Menu
What's new
By:
Filters Better Search

OpenVPN with Two LANs behind server?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

J

jtarking

New Around Here
Running OpenVPN server on RT-AC5300 with latest merlin image.

I can connect and access the LAN on the AC-5300 fine, I have another LAN segment on a switch connected to the AC-5300 and have static route built to this LAN. I have a default route back from this LAN on the switch to the AC-5300 and can ping this LAN from the tools section on the router.

I have added a "push" for this LAN to the server config and my client receives and makes the correct entry in the route table for this IP network.

When I try to reach this IP network from the client, I can see the packet being dropped when I enable FW logging on the router side.

What entries am I missing on the server / client side to make this work? I looked at IP tables on the router and do not see what entries are getting created to make the 10.8.0.0 for the VPN client and LAN that is local to the router? What entry do I need to make so the incoming packet does not get dropped by FW? Just trying to figure out the "magic" done behind the scenes for the VPN client and the local LAN.

Thanks,
Jeff
 
Last edited:
Go to the VPN server General settings and make sure "Client will use VPN to access" is set to "Both" (Internet and local network).
 
That works, but all of my Internet traffic goes out from the router that hosts the OpenVPN server. Should I not be able to add some entires to just get to another LAN that sits behind the OpenVPN server / router? Here's my path:

OpenVPNClient-----------------------OpenVPNServerOnASUS----ASUS-LAN--------------Switch-------LAN

How can update FW rule via CLI to allow the VPN client IP (10.8.0.2) to be allowed thru ASUS to reach the switch?

Thanks,
Jeff
 
Sorry, I don't have the same firmware as you so I can't tell you what to change. Maybe by comparing the firewall rules and pushed routes from the two different configurations you can work it out. Otherwise I expect someone else will be able to help.
 
You must log in or register to reply here.

Similar threads

P
Connect OpenVPN server with Client networks
Replies
3
Views
593
L&LD
L&LD
J
Reverse internet access through Asus-Merlin OpenVPN client.
Replies
0
Views
433
Johnco2
J
Blankedy
AC86U OpenVPN server whilst in AP mode
Replies
3
Views
360
Blankedy
Blankedy
C
Does default dnsmasq configuration store LAN names?
Replies
6
Views
364
chrisisbd
C
Z
Port forwarding for client connected to OpenVPN server
Replies
0
Views
426
zakazak
Z
Similar threads
Thread starter Title Forum Replies Date
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
R OpenVPN keeps on turning itself off Asuswrt-Merlin 37
M Best router for wireguard or openVPN Asuswrt-Merlin 1
W OpenVPN Server set to LAN only allows browsing Asuswrt-Merlin 14
A Upgraded my ASUS, issues with NordVPN via OpenVPN Asuswrt-Merlin 4
G openvpn server: can not change/select data cipher Asuswrt-Merlin 1
Blankedy AC86U OpenVPN server whilst in AP mode Asuswrt-Merlin 3
M For AX68U and AX86S Merlin users: openvpn server - max user qty? Asuswrt-Merlin 1
L Openvpn internal error add route Asuswrt-Merlin 0
B No internet after turn on OpenVPN client Asuswrt-Merlin 4

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 648 (members: 24, guests: 624)
Top