1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

Seeking advice for Dual WAN and OpenVPN Server

Discussion in 'Asuswrt-Merlin' started by netware5, Jun 19, 2018.

  1. netware5

    netware5 Senior Member

    Joined:
    Mar 9, 2013
    Messages:
    330
    Location:
    Bulgaria
    I am going to have a second ISP and want to switch to Dual WAN load balancing configuration.

    The current configuration (single WAN) is as follows:

    Ethernet cable from ISP is going to router's WAN port.
    The ISP provided me with fixed public IP address.
    Two OpenVPN servers are listening on one TCP and one UDP ports
    Both OpenVPN servers are with TAP interface (ethernet bridging)
    There is third OpenVPN server (TAP) on separate device within my LAN, the TCP port for it forwarded from the router.

    The modified configuration should be:

    Primary WAN configuration should remain the same as above.
    All OpenVPN servers remain listening on the same public IP address of the primary WAN (ISP-1)
    The ISP-2 provides me with some router device with integrated DOCSYS modem.
    The ISP-2 provides me with one fixed (or dynamic? I am not sure...) public IP address.
    The ISP-2 WAN cable is going to the coaxial connector of the new router device
    The ISP-2 router device has 4 LAN ports, i.e. I expect non-public IP address there.
    I want to configure my main router in dual WAN load balancing mode by connecting one of the LAN ports of new routing device to one of the LAN ports of main router.

    I am seeking advice if the above is possible. I would like that all OpenVPN servers continue to use the ISP-1 only (primary WAN). My concern is that, as the main router is in load balanced mode, the OpenVPN servers may route some packets to ISP-2, which will destroy the connection with OpenVPN clients.

    In the future I may decide also to try forwarding the TCP port of the "internal LAN" OpenVPN server from the ISP-2 routing device also. In such case the "internal LAN" OpenVPN server could be visible on both (ISP-1 and ISP-2) IP addresses. But it is not so important as the ISP-2 provides very weak upload speed.

    So guys I will appreciate any help on this matter.
     
  2. Please support SNBForums! Just click on this link before you buy something from Amazon and we'll get a small commission on anything you buy. Thanks!
Please support SNBForums! Just click on this link before you buy something from Amazon and we'll get a small commission on anything you buy. Thanks!