Site to Site VPN ER605
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.Site to Site VPN ER605
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
I am trying to set up a site to site VPN (ipsec) for data on specific ports.
all other data (internet traffic) should run through the local isp.
somehow i cannot get it up and running between the two ER-605's
no open vpn.
Site one LAN: 192.168.1.xx
Site two LAN: 192.168.168.xx
thank you in advance
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hi @AJC01
Thanks for posting in our business forum.
You can take a look at this:
How to set up Site-to-Site Manual IPsec VPN Tunnels on Omada Gateway via Omada Controller
Or give full details about your network environment and configs.
- Copy Link
- Report Inappropriate Content
Hi @AJC01
Thanks for posting in our business forum.
You can take a look at this:
How to set up Site-to-Site Manual IPsec VPN Tunnels on Omada Gateway via Omada Controller
Or give full details about your network environment and configs.
- Copy Link
- Report Inappropriate Content
thank you for the reply.
I have this network situation:
Site 1 Site 2
-----------------------------------------
| ------------------------------------- |
| | | |
ISP modem --------- | |
| | | | |
------------------ ER605 ------ | | | |
| | | ISP modem
| | | | |
| | | ER 605 ---------------------------DHCP LAN
| | | | |
| | | WIN Server VPN-host (DHCP -VPN)
| | |
| | |
| | |
| | |
workstation 1------VPN-------| |
workstation 2 -----VPN-------- |
etc.
What i'd like
Site 1 - ER605 (VPN) ------------ISP modem ----------------------Site 2----ISP modem ----ER605 (VPN)-----WIN server.
Just for certain ports / programms
All other internet trafic needs to be routed through the ISP modem directly to the internet
- Copy Link
- Report Inappropriate Content
you want IPsec site to site, or lan to lan as it is called in stand alone, It's pretty simple, make sure you have a public IP address on both routers, then go to page 153 in the manual.
I don't know if you are using stand alone or controller, the manual is for stand alone
https://static.tp-link.com/upload/manual/2023/202310/20231009/1910013510_ER605(UN)_UG.pdf
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
first you should get the vpn up and running then you can concentrate on ports then. but to block and open ports you use acl which is also described in the manual i would think
- Copy Link
- Report Inappropriate Content
unfortunatelly, no connection.
had both vpn settings next to each other, followed the steps from the manual, no connection
are there any ports i need to open ?
- Copy Link
- Report Inappropriate Content
Do you have a public IP on the WAN interface of the router? You must have that on both routers or it won't work.
- Copy Link
- Report Inappropriate Content
at the wan-ports, i have the lan adress of the isp modem (=gateway)
- Copy Link
- Report Inappropriate Content
no no ports should be opened. when it works you should be able to ping gateway ip from lan to lan, if you get a response then vpn is established
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 1381
Replies: 17
Voters 0
No one has voted for it yet.