VPN and OSPF problems
I have several question, maybe someone can help me out.
1)
I was trying to setup GRE VPN + OSP with 2 ER605 routers, but OSPF fails. GRE is working fine, but OSPF does not find it's neighbor. I enabled OSPF on the GRE Interface (passive mode = disable). Did someone get OSPF running on a Omada router?
2)
It looks like I cannot setup User Authentication when using Wireguard VPN or IPSec (Client-Server). Can someone please confirm or corrcect me?
3)
When using Site-2-Site VPN with IPSec, GRE or Wireguard, I can only add a single remote Subnet. Is that by design and I cannot add more?? How can I connect 2 sites when a site has more than 1 subnets?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hi @ReneM
Thanks for posting in our business forum.
You should add the GRE subnet to both routers' network tables.
Your config is supposed to be 10.254.0.0, 0.0.0.255, area ID 100.
- Copy Link
- Report Inappropriate Content
Hi @ReneM
Thanks for posting in our business forum.
1. Please share the topology and the config for GRE and OSPF. Screenshots.
2. Unrelated two features. WG does not have the client option. I don't think the WG officially provides such a feature. IPsec does not use User Authentication, instead it uses the preshared key.
Look at the SSL VPN. That's what you are looking for. Other high-end models support them.
3. S2S and WG should allow you to set more than 1 subnet in the peer configuration in the Controller mode.
- Copy Link
- Report Inappropriate Content
Thanks for your input!
I did not know that standalone mode has less features that controller mode. I thought it was vice verca. So I have to decide to use controller mode but not ospf but additional subnets in s2s configuration or standalone mode and ospf (whenever it is working...).
Regarding OSPF, what I have done is setting up a little lab with 2 ER-605 routers. they are in the same WAN segment (router A 1.0.0.1, router B 1.0.0.2) and for LAN I configured 2 different subnet. Router A has 192.168.2.0/24, router B has 192.168.20.0/24. Then I setup GRE which seems to be working fine.
Here is the OSP config for router A:
On router B it is the same setup with the same Area ID, only the Network table has a different IP address (192.168.20.0)
- Copy Link
- Report Inappropriate Content
Hi @ReneM
Thanks for posting in our business forum.
You should add the GRE subnet to both routers' network tables.
Your config is supposed to be 10.254.0.0, 0.0.0.255, area ID 100.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 382
Replies: 3
Voters 0
No one has voted for it yet.