WIKIABOUT

FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

Most popular tags

rut955 rut240 rut950 rutx11 rms vpn to openvpn wifi not sms trb140 firmware connection - ipsec on rutx12 rutx09 modbus
We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.

Routing RUT240 Traffic over a Gateway to another Router

0 votes
992 views 16 comments
by

Hello,

I connected VPN-Router01 (Lancom) and VPN-Router02 (Teltonika RUT240) over VPN (IPSEC) to my VPN-Gateway (Lancom). I reach all Clients (PC01 and PC02) with PC00.

I have Problems to reach PC02 from PC01 and PC01 from PC02.

I can ping VPN-Router02 with VPN-Router01 (+). I can't ping VPN-Router02 with PC01 (-).

I can't ping VPN-Router01 with VPN-Router02 (-).

I tried to configurate a static Route with no positive results:

I also tested Interface WAN (mobile), LAN and TUN (just because I had completely no Idea) with also a negative result.

At least I played with the firewall settings but also with no positive result.

Does anyone has an idea, why I can't reach the networks over the gateway?

Kind reagards

Jan

1 Answer

0 votes
by anonymous

Hello,

Does VPN-Router01 (192.168.1.11) normally reply to ICMP(PING)? For example when being pinged from 192.168.1.100?

Also, could you connect to VPN-Router02 (192.168.2.11) via SSH (Username: root ; password: same as WebUI) and execute command:

tcpdump -i any host 192.168.1.100

This will listen for any traffic coming from PC01 (192.168.1.100)

And then initiate ping from 192.168.1.100 pc to 192.168.2.11

Paste your tcpdump output here

Show 11 previous comments
by anonymous

Did you add this one?

192.168.2.1 192.168.110.11 255.255.255.0   UG     0      0        0 br-lan

Because there seems to be a typo in 192.168.110.11

Also, I don't think this is a correct route because you want to reach 192.168.1.0/24 network through 192.168.10.11

by

Oh damn, of cause the right line is:

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface                                                                                                                       192.168.1.0 192.168.10.11 255.255.255.0   UG     0      0        0 br-lan

For better understanding I didn't use right IP-Adresses in my chart.

I'm sorry for confusing you.

by

Same result...

root@Teltonika-RUT240:~# tcpdump -i any host 192.168.1.100
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on any, link-type LINUX_SLL (Linux cooked), capture size 262144 bytes
^C
0 packets captured
2 packets received by filter
0 packets dropped by kernel
root@Teltonika-RUT240:~#

by
When I now do a tracreroute from RUT240 it just tries one hop...

root@Teltonika-RUT240:~# traceroute 192.168.1.100
traceroute to 192.168.1.100 (192.168.1.100), 30 hops max, 38 byte packets
 1  Teltonika-RUT240.com.lan (192.168.2.11)  2995.804 ms !H  2997.704 ms !H  2999.757 ms !H
root@Teltonika-RUT240:~#
by anonymous
Maybe we could try a remote session and try to solve this?

Could you create an account here and contact me via a private message so we can arrange it?