Hello!
I am behind an ISP who's using a DS-Lite Stack.
As far as i am understandig, there is no way to get a connection to my home network from outside directly. Even when, then only via IPv6, but thats another topic.
So for now, i am trying the following setup.
- Hosting a Ubuntu VM on a VPS Provider.
- Setting up OpenVPN Server there
- Trying to route traffic from there to OpenVPN Client on Router.
I got so far to configure OpenVPN on the server (adding ccd option and file for "iroute" configuration), and getting the client.ovpn uploaded on the router.
I can connect to the server and looking in the server log, the iroute is accepted.
But from terminal of server, i cant ping any range of my LAN network.
I dont understand, how routing works exactly in this situation...
i want to:
- Use OpenVPN Client Connection from Router to Server only for incomming traffic (all other clients in my LAN should not get affected by VPN)
- route traffic of official IP/Ports from VPS Provider to 1-2 endpoints in my LAN.
Endgoal:
- providing a reverse proxy + Letsencypt (on server or client side... i don't know?) for 1-2 services (like nextcloud).
======
Reading through other guides (for example this: https://community.openvpn.net/openvpn/wiki/RoutedLans), that is not exactly what i want, as this option would open my whole LAN to the external server.
I don't even know, if this is the right forum to ask, but as i try step by step to set this up and cant ping, i maybe thought to ask here first, if maybe some settings are needed in the router.
For example, i read posts that set "inbound firewall" to "Allow" in the vpn client setting.
As far as i know, i need this too, but can i set detailed rules for traffic afterwards?
Do i need "Create NAT on Tunnel"?
every little help is appreciated, tia.
I am behind an ISP who's using a DS-Lite Stack.
As far as i am understandig, there is no way to get a connection to my home network from outside directly. Even when, then only via IPv6, but thats another topic.
So for now, i am trying the following setup.
- Hosting a Ubuntu VM on a VPS Provider.
- Setting up OpenVPN Server there
- Trying to route traffic from there to OpenVPN Client on Router.
I got so far to configure OpenVPN on the server (adding ccd option and file for "iroute" configuration), and getting the client.ovpn uploaded on the router.
I can connect to the server and looking in the server log, the iroute is accepted.
But from terminal of server, i cant ping any range of my LAN network.
I dont understand, how routing works exactly in this situation...
i want to:
- Use OpenVPN Client Connection from Router to Server only for incomming traffic (all other clients in my LAN should not get affected by VPN)
- route traffic of official IP/Ports from VPS Provider to 1-2 endpoints in my LAN.
Endgoal:
- providing a reverse proxy + Letsencypt (on server or client side... i don't know?) for 1-2 services (like nextcloud).
======
Reading through other guides (for example this: https://community.openvpn.net/openvpn/wiki/RoutedLans), that is not exactly what i want, as this option would open my whole LAN to the external server.
I don't even know, if this is the right forum to ask, but as i try step by step to set this up and cant ping, i maybe thought to ask here first, if maybe some settings are needed in the router.
For example, i read posts that set "inbound firewall" to "Allow" in the vpn client setting.
As far as i know, i need this too, but can i set detailed rules for traffic afterwards?
Do i need "Create NAT on Tunnel"?
every little help is appreciated, tia.