Business Community > Gateways > SSL VPN not reaching all resources
< Gateways

SSL VPN not reaching all resources

SSL VPN not reaching all resources

SSL VPN not reaching all resources
SSL VPN not reaching all resources
3 weeks ago
Model: ER7212PC  
Hardware Version: V2
Firmware Version: 2.1.2 Build 20250705 Rel.59147

I've set up my network with an ER7212PC gateway and SG3428X switch.

 

I have several VLAN interfaces set up. When connected locally, all devices can communicate as per ACL rules. Some devices are plugged into the gateway ports, some are plugged into the switch ports.

 

As soon as I connect to the SSL VPN with the correct resources, I can only communicate with the devices plugged into the gateway and not devices plugged into the switch, even if they're on the same VLAN as the devices on the gateway.

 

I've read all the guides on setting up SSL VPN and ACL rules.

 

ER7212PC v2.0 on FW 2.1.2 Build 20250705 Rel.59147

SG3428X v1.30 on FW 1.30.10 Build 20250628 Rel.73019

  0      
 
  0      
 
#1
Options
3 Reply
Re:SSL VPN not reaching all resources
3 weeks ago

  @getdizzy 

Thank you for your post. Have you tested whether the SSL VPN client can reach the switch’s own IP address? Please provide the current configurations on both the gateway and the switch, and let me know which port the switch is connected to so I can analyze the issue more effectively. Also, confirm whether the devices on the switch and the devices on the gateway are in the same VLAN. When the access fails, do you receive any error messages?

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch
  0  
  0  
#2
Options
Re:SSL VPN not reaching all resources
3 weeks ago

  @Ethan-TP 

Yes, the VPN client can reach the switch. The only error message when pinging is "destination host unreachable". This occurs even when all ACL rules are disabled.

 

For example:

 

VLAN 10 (Admin, gateway and switch are on this VLAN).

VLAN 20 (Devices)

VLAN 30 (VPN)

 

There are devices on VLAN 20 plugged into the switch and the gateway. They can communcate with each other fine.

 

When accessed via VPN, the VLAN 30 client can access VLAN 20 devices plugged into the gateway, can access the switch, but NOT the devices plugged into the switch.

 

SFP Port 1 on the ER7212 is plugged into SFP Port 25 on the switch.

 

What specific further information should I provide?

  0  
  0  
#3
Options
Re:SSL VPN not reaching all resources
2 weeks ago

  @getdizzy 

Thank you so much for taking the time to post the issue on the TP-Link community!

To better assist you, I've created a support ticket via your registered email address and escalated it to our support engineer to look into the issue. The ticket ID is TKID251032800  please check your email box and ensure the support email is well received. Thanks!

Once the issue is addressed or resolved, welcome to update this topic thread with your solution to help others who may encounter the same issue as you did.

Many thanks for your great cooperation and patience!

Wishing you a joyful life and smooth internet! Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates Omada US Enterprise Beta Program Launch
  0  
  0  
#4
Options

Information

Helpful: 0

Views: 118

Replies: 3

About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.