What's new

AC78U as OpenVPN client with routing into internal network?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

-kw

New Around Here
Hey there,

I have got the following problem:

I have got an OpenVPN server on the internet (hosted by my self - changes are possible) and successfully connected my router (ASUS RT-AC87U, asuswrt-merlin 384.13_10 ) as a client. Furthermore, I connected my phone as a client. Now I want to connect to Raspberry Pi in my local network.
local network: 192.168.1.0
vpn network: 192.168.255.0

I do not want to route any traffic from local network through vpn, except route back a vpn client which is connecting to a local device.

I tried to connect from my phone 192.168.255.60 to a local device 192.168.1.4. I configured the router as follows:


11754_eee20d5cfa4222928933dc85a06d7f3f.jpg
11755_46a4700a9b7e926d4df44c915619a996.jpg


I also configured my OpenVPN server:

file ccd/asus :

Code:
iroute 192.168.1.0 255.255.255.0

I added the following lines to openvpn.conf :
Code:
######## allow client communication
route 192.168.1.0 255.255.255.0
client-config-dir ccd
client-to-client
push "route 192.168.1.0 255.255.255.0"

as per https://openvpn.net/community-resou...chines-on-either-the-client-or-server-subnet/

I can see the following in the logs:

Code:
vpn_1     | Sat Jan  2 00:02:52 2021 MULTI: Learn: 192.168.1.4 -> asus/86.56.76.92:58617
vpn_1     | Sat Jan  2 00:07:42 2021 rpi/86.56.76.92:58087 MULTI: Learn: 192.168.1.4 -> asus/86.56.76.92:58617

Clients are able to communicate within 192.168.255.0 (ping works), but not between the two subnets.
Could someone tell me what I configured wrong?

I already asked this question in a german forum, but without helpful answer: https://www.router-forum.de/asus/router-als-openvpn-client-routing-ins-interne-netzwerk.t73445/

Thank you! :)
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top