NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Modem -> Router -> EdgeRouter -> Orbi
I have a unique set-up here...I have a Spectrum Modem, connected to a Spectrum Router, then connecting to my Edge Router Lite 3, and a few switches and AP's. I want to replace the AP's with the R...
miketheknight20 wrote:
We went the method of installing OpenVPN on the computer that needs the encrypted tunnel, but found from time to time the connection would drop and data was sent unencrypted. That is why we went the route of forcing the LAN IP to use OpenVPN via the ERL as it was ALWAYS gaurunteed to be connected and have the encrypted tunnel running.
For the 'host' capability, I wouldn't need to access all devices just one or two, I'm trying to consolidate it to where it's literally just an external hard drive that I need to access.
I have never investigated OpenVPN connection dropping. If it is a known problem, OpenVPN surely has information about what causes it. (I would suspect something on the PC, possibly the VPN config. Would certainly look in the OpenVPN log file for hints.) There is probably a way to use the ERL. The ERL functioned when connected to the Spectrum router, so it should function the same way when connected to the Orbi router. For example, create a static route on the Orbi to a bogus IP. On the ERL use the previous logic to redirect that IP through the OpenVPN tunnel. Or, just aim the PC at the ERL and use the previous method. Maybe even a static route on the PC that points the work IP to the ERL.
OpenVPN host is an "all or nothing" sort of thing. Once connected to the LAN, a device can access anything on the LAN that will accept a connection. For example, the Orbi router will (192.168.1.1). Everything else on the LAN probably has a firewall to allow/deny access.
Can't let this go....
Another idea:
- Connect the ERL to the Orbi router. It did what you want in regard to OpenVPN when connected to the Spectrum router.
The ERL will get a new IP address from the Orbi. (I would add that address to a 'reservation' on the LAN setup page so that it cannot change in the future.) - Change the PC to a static IP so that you can set the gateway address to be the ERL. Any time the PC attempts to connect to any IP that is not on the local LAN, packets will be directed to the ERL (the gateway).
- On the ERL, firewall logic will direct packets to the work IP range to OpenVPN. Packets to anywhere else will be directed to the Orbi gateway. (Or, however the ERL was setup before. Maybe all traffic went to the work IP and the work network allowed traffic "back out" to the interent.)
If it worked with Spectrum, it should work with Orbi.
Won't I also need to disable DHCP (and possibly a few other settings) on the ERL in doing this set-up?
I already had a static ip assigned to the device, but I def like this approach. Going to give it a try!
Yes. Thanks for catching that. The ERL must stop issuing IPs via DHCP, or the entire network will be confused!!!
Any progress on this?
miketheknight20 wrote:
Won't I also need to disable DHCP (and possibly a few other settings) on the ERL in doing this set-up?
I already had a static ip assigned to the device, but I def like this approach. Going to give it a try!
