WIKIABOUT

FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

Most popular tags

rut955 rut240 rut950 rutx11 rms vpn to openvpn wifi not sms trb140 firmware connection - ipsec on rutx12 rutx09 modbus
We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.

Accessing Private Network/Lan via OpenVPN Tun

0 votes
2,951 views 3 comments
by anonymous
This is my current network setup <Win10 PC Clint 1 Tun 192.168.3.101>-----<Server 192.168.3.12>----<RUT240 Client 2 Tun 192.168.3.105>----<LAN PLC 192.168.5.10>

Can Ping From:

Client 1 to Server      OK

Server to Client 1      OK

Client 1 to Client 2    OK

Client 2 to Client 1    OK

Server to Client 2     OK

Client 2 to Server     OK

Server to LAN/PLC   BAD

Client 1 to LAN/PLC BAD

Client 2 to LAN/PLC OK

I have tried different firewall rules and snat and routing ( Every time I did static route I got locked out and had to reset RUT240 )

I have enabled forwarding

No matter what I try I just cant access the Lan via the VPN
by

A. Win10 PC, OpenVPN client 1 (192.168.3.101/24)

B. OpenVPN server (192.168.3.12/24)

C. RUT240, OpenVPN client 2 (192.168.3.105/24)

D. LAN PC(?) (192.168.5.10/24)

Do you have a static route leading from C -> D? How are the two networks connected? (192.168.5.1/24 and 192.168.3.1/24)

Have you correctly set up your client-config-dir? See: '–push <option>' & '–ifconfig-push <local> <remote-netmask>' @ (https://openvpn.net/community-resources/reference-manual-for-openvpn-2-4/) What is the device running the OpenVPN server?

If you cannot change the IP subnets for the devices, a better alternative would be to use 'TAP' instead of 'TUN'. It should fix most of your problems without the need to configure a 'client-config-dir'. Then there's only the matter of routing from C -> D.

by anonymous
Every time I add a static route I lose access to the router even If the route is not related to Lan. Even If I push the route from the server I lose access. It is windows server 2019 with SoftEther acting as the OpenVPN server. I have tried Tap and SNAT from VLAN to LAN and still couldn't get it to work correctly.

I have successfully used Wireguard VPN.

< Win10PC Wireguard 192.168.10.2 >---TUN-----< Server Wireguard 192.168.10.1 >---TUN----< Raspberry Pi Wireguard 192.168.10.3 >--- LAN----< PLC 192.168.5.10 >

It just worked straight away without too much mucking around so have now been trying to install Wireguard on the RUT240 but haven't been successful. I have created a separate question regarding Wireguard, just waiting for some advice.

1 Answer

0 votes
by anonymous

Hi,

Seems like you are using TLS, so please check configuration on server "ccd" (chapter: 1.6. Configure Computer as an OpenVPN Tls server): https://community.teltonika-networks.com/?qa=blob&qa_blobid=12860203520531546187

by anonymous
I have tried this and as soon as I add push route via server I no longer have access to the RUT240. I even noticed If I add routing that has nothing to do with lan I still lose the connection. There must be a simple way to just access the Lan via VPN. I have been at it for days and just no luck whatever I try. I have tried following all the guides over and over with no luck