WIKIABOUT

FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

Most popular tags

rut955 rut240 rut950 rutx11 rms vpn to openvpn wifi not sms trb140 firmware connection - ipsec on rutx12 rutx09 modbus
We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.

RUT955 4G VPN

0 votes
695 views 14 comments
by anonymous
Hi,

I would like do a remote access with my laptop connected to internet in Europe to a PC connected to the router.

The router is connected to a 4G mobile and has the CGNAT so a private IP address.

I think use OpenVPN Cloud.

Is it the right way ? And if yes, is there an example ?

best regards,

Pat

1 Answer

0 votes
by anonymous

Hello and thank you for contacting us, this is Martín, Tech Support Engineer from Teltonika Networks.

For this case you would need to add your device as an OpenVPN client to the OpenVPN Cloud service. You can do so by producing an .ovpn file on the platform and importing that file under the VPN configuration of the RUT955. 

Instructions to connect to the VPN with this file are attached here, under the Enable OpenVPN config from file setting.

This will enable you to connect to the VPN as a client, and to enable communication to the computer you will need to establish the correct routing rules as to allow the traffic from the laptop connected to the RUT955 to the network of the VPN. 

I have also attached here the Wiki page for the routing rules.

I remain attentive to any further questions.
Best regards.

Best answer
Show 9 previous comments
by anonymous

Hi Martin,

After deleting the old configuration and re-add a new one,  the message has disappeared.

>>>how did you create the .ovpn file and which options did you set? On the option "Select Where to Deploy" did you select "Teltonika"?

From OpenVPN Cloud, I follow these steps :

  1.  I select "Create Network"
  2. "Remote Access"
  3. define a name of the network and the connector
  4. Define Routes to Private Resources:
    1.  Private Subnets : 192.168.1.0/24   (address of the LAN defined in the router ???)
    2. Private Domains  : empty 
  5. Deploy Network Connector myconnector :  select OpenVPN Compatible Router : Teltonika
  6. Get ovnp file.

The VPN Client status is still disconnected...

Here is the recap of OpenVPN Cloud :

Log from OpenVPN CLoud, it seems that the Router open multiple simultaneous connections then the router is disconnected:

by anonymous

Hello Patopat, I performed the same configurations you have, then downloaded the .ovpn profile and successfully connected to the OpenVPN correctly.

Have you tried performing a factory reset on the device and then trying to configure everything again? Instructions to do so are outlined here, on the button for "Restore to factory defaults".

I suspect this issue might be due to pre-existing configurations which might be interfering with the creation of the tunnel interface for the VPN connection.

Best regards.

by anonymous
Hi Martin,

Yes, your are right. Once reset to default factory, I added a VPN with the ovpn file and now is connected. :)

What is the next steps to view the device on LAN from my laptop ? I installed openVPN client v3.3.6.
by anonymous

Martin,

I'm connecting successfully with the OpenVPN Client and ping the router 192.168.1.1.

When I pinged the device connected to the LAN of the router, I didn't receive a response. Thanks to this post rms-vpn-issue-to-ping-device-connected-on-lan-from-ovpn-client, I added the default gateway and disabled the firewall and now I can ping and do a Remote Desktop connection on my device on LAN port.

So I have the same question, how to configure the firewall correctly on the device connected to the LAN of the router ?

by anonymous
Hello Patopat, I am glad you are reaching the LAN device connected to the RUT955.

Usually devices have their Firewall enabled by default, and from a security standpoint it's recommended to keep it that way, as this mitigates security risks.

Modifying Firewall rules on LAN devices themselves is out of our scope in Teltonika support, however we do recommend that you look for the official support pages on your LAN device manufacturer, and enable only the neccessary rules to allow for the connectivity you need (only enable the ports and the protocols needed).

Best regards.