Home Network Community > Wi-Fi Routers > Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router
< Wi-Fi Routers

Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router

Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router

Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router
Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router
a week ago - last edited Tuesday
Tags: #VPN #Feature Request #Network Connectivity
Model: Archer BE800  
Hardware Version: V1
Firmware Version: 1.1.6 Build 20240808 rel.26673(4555)

I have the following situation I want to solve.

I have a main Net with a BE800 and a external Net with a Asus Router.

 

The main net has the IP Range 192.168.5.0/24 and the external Net has 192.168.0.0/24.

 

I want to create a VPN connection that I can reach from my PC and a Nas in the 192.168.5.0/24 Net two Nas in the external 192.168.0.0/24 Net.

 

I have tried so far with a wireguard config and could manage that i could reach the external two Nas, but in that config my PC had lost connection to the Internet.

 

I want a solution that from all devices on 192.168.5.0/24 the devices in 192.168.0.0/24 are reachable, but that normal traffic not goes through the VPN.

 

Is this somehow possible?

I had before as main router a asus router with merlin firmware and could configure a route for 192.168.0.0/24 with next hop the wireguard vpn, which solved what I had needed.

But as I have now a BE800 as main router I'm wondering how I could accomplish the same with it.

 

What I understand is I need a split tunneling config or site to site VPN config.

Can that somehow be done with the BE800? Either with wireguard, which would be prefered because of the performance or with openvpn?

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router-Solution
Tuesday - last edited Tuesday

  @Joseph-TP  Hi Joseph. After some research I have now accomplished a workaround setup until the tp link router support split tunneling.

 

Both routers have a public ipv4 ip, btw.

 

I have now the following setup.

A pc which is running in the client network does now the routing.

 

I have setup IP Routing on a windows pc which have wireguard client installed. I have setup on it then the necessary firewall rules.

Then I have setup a route on the tp link router which point for the remote lan network to the windows pc.

 

On the target network the wireguard endpoint is the router self. I have then additionally setup a route on the target router which point for the source network to the vpn ip on the source network.

And that is now functioning like it should.

I don't need for my case setup a second vpn the other way around.

 

It is inconvenient that the pc in this setup need additionally always run. But at least it is working like expected,

 

I hope the tp link router support split tunneling in the future that i don't need the pc running all the time.

Recommended Solution
  0  
  0  
#3
Options
2 Reply
Re:Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router
Tuesday

Hi  @memzila,

Currently, the home routers we have released support client-to-server VPN. If you want to achieve mutual access between two routers, both routers need to obtain the public WAN IP, and both routers need to enable the VPN server and VPN client at the same time.

Therefore, your router and the external ASUS router need to be in different networks and can obtain the public WAN IP to meet your usage needs.

The new features you mentioned, Site to Site VPN or Split Tunneling or Selective Routing, are still in the future release plan. Thank you for your consultation, please pay more attention to the new feature release on the official website.

  0  
  0  
#2
Options
Re:Site to Site VPN or Split Tunneling or Selective Routing possible with a BE800 Router-Solution
Tuesday - last edited Tuesday

  @Joseph-TP  Hi Joseph. After some research I have now accomplished a workaround setup until the tp link router support split tunneling.

 

Both routers have a public ipv4 ip, btw.

 

I have now the following setup.

A pc which is running in the client network does now the routing.

 

I have setup IP Routing on a windows pc which have wireguard client installed. I have setup on it then the necessary firewall rules.

Then I have setup a route on the tp link router which point for the remote lan network to the windows pc.

 

On the target network the wireguard endpoint is the router self. I have then additionally setup a route on the target router which point for the source network to the vpn ip on the source network.

And that is now functioning like it should.

I don't need for my case setup a second vpn the other way around.

 

It is inconvenient that the pc in this setup need additionally always run. But at least it is working like expected,

 

I hope the tp link router support split tunneling in the future that i don't need the pc running all the time.

Recommended Solution
  0  
  0  
#3
Options

Information

Helpful: 0

Views: 85

Replies: 2

Tags

VPN Feature Request Network Connectivity
Related Articles
 Setup Site-to-Site VPN with OCI
735 0
AX73 open VPN client split tunneling
2368 4
 VPN site to site with Archer AX55
571 0
 Site to Site VPN With Deco x50
1456 0
 TD-W8980 Site to site IPSEC VPN
973 0
 site-to-site VPN with the AC750 Archer D2
946 2
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.