MR600 v1 - IPSEC Road warrior
hi,
I'd like to use IPSEC Road warrior on MR600 v1.
I have remote IPSEc GW as 0.0.0.0
local Subnet IP configured for default - 192.168.2.0/24
remote subnet IP - blind shoot. I'm not sure here.
Connection tested with Macbook and Iphone.
Both clients have timeouts no message is on the router side in the log.
Maybe it's just a firewall issue?
NMAP online for UDP 500/4500 says closed.
Do you have any idea what I do wrong?
thank you
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hi, usually the IPSec VPN tunnel is established between two VPN Routers which is called LAN to LAN or Site to Site VPN, however, your remote gateway is set to be 0.0.0.0 and remote subnet 192.168.3.0/24, which is unable to locate where the remote site is.
May I know your purpose of using IPSec VPN? The MR600 V1 is working 3G/4G Router mode or wireless router mode? and is its WAN IP a public IP address or private IP address?
- Copy Link
- Report Inappropriate Content
Hi @Sunshine
I've never seen site-to-site IPSEC(I know it exists) but I've seen many "road warriors" setups.
Remote people using public wifi or hotspots connecting to home.
this is exactly my setup :-)
I have NAS at home, I'd like to get access from my laptop.
thank you, Jan
- Copy Link
- Report Inappropriate Content
Hi, thank you very much for the reply.
In that case, it is recommended to configure PPTP VPN or OpenVPN Sever on the MR600, then when you are not at home, you could connect the VPN Server on your client devices to access the home network. Here is the instruction:
https://www.tp-link.com/en/support/faq/2844/
Note: If the WAN/Internet IP address on the MR600 is a private IP address, which means there is another NAT in the front(If it works with SIM card only, the NAT is on ISP side), then you will not be able to connect the VPN Server when you are in a different network.
- Copy Link
- Report Inappropriate Content
Hi @Sunshine,
of course, I have public IP + dyndns service. Thank you for highlighting it for future readers.
Unfortunately, PPTP is not supported on the latest MacBook.
OpenVPN has known (not only) performance problems.
Is there a plan to support IPSEC road warrior on MR600?
thank you, Jan
PS: Can you report a bug(unless design of PPTP)? Login credentials are up to 15 characters and doesn't support uppercase in login name :(
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 454
Replies: 4
Voters 0
No one has voted for it yet.