Menu
What's new
By:
Filters Better Search

Recent content by philote

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. P

    Switching from WireGuard to OpenVPN site-to-site due to perf issues

    I thought if Create NAT on Tunnel is set to Yes, that means the nodes of the client LAN can connect to nodes of the server LAN, but not the other way around. That's why disabling NAT & having the routing rules are important, so the connection is bidirectional. @ColinTaylor has a comment in the...
  2. P

    Switching from WireGuard to OpenVPN site-to-site due to perf issues

    Unfortunately I can't connect from the client's LAN to the server's LAN either without first setting Create NAT on Tunnel to Yes. If Create NAT on Tunnel set to No, then I can't connect from either LAN to the other LAN (although the VPN connection does get established).
  3. P

    Switching from WireGuard to OpenVPN site-to-site due to perf issues

    As an update, still trying to figure this out. I've tried adding below to the custom config of site #2's OpenVPN client config, that didn't work. route 192.168.25.0 255.255.255.0 I've also tried adding this static route to Site #2's LAN Route config, & that doesn't work either.
  4. P

    Switching from WireGuard to OpenVPN site-to-site due to perf issues

    Thanks @ZebMcKayhan, that might potentially help with client <> internet connections, as that wouldn't travel through the tunnel, but considering both sites have 1 Gbps connections, & one of them has a Synology NAS, I'd like the speed within the site<>site connection to also be accelerated. I do...
  5. P

    Switching from WireGuard to OpenVPN site-to-site due to perf issues

    After finally figuring out how to get WireGuard site-to-site setup nicely here, I saw multiple threads about performance issues & tested myself to find out... I have the same performance problems. Until it can be fixed, I'm trying to get the same config I had setup with WireGuard, done with...
  6. P

    Asus RT-AX86U Pro Performance

    I've got a AX88U running merlin 388.1, when WG is turned on Flow Cache is disabled & I'm also seeing almost a 50% drop in internet speed :(
  7. P

    New to VPNs so I have a question

    Most VPN providers, including Proton, let you access the local network as they don't tunnel local connections through the VPN. router.asus.com works when you're not connected to a VPN because the default config for a router's DHCP DNS setup is the router itself, if you have DHCP enabled (which...
  8. P

    Wireguard Site2Site (AX88U to AX88U) on version 388.1

    Awesome!!! Thanks for walking through it. Ok so then to be complete for others that were having trouble, think this would be the updated full config for site2site as well as roaming clients connecting to site 1 via WG: Site 2 Site WG Setup: Site #1: AX88U Asus Merlin 388.1 LAN: 192.168.25.1...
  9. P

    Wireguard Site2Site (AX88U to AX88U) on version 388.1

    Right so for my Site #2 WG client config, I remove the 192.168.50.0/24 allowed IP because that site's LAN itself is already that & so should be able to connect to those IPs without going through the VPN. However, for my roaming client #1 WG client config, I would need to add 192.168.50.0/24...
  10. P

    Wireguard Site2Site (AX88U to AX88U) on version 388.1

    Got it. I think I misread one of the earlier posts, I thought if I want multiple clients to be able to connect to the VPN (let’s say from outside these two networks) & connect to each other on the WG subnet, as well as both LAN networks, that I’d need to have the 10.6.0.0/24 in there for the...
  11. P

    Wireguard Site2Site (AX88U to AX88U) on version 388.1

    I've been trying to get site-to-site working via OpenVPN but it wasn't as stable & the routing rules weren't as easy to understand but this is so much easier! Thanks @Stick, @ThomsBe, @dardar, @ZebMcKayhan for your comments! Clients of either network can reach a client on the other network, or...
See more
Top