7012 questions

8393 answers

13630 comments

10306 members

0 votes
285 views 0 comments
by

Hi,

I have OpenVpn server running on Synology NAS on one site. It has openvpn address 10.8.0.1

On second site I have Rutx08 as VPN client connected to vpn with address 10.0.8.6 and PC with vpn address 10.8.0.10

Rutx08 is connected to lan on second site with wan port and has lan address 192.168.1.114. PC is connected to same lan.

Rutx08-s lan is in range 192.168.2.X and PLC is connected to rutx08-s lan with static IP address 192.168.2.55 and default gateway set to 192.168.2.1. Website is running on PLC

secure zones on rutx08 are:

and port forwards:

and routes:

I can reach PLC with browser on PC by typing 192.168.1.114:60 but can't with 10.8.0.6:60 and get message "10.8.0.6 refused to connect."

I can reach routx08 web ui both ways 192.168.1.114 and 10.8.0.6 so I guess that problem is somewhere in routers firewall configuration.  Goal is to reach PLC from any PC connected to VPN, not just one on same lan as router.

I am stuck on this for some time, tried everything I could find on net but nothing seams to work.

Please help.

1 Answer

0 votes
by

I found the solution on:

https://community.teltonika-networks.com/12603/openvpn-firewall?show=12603#q12603

I added device to zone:

firewall.@zone[1].device='tun+' there was not one in my firewall at first, and then restarted firewall. Access over port 60 started to work.

Then I forwarded  port 502 which did not work at first, but started to work when I restarted firewall again from ssh access. 

/etc/init.d/firewall restart

So it may be that it only took restarting firewall from ssh in first place.

Best answer