WIKIABOUT

FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

Most popular tags

rut955 rut240 rut950 rutx11 rms vpn to openvpn wifi not sms trb140 firmware connection - ipsec on rutx12 rutx09 modbus
We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.

OpenVpn client with client-nat option enabled does not forward traffic

0 votes
686 views 0 comments
by

Hi,

We're trying to use a RUT955 modem as gateway. However our openvpn traffic does not get forwarded as expected.

Client config is pushed from server:

ifconfig-push 10.85.11.1 255.255.0.0

iroute 10.85.11.0 255.255.255.0

push "route 172.16.0.0 255.255.0.0"

push "client-nat snat 192.168.85.0 255.255.255.0 10.85.11.0"

push "client-nat dnat 10.85.11.0 255.255.255.0 192.168.85.0"

I think the problem is the client-nat option used here. In our configuration the default INPUT/FORWARD policies are set to DROP for security reasons. When we add a "traffic rule" based on the configured zones, traffic does not get allowed through:

Source zone: VPN

Destionation zone: LAN

ACCEPT

As mentioned before, I think the client-nat option is the problem here because the teltonika fails to assign the source to the correct zone which should be VPN.

Any help here would be greatly appreciated,

Regards,

Alexander

1 Answer

0 votes
by anonymous

Hello,

Could you please mention what firmware are you using ?

Have you tried with the latest firmware

Provide a complete topology for your scenario. 

Share the screen shots for your configurations . 

Attach troubleshoot file . You can download in system>Administration> Troubleshoot. 

Thank you.

Have a good day.

Regards,

Ahmed