Menu
What's new
By:
Filters Better Search

Asus RT-AC88U OpenVPN: openVPN Subnet and assigning IP to openVPN clients?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

PartisanEntity

PartisanEntity

Occasional Visitor
I have stock firmware version: 3.0.0.4.386_48260-gd4c241c

I have configured and enabled an openVPN server on the router.

At the moment in the openVPN configuration under VPN Subnet / Netmask I have: 10.8.0.0/255.255.255.0

Now in the router under LAN > IP Adress (not in openVPN settings) I have: 192.168.1.1 and under Subnet Mask I have: 255.255.255.0

Question 1:

Can I put the openVPN Subnet on the same Subnet as my LAN? Any drawbacks to doing so and is it even possible?

Question 2:

Is it possible to bind a specific IP in openVPN to a specific openVPN client? And if yes, how?

The reason for question 2 is because I have a server at home that is sharing some files over NFS and Samba and I have certain folders that can only be accessed by a specific local IP address.

When I connect to my openVPN server from the office, since my IP number is for example: 10.8.0.6 I am unable to connect to the folders. But if I am going to add IP numbers from the openVPN Subnet then I want them to be fixed for each openVPN client so I don't have to edit configurations all the time.
 
1) You could (assuming the stock firmware supports it) create a bridged (TAP) OpenVPN tunnel rather than a routed (TUN) tunnel. That would allow the OpenVPN client to be assigned an IP on the remote network, just as if that same client was wired to the home router's switch. You could even create static leases based on the MAC address of the client's virtual adapter.

However, the problem w/ bridged tunnels is that most mobile devices don't support it. Not unless you're willing to use untrusted sources and apps, or jailbreak it (as the case may be). But it is the closest thing to "being there" when it comes to using OpenVPN.

2) This was discussed recently on the DD-WRT forums. Regardless of firmware, the various solutions are the same, although using stock firmware will probably make it more difficult, if not impossible, to implement in some cases.
 
Client specific IP should be possible with Asuswrt-Merlin, not sure about stock firmware however. Can be done by enabling Client-specific Options, then look the OpenVPN documentation on how to use CCD.
 
RMerlin said:
Client specific IP should be possible with Asuswrt-Merlin, not sure about stock firmware however. Can be done by enabling Client-specific Options, then look the OpenVPN documentation on how to use CCD.
Click to expand...
Is it possible to switch to Asuswrt-Merlin while keeping all my current settings from the stock firmware? Just wondering how much work it would be to switch.
 
PartisanEntity said:
Is it possible to switch to Asuswrt-Merlin while keeping all my current settings from the stock firmware? Just wondering how much work it would be to switch.
Click to expand...
Yes provided the firmware releases aren't too far apart, however anything related to VPN will need to be reconfigured, since we have different implementations.
 
You must log in or register to reply here.

Similar threads

M
OpenVPN clients cannot connect to LAN computers.
Replies
0
Views
127
MNBob
M
E
OpenVpn
Replies
11
Views
388
enrico
E
J
Access to device on a different subnet, but same switch
Replies
4
Views
492
ColinTaylor
C
J
Reverse internet access through Asus-Merlin OpenVPN client.
Replies
0
Views
450
Johnco2
J
M
OpenVPN / site to site with special security/routing constraints
Replies
7
Views
330
elorimer
E
Similar threads
Thread starter Title Forum Replies Date
A "nvram set preauth" is not working with Asus RT-AC88U? ASUS Wireless 1
N 12V ASUS router with the longest 2.4GHz WiFi range ASUS Wireless 39
tiddlywink ASUS ExpertWiFi EBG15 ASUS Wireless 19
XIII EOL ASUS routers affected by TheMoon malware ASUS Wireless 17
K Asus moving some devices to EOL while issues still remain ASUS Wireless 64
A Router.asus.com being forced to https in Firefox again ASUS Wireless 3
thegios ASUS XT(8 2 node mesh: troubleshoot IP camera dosconnection issues ASUS Wireless 8
T ASUS Router hard reset ASUS Wireless 3
M T-Mobile ASUS TM-AC1900 (RT-AC68U variant) gets WAN IP and can ping Internet but connected WiFi clients indicate no Internet? ASUS Wireless 7
M VPN setup with ASUS, QNAP and SOPHOS ASUS Wireless 1

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 967 (members: 36, guests: 931)
Top