NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Orbi VPN with Gateway behind it
I have Orbi 750 router and Huawei Fiber Gateway behind it, I have configured VPN and DDNS on my Orbi to access my internal devices (CCTV and NAS) from outside home. VPN wasn’t working at the beginning...
Technically, there may be a "more secure" method, but in practical terms the additional security is pretty small.
If the Huawei router is able to forward ports, then you can forward the ports used by OpenVPN to the Orbi router. This will leave all other connection attempts blocked. By default, OpenVPN uses UDP ports 12973 and 12974:
This means that the Huawei router will absorb all of the irritating Denial of Service (DoS) traffic that tends to clog up the Orbi log file. However, this also results in the Orbi being in a Double NAT situation which interferes with other activities besides VPN, such as sharing media, running web sites, and some internet gaming.
When the Orbi is in the router's DMZ, that is identical to the router being connected to an ordinary modem, which is the usual recommended practice. In other words, it is exactly as vulnerable as it would be if the Huawei was not a router to begin with.
Technically, there may be a "more secure" method, but in practical terms the additional security is pretty small.
If the Huawei router is able to forward ports, then you can forward the ports used by OpenVPN to the Orbi router. This will leave all other connection attempts blocked. By default, OpenVPN uses UDP ports 12973 and 12974:
This means that the Huawei router will absorb all of the irritating Denial of Service (DoS) traffic that tends to clog up the Orbi log file. However, this also results in the Orbi being in a Double NAT situation which interferes with other activities besides VPN, such as sharing media, running web sites, and some internet gaming.
When the Orbi is in the router's DMZ, that is identical to the router being connected to an ordinary modem, which is the usual recommended practice. In other words, it is exactly as vulnerable as it would be if the Huawei was not a router to begin with.
Thank you so much, I removed Orbi form the DMZ and added these ports to the port mapping on the Gateway and now it works fine.