[SOLVED] Trouble configuring OpenVPN Server (ER605) allowing for client internet access
I can't seem to get internet access when connecting to the ER605 OpenVPN server (configured for Full Mode).
Similar threads:
- Problem reported but no resolution in: https://community.tp-link.com/en/business/forum/topic/581518
- Exact same problem described and it's suggested that it should work in: https://community.tp-link.com/en/business/forum/topic/247600
- Additional reference: https://www.tp-link.com/ca/support/faq/3632/
Tech details:
- ER605 V2 Router; Firmware 2.2.4 Build 20240119 Rel.44368
- Standalone mode
- Connecting (testing) from Android phone on LTE+ network
- Client using latest version of OpenVPN Android app
OpenVPN Server configuration on the ER605:
- AccountPWD: disabled
- Status: enabled
- Full Mode: enabled
- Protocol: UDP
- Service Port: 1194
- Local Network: N/A (grayed out)
- WAN: WAN
- IP Pool: 192.168.10.0/24
- Primary DNS: 8.8.8.8
- Secondary DNS: 8.8.8.4
- Authentication Type: N/A (grayed out)
Firewall ACL:
- Policy: Allow
- Service Type: OpenVPN (I added a Service Type for UDP 1194)
- IP Type: IPv4
- Direction: [WAN] In
- Source: IPGROUP_ANY
- Destination: Me
- Effective Time: Any
With the above in place I can successfully establish the OpenVPN connection from the phone (on LTE network) to the ER605 but that's all. I do get an IP address on the specified network (as per the IP Pool setting) but using the Network Analyzer Android app, I don't seem to have a default gateway in my route table and I can't get anywhere.
Details from the Network Analyzer routing table:
192.168.10.8/30
- Gateway: *
- Iface: tun0
- Flags: N/A
- IP Version: IPv4
192.168.10.0/24
- Gateway: *
- Iface: tun0
- Flags: N/A
- IP Version: IPv4
8.8.8.8/32
- Gateway: *
- Iface: tun0
- Flags: N/A
- IP Version: IPv4
8.8.4.4/32
- Gateway: *
- Iface: tun0
- Flags: N/A
- IP Version: IPv4
*
- Gateway: *
- Iface: tun0
- Flags: N/A
- IP Version: IPv4
So I'm not sure what's going on - this is supposed to work isn't it? Any suggestions? Maybe something to do with the ER605 Firewall ACLs or other settings - I'm just not sure what??
Thanks.