Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?
Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?
2024-01-11 11:03:00
Model: Archer AX75  
Hardware Version: V1
Firmware Version: 1.1.2 Build 20230606 rel.1786(5553)

Can one AX5400 (AX5400 Tri-Band Wi-Fi 6 Router )(configured as vpn client) use l2tp/ipsec to connect to another AX5400 (configured as vpn server) via internet?

I tried it, but the vpn client in the AX5400 always stay in connecting status ;  with the same vpn client parameters, win10 pc can successfully connect to the AX5400 vpn server.  the vpn client AX5400 use wan interface connect to a broadband router's eth port,  win10 pc connect to the same broadband router's wifi, both eth and wifi are in the same network. for example, vpn client AX5400's WAN interface get IP address of 192.168.1.7/24,  win10 pc get IP of 192.168.1.3/24

  0      
  0      
#1
Options
3 Reply
Re:Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?
2024-01-11 20:08:44

  @RichardXie I find this link: https://www.tp-link.com/us/support/faq/3799/  ,  it says:

Q6. Can I use a VPN to access the entire network from both the VPN Server and VPN Client side with a TP-Link Wi-Fi Router or Deco Mesh Wi-Fi system?

A: No, the ability for the server to access the client can typically only be achieved in site-to-site VPN. The VPN types supported by Wi-Fi Router and Deco Mesh are designed for client-to-server connections, meaning that the client can access the server, but not the other way around.

 

Does it mean that the senario I tested is not possible since only client can access server, but server can't access client?

LAN1----AX5400-VPNClient-wan interface---------L2TP/IPSec over internet---------wan interface----AX5400-VPNServer----LAN2

  0  
  0  
#2
Options
Re:Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?
2024-01-12 03:45:19

  @RichardXie 

 

Hi, if you only would like the client side to access the server side devices, it should be okay, if you would like to server side to access the client side as well, that will not be possible.

 

However, it seems that your AX5400(I guess it is Archer AX75) client is not connected to the VPN Sever yet. you could also try OpenVPN or PPTP VPN to see if it could connect. (please remember to change the VPN server type as well)

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router EasyMesh Is Available When Wi-Fi Routers Work in AP Mode as A Controller. Archer BE550 New Software Enhances System Stability and Optimizes MLO Network Stability. TL-WA3001 Supports EasyMesh, Speed Limit, Guest Network in AP Mode and/or Multi-SSID Mode. If you found the post or response helpful, please click Helpful. If an answer solves your problem, click "Recommended Solution" so that others can benefit from it.
  0  
  0  
#3
Options
Re:Can one AX5400 (vpn client) use l2tp/ipsec to connect to another AX5400 (vpn server)?
2024-01-12 05:39:53

  @Sunshine Thanks for the info!

Just found that it was because I haven't added the device list in the vpn client setting, so the vpn connection status stayed in connecting status, once I added one PC to the device list, the vpn connection status changed to connected:

 

 

 

 

However I found the pc still can't access internet ( this pc is connected to the vpn client 5400's wifi, pc's IP is192.168.2.118/24, this 5400's wan IP is 192.168.1.9(connect to another broadband router's eth port, lan IP is 192.168.2.1 which is the gateway of the pc).  However if I directly connect this pc to the broadband router's wifi and get an IP of 192.168.1.x/24, then run vpn in this pc by using the same vpn client parameters, it can successfully using vpn to connect to another site's vpn server and able to access internet. Is there anything I missed?

  0  
  0  
#4
Options