Home

Forums

Stories

Knowledge Base

Business Community > Routers > Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

< Routers

Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

chabral

2020-03-20 18:03:13 - last edited 2021-04-19 11:24:30

Posts: 1

Helpful: 0

Solutions: 0

Stories: 0

Registered: 2020-03-20

Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

2020-03-20 18:03:13 - last edited 2021-04-19 11:24:30

Model: TL-R600VPN

Hardware Version: V4

Firmware Version: 4.0.3 Build 20190227 Rel.48206

Hi,

I wonder if it is possible that a PC connecting remotely to my router TL-R600VPN using L2TP can reach the network we have at the other end of an IPSec VPN connecting our router?

Scenario:

[PC] ---- [L2TP VPN] ---> [TL-R600VPN LAN 172.16.16.0/24] --- [IPSec VPN] ---> [Remote net 10.2.2.0/24]

I made the configuration and both VPNs work, but PC can not reach 10.2.2.0/24 network.

I'd appreciate your advise.

Thanks.

1 Reply

Andone

LV4

2020-03-23 02:05:35 - last edited 2021-04-19 11:24:30

Posts: 747

Helpful: 115

Solutions: 18

Stories: 0

Registered: 2018-07-19

Re:Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

2020-03-23 02:05:35 - last edited 2021-04-19 11:24:30

@chabral

IPsec VPN may not meet your requirements. If you use L2TP VPN for both sides, maybe can meet your demand.

[PC/192.168.0.0/24] ---- [L2TP VPN] ---> [TL-R600VPN LAN 172.16.16.0/24] --- [L2TP VPN] ---> [Router A / Remote net 10.2.2.0/24]

Suppose that the topology is as above.

For your PC, you can make the L2TP VPN server as PC's gateway. It means that all traffic of PC will be sent to VPN server.

For router A, it needs to support to set up static routing and use VPN interface as next hop. Then add a static routing that destination is 192.168.0.0/24 and next hop is the VPN interface's IP. VPN interface's IP is the VPN local IP you set on R600VPN.

Because the traffic can be forwareded based on routing in L2TP VPN, so we can use the above method, make PC and router A has the corresponding routing. IPsec is not based on routing so cannot meet the demand.

Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

Is it possible? Client PC --L2TP VPN--> TL-R600VPN --> IPsec VPN --> Remote site

Information

Voters 0

Tags