WIKIABOUT

10918 questions

13009 answers

20276 comments

27017 members

Most popular tags

rut955 rut240 rut950 rutx11 vpn rms openvpn wifi to sms trb140 rutx09 ipsec not rutx12 firmware modbus - firewall on

open a port through openvpn on rut 230

0 votes
451 views 8 comments
by
I have a rut230 inside a clients company network.

I have uploaded the open VPN config file to the router and it seems to connect fine.

I can access the routers web interface from inside the VPN network, all seems to be working fine.

However, for some reason, I just cannot figure out how to now access a device on the LAN interface?

I have a device running on 192.168.3.3:502

which I need to access from within the VPN.

how do I go about doing this?

1 Answer

0 votes
by
Hi,

In our wiki: https://wiki.teltonika-networks.com/view/OpenVPN_configuration_examples#Reaching_a_device.27s_LAN_network we explain how to reach the LAN of the device in the OpenVPN network.

Please follow it and you should be able to reach it.

EB.
by

I have read that, however it does not make any sense to me.

I have tried adding a port forward but that does not seem to work. Please advise as to what I need to add or change?

by
Are you sure you've read that wiki part fully? Cause it's all explained there, and even if it sounds confusing for you it's necessary for your use-case.

Please read it again, and if you want to know more about static routes - you can find information here: https://wiki.teltonika-networks.com/view/Routing#Static_Leases

I would tell you what routes should be pushed, but for that, I would need a full topology of your network right now and what are you trying to do. Without a scheme, I doubt I will be able to help you.

EB.
by

Yes, I am sure I have read it, It Is extremely confusing and talks about servers and clients and to be honest I do not know which instance I am trying to implement.

I have drawn the network setup here:

All I am trying to do, is get the Laptop to be able to talk to that local machine on port 502 tcp.

how I understand that to work, is that in the laptop's software I will  try to connect to the teltonika VPN IP:  100.96.1.34:502

it will then masquerade that to the local LAN 192.168.3.3:502  using the port forwarding rules?

Are these assumptions correct?



 

by
In this case, you would need to port forward OpenVPN 100.96.1.34:502 port to 192.168.3.3:502 device in LAN, but it would be easier to push routes of 192.168.3.0 network and then access 192.168.3.3:502 through local IP instead of using port forwards.

EB.
by
You speak about push routes?

What is this and how do I add them?
by
On the server-side configuration there is a field that says push option:

https://wiki.teltonika-networks.com/view/OpenVPN_configuration_examples#Push_options

In it, you type "route networkIP SubnetMask" and then it's pushed to every OpenVPN network client so it knows that there's a route to that network through VPN.

EB.
by

I do not have that option available under the OPENVPN settings.

by
It's because:

1. It's a client instance that you have configured there.

2. You're loading OpenVPN config from file, so these changes must be done in the config itself.

EB.