Menu
What's new
By:
Filters Better Search

Site to Site VPN - with restrictions

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

T

TomT

Regular Contributor
Hi
I'm currently running firmware 376.45 (Merlin build) on my Asus rt-ac68u, but I am considering upgrading.

Is there any option for a Site to Site VPN in any build ?
If there is, once this is established can access be limited to specific IP Addresses on my LAN ?

Just to complicate this, I've been asked if we can route multiple connections down a Site to Site VPN.

If this is possible at all I'd like to be able to restrict users on the other end of the VPN from accessing parts of my local network.

My router will need to connect to them, but I want to control/restrict access.

Thanks
 
You might need to install merlin firmware and add firewall configurations manually by editing files and such. It might just be easier to use a router like mikrotik routerOS or ubiquiti or pfsense as they have configurable firewalls and networking to achieve what you're asking.

assuming your 3rd question is about internet routing you can but you must set NAT/routes on the router and sometimes on the client machines. It has to be done via static routes.
 
Most business grade routers with VPN features allow you to device "who" can access "what" on each end of the tunnel. You define your local, and remote networks...on each end. Either the entire subnet...or you can get granular..narrowing the IPs. I'm not sure about a residential router with slightly modded firmware like Merlin...probably "not". But most biz grade models can do this right out of the box, no problem.
 
a lot of consumer routers are linux based which actually lets you use linux scripts if you can access the linux system. RMerlin's firmware lets you do that. But i was saying that using scripts are difficult. than again consumer routers are limited in their performance.

There are routers like pfsense which actually do well for what you want aside from the propietary ones i suggested. You could obviously use a linux server OS do the it and it would be better than using windows but that needs a lot of skill. when considering a business grade router dont use the cisco rv series as they would be slow for this not to mention lack of user control or to use scripts like a linux based router.
 
You must log in or register to reply here.

Similar threads

S
Offload OpenVPN to Raspberry Pi 5 versus using my AXE16000 for site-site?
Replies
2
Views
483
sunactive
S
johndoe85
VPN site to site with additional VPN client to hide IP
Replies
14
Views
663
johndoe85
johndoe85
F
Site To Site VPN between Debian VM and AsusWRT-Merlin router, no routes exists
Replies
2
Views
617
Freewill0592
F
B
IPv6-only site-to-site setup with Wireguard, and how to handle IPv4
Replies
1
Views
1K
drinkingbird
drinkingbird
B
VPN Director: Prioritize Site-to-Site VPN over WAN
Replies
4
Views
783
benih
B
Similar threads
Thread starter Title Forum Replies Date
F Site To Site VPN between Debian VM and AsusWRT-Merlin router, no routes exists VPN 2
S Offload OpenVPN to Raspberry Pi 5 versus using my AXE16000 for site-site? VPN 2
B IPv6-only site-to-site setup with Wireguard, and how to handle IPv4 VPN 1
gdgross Setting up VPN server (router?) for offsite access VPN 13
C Instant Guard IPsec VPN Log Showing Regular Access Attempts VPN 3
A Best way to set up vpn on router for gaming? VPN 13
M VPN for a Cruise Ship VPN 11
F Router for VPN with AES-NI VPN 8
S How to start client VPN from the CLI on tomato firmware VPN 0
Diablo99 How to build a safe VPN VPN 3

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 679 (members: 22, guests: 657)
Top