Menu
What's new
By:
Filters Better Search

Another site to site VPN question

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

A

andresmorago

Senior Member
Hello.
My apologies in advanced. I know this has been discussed several times but after reading i cant get this to work 100%

My setup

SITE A Router
LAN 10.0.0.1 / 255.255.255.0
VPN Server 10.0.1.0 / 255.255.255.0

1618539607753.png


SITE B Router
LAN 10.0.4.1 / 255.255.255.0
VPN client
Internet traffic is not going through SITE A router (thats ok)
1618540419635.png



My problem
* I am able to ping SITE A router at 10.0.0.1. Other devices in the 10.0.0.0 network are partially accessible (on some ports) but not pingable
* I need SITE B devices to have network 5.103.9.245/22 routed through SITE B. Can you please advice?
 
When only *some* devices are reachable, failure to reach other devices is often due to personal firewalls on those devices, esp. Windows machines. They won't accept a *foreign* private network (like that of the VPN tunnel) by default.
 
As far needing "SITE B devices to have network 5.103.9.245/22 routed through SITE B", you have "Force internet traffic through tunnel" set to NO in the OpenVPN client, and for good measure, the following in custom config...

Code: 
pull-filter ignore redirect-gateway

So nothing other than 10.0.0.0/24 should be accessed over SITEA. Not unless you meant to say 5.103.9.245/22 should be routed over SITEA. If that's the case, you can use a route directive in the OpenVPN client custom config field to make that happen. However, 5.103.9.245/22 is NOT a valid network! You're probably looking for 5.103.8.0/22.

Code: 
route 5.103.8.0 255.255.252.0 vpn_gateway

Btw, I'm assuming you mean 5.103.8.0/22 as a destination, NOT a source.
 
thank you so much. i had messed up with the network so the route rule wasnt working as expected.
regarding pings, ill have to see what firewall setups might be interfering
 
You must log in or register to reply here.

Similar threads

johndoe85
VPN site to site with additional VPN client to hide IP
Replies
14
Views
663
johndoe85
johndoe85
B
VPN Director: Prioritize Site-to-Site VPN over WAN
Replies
4
Views
783
benih
B
R
VPN Director with TAP tunnel in site-to-site seems not working but allowed
Replies
0
Views
768
ronzino
R
P
Switching from WireGuard to OpenVPN site-to-site due to perf issues
Replies
9
Views
2K
elorimer
E
M
OpenVPN / site to site with special security/routing constraints
Replies
7
Views
314
elorimer
E
Similar threads
Thread starter Title Forum Replies Date
S Transfer files to another device (raspi) in the same network Asuswrt-Merlin 3
M Allow admin web GUI access on another interface (tailscale0) Asuswrt-Merlin 0
S Another DNS Director clarification Asuswrt-Merlin 1
Smokindog Might be ready to give AiMesh another look Asuswrt-Merlin 8
D Connecting to internet via another router Asuswrt-Merlin 10
D Yet another question about VLANs (any HowTo recommended?) Asuswrt-Merlin 24
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
visortgw asuswrt-merlin.net Website Site Down? Asuswrt-Merlin 18
johndoe85 VPN site to site with additional VPN client to hide IP Asuswrt-Merlin 14
S RT-AC68W Firmware Upgrade download site link doesn't work Asuswrt-Merlin 4

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 746 (members: 23, guests: 723)
Top