Cannot access WDR3600 from another subnet (VPN)
Hello,
I cannot access web management of WDR3600 from another subnet, specifically when I am connected over VPN to ER605 router. I need to be able to access WDR3600 web management over VPN to manage WDR3600 in case of problems while I am away from home.
I use OpenVPN and ER605 gives OpenVPN addresses subnet of 255.255.255.255 and IP address range 192.168.1.0/24. WDR3600 is on subnet of 255.255.255.0 with static IP address of 192.168.0.2. When I am connected to local network I can obviously access WDR3600 but over VPN I cannot. I can access all other LAN devices over VPN. From doing a bit of research it seems WDR3600 is blocking access from that other subnet.
How do I fix this problem?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Have you tried to enable the remote management for WDR3600:
What's the WAN IP address of the WDR3600 ? Is it a part of your lolcal network subnet ?
- Copy Link
- Report Inappropriate Content
@terziyski I tried that, I tried that plus static routing, nothing works.
- Copy Link
- Report Inappropriate Content
Hi, may I have a detailed topology of your network? how are the ER605 and WDR3600 connected?
Please confirm if WAN IP address of WDR3600 is a public IP or private IP, and are you trying to access WDR3600 via VPN by using LAN or WAN IP address of the WDR3600?
- Copy Link
- Report Inappropriate Content
@Sunshine Quick answer: WDR3600 is connected directly to ER605 over LAN port. WDR3600 is NOT using its WAN port to connect to ER605 but one of the 4 LAN ports. WDR3600 is "pass-through" so ER605 is DHCP servers and assigns IP addresses for wireless and wired clients connected to WDR3600. WDR3600 has a static IP address of 192.168.0.2 and ER605 has address of 192.168.0.1.
WDR3600 is private IP and I am accessing using the private IP address of 192.168.0.2 over VPN and over local network.
- Copy Link
- Report Inappropriate Content
In this case the Remote Management configuration has nothing to do with WebGUI access.
What you can do is to connect ER605 to WDR3600 WAN port and set its IP address 192.168.0.2 (static).
Test the WDR3600 WebGUI access and if it doesn't work, it's probably due to the WDR3600 firmware (a security mechanism like HTTP Referer Head Check).
- Copy Link
- Report Inappropriate Content
@terziyski I tested it and it does not work over VPN. No matter what I do I cannot access the web management page over VPN.
For sure it is because of WDR3600 firmware. I cannot seem to find a way to disable that security protection. This is absolutely illogical: the whole point of VPN is to access local hardware from outside the network but then when I'm inside the network I cannot access the one of the main pieces of hardware I need to control.
Is there a way to disable this protection?
- Copy Link
- Report Inappropriate Content
As you can see the WDR3600 is EoL (End of Life) equipment long ago - its latest FW release is from 2015.
The other way to remotely manage the router is through a Tether app, but the latest supported version by the router FW is version 2.2.0 and I doubt that you can use that as well.
I would buy a more recent hardware like Archer C64 (in AP mode - Case 1) which has the option "HTTP Referer Head Check" that could be disabled - check this story.
- Copy Link
- Report Inappropriate Content
@terziyski Honestly router works good enough for non-critical wireless devices, even though it locks up from time to time and that is why I sometimes have to restart it remotely.
What I will do is move the two "critical" devices from wireless to wired. This way I don't have to rely on WDR3600 to be operational all the time. It is a pity because it still works, why would I spend the money on a new device?
- Copy Link
- Report Inappropriate Content
Well, that's a valid point and a possible workaround for your issue. If the WDR3600 fails in time, you'll know what you should do.
The other approach would be to downgrad the FW to an earlier release (from 2014) and check if this would work as you expect.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 892
Replies: 9
Voters 0
No one has voted for it yet.