Start a New Discussion

Start a New Discussion

Orbi WiFi 7 RBE973
Reply

Port forwarding to a VPN client

scouzi66
Aspirant
Aspirant
‎2016-12-22 11:59 AM
‎2016-12-22 11:59 AM

Port forwarding to a VPN client

I enabled VPN access to my R7000 running the latest formware level. Port forwarding to a VPN client connected does not work. Is this supported? I forward the port to the local IP address provided to the client. Internally I can access the VPN client from other machines on local network. Externally, I cannot reach that VPN client when forwarding a port to it.

Model: R6700|Nighthawk AC1750 Smart WiFi Router,R7000|Nighthawk AC1900 Dual Band WiFi Router
Message 1 of 7
Labels:
0 Kudos
Reply

Accepted Solutions
JamesGL
Master
Master
‎2017-01-03 04:45 PM
‎2017-01-03 04:45 PM

Re: Port forwarding to a VPN client

Hi scouzi66,

 

If you will use it on a PC, you should use TAP and TUN is for mobile or smartphones.

 

TUN mode - 12973 (for smartphone)
TAP mode – 12974 (for PC)

View solution in original post

Message 6 of 7
Reply

All Replies
JamesGL
Master
Master
‎2016-12-28 07:36 PM
‎2016-12-28 07:36 PM

Re: Port forwarding to a VPN client

Hi scouzi66,

 

1. What is the software of your VPN?

2.  Where is the VPN server connected?

3. Make sure the port forwarded is the correct port for your VPN.

Message 2 of 7
0 Kudos
Reply
JamesGL
Master
Master
‎2017-01-02 04:42 PM
‎2017-01-02 04:42 PM

Re: Port forwarding to a VPN client

Hi scouzi66,

 

We’d greatly appreciate hearing your feedback letting us know if you need further assistance.

Message 3 of 7
0 Kudos
Reply
scouzi66
Aspirant
Aspirant
‎2017-01-02 04:53 PM
‎2017-01-02 04:53 PM

Re: Port forwarding to a VPN client

Upon further investigation ...

 

The port is indeed forwarded to the client. However, since source IP address (outside)  is not natted to the LAN side of the the NetGear router (LAN side of VPM server), the VPN client responds back through it's own WAN interface rather than it's tun0 interface which the original request came through. 

 

It would be nice if a feature was available to SNAT external IPs (ie public) to a LAN side IP address with VPN server service.

Model: R7000|Nighthawk AC1900 Dual Band WiFi Router
Message 4 of 7
0 Kudos
Reply
scouzi66
Aspirant
Aspirant
‎2017-01-03 07:51 AM
‎2017-01-03 07:51 AM

Re: Port forwarding to a VPN client

Just a clarification to make ..

 

It's a TAP on the client and not a TUN.

 

Here is my client config file as generated by the router config

 

client
dev tap
proto udp
remote xxxxxxx.mynetgear.com xxxxx
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5

Message 5 of 7
0 Kudos
Reply
JamesGL
Master
Master
‎2017-01-03 04:45 PM
‎2017-01-03 04:45 PM

Re: Port forwarding to a VPN client

Hi scouzi66,

 

If you will use it on a PC, you should use TAP and TUN is for mobile or smartphones.

 

TUN mode - 12973 (for smartphone)
TAP mode – 12974 (for PC)

Message 6 of 7
Reply
JamesGL
Master
Master
‎2017-01-08 06:46 PM
‎2017-01-08 06:46 PM

Re: Port forwarding to a VPN client

Hi scouzi66,

 

If your issue is now resolved we encourage you to mark the appropriate reply as the “Accepted Solution” so others can be confident in benefiting from the solution. The Netgear community looks forward to hearing from you and being a helpful resource in the future!

Message 7 of 7
0 Kudos
Reply
Top Contributors
See All
Discussion stats
  • 6 replies
  • ‎2016-12-22 11:59 AM
  • 11772 views
  • 1 kudo
  • 2 in conversation
Announcements

Orbi WiFi 7