- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Port forwarding to a VPN client
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I enabled VPN access to my R7000 running the latest formware level. Port forwarding to a VPN client connected does not work. Is this supported? I forward the port to the local IP address provided to the client. Internally I can access the VPN client from other machines on local network. Externally, I cannot reach that VPN client when forwarding a port to it.
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi scouzi66,
If you will use it on a PC, you should use TAP and TUN is for mobile or smartphones.
TUN mode - 12973 (for smartphone)
TAP mode – 12974 (for PC)
All Replies
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Port forwarding to a VPN client
Hi scouzi66,
1. What is the software of your VPN?
2. Where is the VPN server connected?
3. Make sure the port forwarded is the correct port for your VPN.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Port forwarding to a VPN client
Hi scouzi66,
We’d greatly appreciate hearing your feedback letting us know if you need further assistance.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Port forwarding to a VPN client
Upon further investigation ...
The port is indeed forwarded to the client. However, since source IP address (outside) is not natted to the LAN side of the the NetGear router (LAN side of VPM server), the VPN client responds back through it's own WAN interface rather than it's tun0 interface which the original request came through.
It would be nice if a feature was available to SNAT external IPs (ie public) to a LAN side IP address with VPN server service.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Port forwarding to a VPN client
Just a clarification to make ..
It's a TAP on the client and not a TUN.
Here is my client config file as generated by the router config
client
dev tap
proto udp
remote xxxxxxx.mynetgear.com xxxxx
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 5
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi scouzi66,
If you will use it on a PC, you should use TAP and TUN is for mobile or smartphones.
TUN mode - 12973 (for smartphone)
TAP mode – 12974 (for PC)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Port forwarding to a VPN client
Hi scouzi66,
If your issue is now resolved we encourage you to mark the appropriate reply as the “Accepted Solution” so others can be confident in benefiting from the solution. The Netgear community looks forward to hearing from you and being a helpful resource in the future!
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more