- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Re: Orbi VPN with Gateway behind it
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Technically, there may be a "more secure" method, but in practical terms the additional security is pretty small.
If the Huawei router is able to forward ports, then you can forward the ports used by OpenVPN to the Orbi router. This will leave all other connection attempts blocked. By default, OpenVPN uses UDP ports 12973 and 12974:
This means that the Huawei router will absorb all of the irritating Denial of Service (DoS) traffic that tends to clog up the Orbi log file. However, this also results in the Orbi being in a Double NAT situation which interferes with other activities besides VPN, such as sharing media, running web sites, and some internet gaming.
When the Orbi is in the router's DMZ, that is identical to the router being connected to an ordinary modem, which is the usual recommended practice. In other words, it is exactly as vulnerable as it would be if the Huawei was not a router to begin with.
All Replies
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Orbi VPN with Gateway behind it
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Technically, there may be a "more secure" method, but in practical terms the additional security is pretty small.
If the Huawei router is able to forward ports, then you can forward the ports used by OpenVPN to the Orbi router. This will leave all other connection attempts blocked. By default, OpenVPN uses UDP ports 12973 and 12974:
This means that the Huawei router will absorb all of the irritating Denial of Service (DoS) traffic that tends to clog up the Orbi log file. However, this also results in the Orbi being in a Double NAT situation which interferes with other activities besides VPN, such as sharing media, running web sites, and some internet gaming.
When the Orbi is in the router's DMZ, that is identical to the router being connected to an ordinary modem, which is the usual recommended practice. In other words, it is exactly as vulnerable as it would be if the Huawei was not a router to begin with.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Orbi VPN with Gateway behind it
If the DMZ worked then you may have the description reversed, and the fiber gateway device is actually in front of the Orbi router. In which case, if on a double NAT, then there is no issue with putting the Netgear router on the DMZ of the fiber gateway, as you will still have the firewall and other security features of the Orbi router.
Ideally, you should search for an option on the fiber gateway to be placed into a transparent bridge mode, or at least an IP passthrough mode so that you will not be faces with a double NAT.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Re: Orbi VPN with Gateway behind it
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more