Business Community > Gateways > Connection between VPN clients
< Gateways

Connection between VPN clients

Connection between VPN clients

Connection between VPN clients
Connection between VPN clients
Yesterday
Tags: #VPN #Routing
Model: ER7412-M2  
Hardware Version:
Firmware Version:

I'm looking for a solution to reach a VPN client from another VPN client, using the ER7412-M2. The situation: I have professional cameras with remote control option. The control SW works on iPad only. Cameras are connected to a 4G router, the 4G router is connected using IPSec (IKEv2) Lan-to-Lan to the ER7412-M2. My iPad connects directly to the ER7412-M2 using IPSec (IKEv2) Client-to-Lan. Both sides using public 4G/5G networks (with NAT), and connecting trough VPN to the ER7412-M2 without any problem. But it is not possible to reach the cameras from the iPad.

 

Some additional info: I tried to create a virtual server on the ER7412-M2, and forward the ports to the IP of a camera. It did not work. But if I do the same port forward to an internal IP (Linux server in the home network) and I make a port forward on that Linux machine too, I can reach the camera from the iPad. So it seems for me, communication between VPN clients are disabled. Is it possible to enable it somehow? Using the Linux machine for the second forward could be a solution, but this way I can control only one camera, since I can't change the ports in the iPad app.

  0      
 
  0      
 
#1
Options
7 Reply
Re:Connection between VPN clients
21 hours ago

  @c-ta From a PC behind the ER7412-M2, can you ping the cameras? Just to show that the Site to Site VPN is functioning between the routers. 

  0  
  0  
#2
Options
Re:Connection between VPN clients
18 hours ago

Thanks for the reply, @NeilR_M !

 

Yes, I can ping the cameras from the local network. Everything works fine if the cameras OR the ipad is in the local network. So it works if 1. the ipad is in the local network, and the cameras are connected trough the 4G router, using VPN, 2. the cameras are in the local network, and the ipad is connected trough VPN. But it does not work if both sides (cameras and ipad) are outside, and connected trough VPN. This case I can't ping the cameras from the ipad, but I can ping all the cameras and the ipad as well from any computer in the local network.

  0  
  0  
#3
Options
Re:Connection between VPN clients
16 hours ago

  @c-ta When setting up the Site-to-Site VPN between the routers, did you ensure to specify the VPN subnet as well as the LAN subnet when it comes to Local Networks? Please see the screenshot as an example; there are two subnets specified in the local networks, with one of them representing the VPN subnet.

  0  
  0  
#4
Options
Re:Connection between VPN clients
16 hours ago

 vpnscreenshot

  0  
  0  
#5
Options
Re:Connection between VPN clients
16 hours ago

  @NeilR_M Well, I do not. I use the "Network" option at "Local network Type", with LAN selected. My local network (LAN) is 192.168.1.0/24. This is not the way? Should I do a separate local LAN/subnet for the VPN at Network/LAN?

 

  0  
  0  
#6
Options
Re:Connection between VPN clients
an hour ago - last edited an hour ago

  @c-ta 

 

You will need to manually specify the subnets with the "Custom" option as above - then you can include anything you want.  Other subnets, VPN subnets the router knows about, things upstream of the WAN port...  Its much more flexible than "networks" which is gateway interfaces only

  1  
  1  
#7
Options
Re:Connection between VPN clients
46 minutes ago

  @c-ta As GRL said, please use the custom IP to specify your LANs.

  0  
  0  
#8
Options

Information

Helpful: 0

Views: 100

Replies: 7

Tags

VPN Routing
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.