NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Netgear Orbi configured for VPN Passthrough
I have a second dedicated VPN router I am planning to configure as a second router behind my existing Orbi router - on a different subnet. I am looking to understand how to set VPN passthrough on my existing Orbi router (RBR50) in order to use a dedicated VPN router passing through the Orbi to their VPN server. I see no VPN passthrough settings on my Orbi. Does anyone know how to configure the Orbi for another router to pass VPN traffic through it?
8 Replies
randerton wrote:
I have a second dedicated VPN router I am planning to configure as a second router behind my existing Orbi router - on a different subnet. I am looking to understand how to set VPN passthrough on my existing Orbi router (RBR50) in order to use a dedicated VPN router passing through the Orbi to their VPN server. I see no VPN passthrough settings on my Orbi. Does anyone know how to configure the Orbi for another router to pass VPN traffic through it?
I think this depends on which VPN that router will be running. OpenVPN, for example, by default uses UDP port 1273 for tun and UDP port 1274 for tap connections (although they could be reconfigured to something different.) I have no idea which ports other VPN protocols use.
So, on the Orbi, UDP ports 1273 and 1274 would be forwarded to the LAN IP address of this VPN router. With devices connecting to that router being in a different IP subnet than devices connected to the Orbi, there could be communication issues between the two subnets.
If the plan is to use this VPN router to aggregate outbound connections from several devices (i.e. not receive VPN connections), I'm not certain that any ports need to be forwarded, because when the VPN router opens a connection to the internet VPN host the return path will go through the Orbi to the VPN router.
Please return and comment on how this project is proceeding. There is a lot of interest in VPN, and not much experience with these exotic projects.
Thanks for the initial thoughts. Here's a bit more detail on what I'm trying to accomplish and my information sources thus far. I'm not a networking guru by any means. I have an existing Orbi-base Wifi network I wish to maintain as-is. My objective is to put all my Roku and Android TV's behind a VPN which means a VPN like Express VPN or Nord VPN. Almost all my Roku and Android TV devices are hardwired Ethernet so I plan to disable the Wifi on the second VPN router I purchase/configure. I am researching using FlashRouters to flash a second router with DD-WRT in order to make that my "VPN Router" (looking at a Linksys WRT1900ACS router to use for this now). I am following some directions I found (Dual-router setup w/ a dedicated VPN Router: A step-by-step tutorial (vpnuniversity.com) on how to configure a VPN Router to sit behind an existing Wifi router using a separate subnet to keep the two networks separate. This article indicates you must configure the "front end" router (Orbi in my case) by enabling "VPN Passthrough" to allow all VPN traffic to pass through the the Orbi and back from the VPN server. I just can't locate any "VPN Passthrough" settings on my Orbi router.
randerton wrote:
I just can't locate any "VPN Passthrough" settings on my Orbi router.
That is correct. The Advanced Tab, Advanced Setup, Port Forwarding page has a number of very common pre-defined port forwarding rules (starting with FTP at the top). What you want is to create a Custom Rule that identifies the specific TCP/UDP ports needed for your VPM model. I would check with Express or Nord for which ports they use.
