Business Community > Routers > Site to Site VPN Connects but can't ping devices
< Routers

Site to Site VPN Connects but can't ping devices

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Site to Site VPN Connects but can't ping devices

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Site to Site VPN Connects but can't ping devices
Site to Site VPN Connects but can't ping devices
2023-11-15 22:23:37 - last edited 2023-11-17 01:39:44
Tags: #VPN
Model: ER605 (TL-R605)  
Hardware Version:
Firmware Version:

Hi,

I have set up a site to site office scenario where a branch office connects to a home office using ER605s. I am using Omada controller and the branch office connects successfully to the home office and i can ping the ER605's from both ends. From the home office i can also ping the PC that the branch office controller software is running on, but no other devices. I cannot ping any devices on the head office. I've watched the youtube videos and have tried to set this up many times, but always the same results. Any help would be appreciated. 

 

From the log on the home office

 

4 2023-11-15 15:43:44 IPsec NOTICE [osg:40-ED-00-6E-BC-EE]: Set up IPsec connection successfully. (Peers=x.x.167.85<->x.x.58.109)
5 2023-11-15 15:43:44 IPsec NOTICE WAN: Phase 2 of IKE negotiation succeeded. (Peers=x.x.167.85<->x.x.58.109)
6 2023-11-15 15:43:43 IPsec NOTICE WAN: Phase 1 of IKE negotiation succeeded. (Peers=x.x.167.85<->x.x.58.109)

 

ipconfig from the branch office:

Wireless LAN adapter Wi-Fi 2:

   Connection-specific DNS Suffix  . : lan
   IPv4 Address. . . . . . . . . . . : 192.168.0.108
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.0.1

 

ipconfig from the home office:

Ethernet adapter Ethernet 4:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::ff8e:1063:ef57:c58c%11
   IPv4 Address. . . . . . . . . . . : 192.168.1.110
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1

  0      
 
  0      
 
#1
Options
2 Accepted Solutions
Re:Site to Site VPN Connects but can't ping devices-Solution
2023-11-16 02:29:57 - last edited 2023-11-17 01:39:44

Hi @hoffmanjp 

Thanks for posting in our business forum.

Question, is the 192.168.0.1 or 192.168.1.1 pingable? I mean you ping the remote subnet gateway. e.g. when your PC is in 192.168.0.1/24, ping the 192.168.1.1 which is the VPN remote gateway.

Regardless of computers' IPs, I need to know if the gateway is pingable or not. This should be pingable by default.

Mostly, the computer is not pingable due to the firewall issues. I just need to make sure your VPN tunnel is through. The firewall issue would be the MS problem. Usually, use the Private Network would allow access.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  0  
  0  
#2
Options
Re:Site to Site VPN Connects but can't ping devices-Solution
2023-11-16 02:40:16 - last edited 2023-11-17 01:39:46

  @hoffmanjp 

 

Duh, works great now. Didn't even dawn on me that it was the stupid firewall.

 

Thank you Thank you Thank you!

 

Recommended Solution
  0  
  0  
#3
Options
2 Reply
Re:Site to Site VPN Connects but can't ping devices-Solution
2023-11-16 02:29:57 - last edited 2023-11-17 01:39:44

Hi @hoffmanjp 

Thanks for posting in our business forum.

Question, is the 192.168.0.1 or 192.168.1.1 pingable? I mean you ping the remote subnet gateway. e.g. when your PC is in 192.168.0.1/24, ping the 192.168.1.1 which is the VPN remote gateway.

Regardless of computers' IPs, I need to know if the gateway is pingable or not. This should be pingable by default.

Mostly, the computer is not pingable due to the firewall issues. I just need to make sure your VPN tunnel is through. The firewall issue would be the MS problem. Usually, use the Private Network would allow access.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  0  
  0  
#2
Options
Re:Site to Site VPN Connects but can't ping devices-Solution
2023-11-16 02:40:16 - last edited 2023-11-17 01:39:46

  @hoffmanjp 

 

Duh, works great now. Didn't even dawn on me that it was the stupid firewall.

 

Thank you Thank you Thank you!

 

Recommended Solution
  0  
  0  
#3
Options

Information

Helpful: 0

Views: 1065

Replies: 2

Tags

VPN
Related Articles
 site to site vpn connected, but can't ping to remote hosts
600 0
ER605 site-to-site and client-to-site
369 0
ER605 Site to Site
184 0
Site to Site VPN issue
552 0
Creating a Site to Site Open VPN client connection to use my VPN provider (Privado)
557 0
Can Site to Site VPN work with 2xER605 but only main branch has public ip?
539 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.