Menu
What's new
By:
Filters Better Search

ASUS OpenVPN site-to-site: adding bi-directional routing

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

M

mystical

Occasional Visitor
Hi,

I have found no useful documentation of the OpenVpn advanced configuration options in the Asus manual, and so I have come here after spending a couple days searching forums without finding a clear description of the solution.

I have two Asus RT-AC68U routers running the same current factory firmware 3.0.0.4.380_1842. I have easily configured them so that the home system with LAN 192.168.130./24 accepts an OpenVpn connections from my remote office with LAN 192.168.131.0/24.

My problem is that machines on 192.168.131.0 can ping and fully access all machines on 192.168.130.0, but machines on 192.168.130.0 cannot ping or otherwise access the router or any other devices on 192.168.131.0. On the ASUS OpenVpn->Server->Advanced page there is a '

Other threads on this forum seemed to solve this problem by configuring OpenVPN using TAP sessions. However there is broadcast and multicast traffic on both LANs that I don't want to clog the WAN connection. Furthermore, I don't want my remote system to depend upon the OpenVpn connection to service DHCP requests.

Thanks
 
Hi there!

I had this problem as well but I have found a solution that works for me. I set up both my Asus RT-AC68U routers (with stock firmware) as OpenVpn servers and let them connect to each other. This worked with TUN. I believe the 'client' router doesn't accept connections from the VPN it is connected to, to its local network. The opposite works though, as the 'server' router allows devices on its VPN connect to its local network. Having the two routers as both servers and clients solves the problem with bi-directional routing.

I have only tested this for a short period of time but so far I haven't noticed any routing problems.
 
Hi,

I had not thought of that solution, but in my case one of the routers is behind another router. So opening a VPN connection to that 'hidden' router is more complex than just getting the tunnel opened by the 'hidden' router to be bi-directional.
 
You must log in or register to reply here.

Similar threads

M
OpenVPN / site to site with special security/routing constraints
Replies
7
Views
330
elorimer
E
S
Configure ASUS OpenVPN server to allow client-client access
Replies
2
Views
590
sunactive
S
D
Asus GT-AX11000 (3004.388.4_beta3) OPENVPN Server help needed vith Site to Site
Replies
14
Views
1K
Martinski
M
S
Offload OpenVPN to Raspberry Pi 5 versus using my AXE16000 for site-site?
Replies
2
Views
501
sunactive
S
M
OpenVPN clients cannot connect to LAN computers.
Replies
0
Views
124
MNBob
M
Similar threads
Thread starter Title Forum Replies Date
S Configure ASUS OpenVPN server to allow client-client access ASUS Wireless 2
N 12V ASUS router with the longest 2.4GHz WiFi range ASUS Wireless 39
tiddlywink ASUS ExpertWiFi EBG15 ASUS Wireless 19
XIII EOL ASUS routers affected by TheMoon malware ASUS Wireless 17
K Asus moving some devices to EOL while issues still remain ASUS Wireless 64
A Router.asus.com being forced to https in Firefox again ASUS Wireless 3
thegios ASUS XT(8 2 node mesh: troubleshoot IP camera dosconnection issues ASUS Wireless 8
T ASUS Router hard reset ASUS Wireless 3
M T-Mobile ASUS TM-AC1900 (RT-AC68U variant) gets WAN IP and can ping Internet but connected WiFi clients indicate no Internet? ASUS Wireless 7
M VPN setup with ASUS, QNAP and SOPHOS ASUS Wireless 1

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 983 (members: 18, guests: 965)
Top