OpenVPN Client/site-to-site
I am trying to set up my OC200/Gateway as a OpenVPN client / site-to-site VPN.
However, when I go to add a user, it asks for "VPN Server" but the pull down box is empty and won't let me type anything or continue.
Similarly, if I try to Create a new VPN policy, it asks for "Remote Site", but again, the pull down box is empty and it won't let me type anything or continue.
What is the process for creating/enabling an OpenVPN site-to-site connection in the controller where my 7206 is a client to my OpenVPN server (which works BTW with Windows no issues)?
I'm running the latest controller and gateway firmware (OC200: 2.21.7 Build 20250707 Rel.72486 (Stable) and 7206: 1.4.2 Build 20240618 Rel.63827)
Thanks!
Hi,
First, I'm not sure that you are able to set up Site-toSite connection in Omada environment with OpenVPN. Site-to-Site seems to be available for IPsec only - but I might be wrong ofc.
In order to create VPN user, you need to have Server ready first. New user requires to have server assigned to it.
When you create new VPN Policy, I guess you are choosing OpenVPN client? If yes, then you should provide an info about Server IP (or FQDNS) address, so your newly created client knows where to connect:
It would be easier if you could provide some screenshots as well as a graph/picture of your environment and what you try to achieve :)
Best Regards
RR
@RaRu So this article says otherwise:
https://www.tp-link.com/us/support/faq/3631/
But none of the instructions in there are up to date with the latest controller software.
I have an OpenVPN server configured and I use on one of my cloud servers. It works great with the OpenVPN mobile/windows app, so I'm good there.
However, when I was trying to define the server in the version of the controller I was runnig the remote server IP field would not allow me to type anything. I noticed there was a new controller version for the OC200 yesterday, so I upgraded it and now I can actually type somthing in that field!
But now when I set it up, it accepts the config, and says it's enabled, but no traffic is flowing across the connection as far as I can tell. How can I tell if the connection is actually active? VPN Status for OpenVPN Client doesn't show anything. The logs show the profile being created successfully.
Here's the config, I used the .ovpn config file from a know working client:
Hi,
I would say, the easiest way to test it, is to perform PING command from computer in Gateway's LAN network or directly from Gateway using the Network Tools build in the controller.
For the 2nd option, go to Network Tool, choose PING test, set your gateways as source, LAN, and provide IP address of some device in the other network from the VPN's LAN:
If the connection is successful, you should perform proper PING test:
Make sure that the device you are PINGing is up and running and allowed to respond to pings.
Best Regards
RR