:30

  @myke52 

Hey! Sorry for late reply. A lot of work today.

 

Can you provide IP Adress configuration ? What is your Router First and Second IP and what did you set in OpenVPN?? 

  0  
  0  
#5
Options