TP-WR841n - one port access to WAN but other only to LAN
Hello,
Here is the topology of my network:
- SWITCH_1 via ethernet is connected to
- the internet router
- a computer (PC1)
- the router TL-WR841N
- TL-WR841N via ethernet is connected to:
- a computer (PC2)
- TL-WR841N via wifi is connected to:
- a computer (PC3)
By default, PC2 and PC3 are on the same subnetwork and can access to internet and to each other but not to PC1.
I want to change the configuration so the PC1 can access to the PC2. I want to keep the config so the PC3 can access to the internet but not to PC1.
I tried a lot of thing on the admin panel to do that but i think i don't understand well how to do that.
Can you explaine me what should i do ?
Thank for your help.
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
If you move PC2 to the Switch_1 where the PC1 is you should be able to achieve this.
But In this topology PC2 and PC3 won't see each other because they won't be on the same subnet anymore.
- Copy Link
- Report Inappropriate Content
@terziyski I can't do that, PC1 and PC2 are not on the same floor
- Copy Link
- Report Inappropriate Content
With this topology there's no other way to do this except running a cable from PC2 to the Switch_1.
- Copy Link
- Report Inappropriate Content
Alternatively, is there a solution to acces to an application running on PC2 on a given port from PC1 ? It's ok if this application is accessible drom PC3.
I tied to use the port forwarding and static routes but it's not working. Do you know how i should configure the router ?
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Unfortunatly, the GUI version of the example you provide is not the same as the GUI version of my router.
My Firmware Version is OpenWrt Chaos Calmer 15.05.1 / LuCI 15.05-149-g0d8bbd2 Release (git-15.363.78009-956be55)
I can't find the virtual server panel.
Here is what i see on the network admin panel:
Here is what i tried:
- in Firewall - Traffic rules, i added 2 rules:
- Any TCP From any host in wan To any router IP at port 7000 on this device
- Any TCP From any host in wan with source port 7000 To IP 192.168.1.33, port 7000 in lan
- in Firewall - por forwarding, i added 1 rule:
- IPv4-TCP From any host in wan with source port 7000 Via any router IP at port 7000
But when i try to access to the app on port 7000 on PC2 from the wan on PC1 via the ip of the TL-WR841N router like this http://192.168.1.14:7000
Nothing append, the request is blocked.
I used the ip showed in overview admin panel:
- Copy Link
- Report Inappropriate Content
This is not the stock FW of TP-WR841n.
Check this article for port-forwarding in OpenWRT - <https>://www.wundertech.net/how-to-port-forward-in-openwrt/
and give it a try.
- Copy Link
- Report Inappropriate Content
I'am not sur to understand which ip adress i should use as internal ip adresse.
The app i want to access is a web server running on port 7000 on PC2 (192.168.1.33)
But when i set this,the app is not accessible from my primary network.
In the tutorial you gave me, it uses the ip of the openwrt router, should i set this one on the port forwarding ??
- Copy Link
- Report Inappropriate Content
This looks correct as a port-forwarding rule:
If you are accessing the PC2 from PC1 you should open http://192.168.1.14:7000.
If you are accessing PC2 from PC3 you should open http://192.168.1.33:7000.
That is if WR840N is working in router mode and is doing a NAT.
What concerns me is the WAN IP address of WR841N - according to your screenshot iti's 192.168.1.14.
Your PC2 can't have an IP address (192.168.1.33) in the same subnet (192.168.1.0/24) as your WR840N WAN port.
Most probably this is the main reason for port-forwarding not working as expected.
- Copy Link
- Report Inappropriate Content
That is if WR840N is working in router mode and is doing a NAT.
How can i be sure that my router is doing a NAT ? Is it possible that it does not have the option ?
Your PC2 can't have an IP address (192.168.1.33) in the same subnet (192.168.1.0/24) as your WR840N WAN port.
So how can i access to PC2 via the WAN network of the router if the ip is not 192.168.1.33 ? is it another ip I have to found ? or it's just not accessible ?
If i have to pass through the router ip adress (192.168.1.14), how to tell the router to redirect the trafic from the wan on port 7000 to the soubnetwotk ip adress 192.168.1.33:7000 ?
Is it with in the firewall configuration page ?
Here is the firewall zone settings:
Here is the settings of a new zone when i click on Add button:
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 226
Replies: 10
Voters 0
No one has voted for it yet.