1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Connecting two routers, one w/persistent VPN and the other w/ local access

Discussion in 'Networking Issues' started by bwanajag, Mar 21, 2011.

  1. bwanajag

    bwanajag Networkin' Nut Member

    I'm attempting to setup a network containing two routers, a primary giving me local internet access, and a secondary router that has a persistent VPN connection to a service (i.e. StrongVPN).

    As I understand it, there are two ways of approaching this issue, 1) turn off the DHCP on the secondary router, allowing the primary router to assign IP's - this would allow for a single network; or 2) set up each of the routers on their own subnets ( and - this would create two separate networks.

    Being that I want to connect to the primary router if I need fast local access and do not need VPN access, and would connect to the secondary router if I need VPN access, what is the best way to set this up?

    I failed to mention that there would be about 5 people that need the VPN option at various times (mostly simultaneously), otherwise if it were just me, I'd use a VPN client on my PC.

  2. eyendall

    eyendall Networkin' Nut Member

    Did Your Ever Get a Response?

    Did you ever get an answer to your question? Have you got your network set up as you described? i want to do something similar. Can you advise me?
  3. Toxic

    Toxic Administrator Staff Member

    1. this would only work if you dont use NAT on both routers.

    Personally the easiest way it to double nat. one router behind the other using both the WAN ports.

    I do this at home. my first router is an Netgear Wireless ADSL router. all it does is adsl. wireless is turned off. DHCP is enabled and only issues one static IP address to the WAN port of the other Router - my RV220W.

    Port forwarding.

    I port forward from router 1, ports 80, 443, 500, 4500 and torrent ports all to the 2nd routers WAN IP address.

    80 for http.
    443 for https and SSL vpn
    500 (UDP) for IPSec
    4500 (UDP) for IPSec NAT-T
    6881-6889 (UDP)

    the RV220W has port forwarding for torrents and http for my NAS's IP address

    the other ports are handled by the RV220W internally.

    I use 192.168.x.x for lan on 1st router and use 172.16.x.x for second routers LAN IP address.

    hope this helps.
  4. swisstony

    swisstony Networkin' Nut Member

    Hi... Same requirement as Bwanajag here. I simpy connected the second (VPN configured) router's WAN link to the LAN of the first.
    The VPN works great - but my problem is that the devices connected to the VPN router cannot see network devices on the original LAN.
    I have used 192.168.1.x on both routers but with no success.
    Any ideas how to share LAN devices across both routers?

    thanks swisstony
  5. Cristian Pacheco

    Cristian Pacheco Networkin' Nut Member


    Which router should use NAT? the VPN or the Local one?

    Are both routers supposed to be on Gateway Mode? or should I configure one as Router?

    I tried putting both routers on same subnet with different static IPs each.
    Both DHCP disabled.
    Both routers connected to each other on LAN port #1
    Both router's WAN ports connected to a third "Main Router"

    And it works excellent at the beginning, that is, if I change the "Default Gateway" on my PC from one router to another I get the Local or VPN connection, but after some time (haven't measured how much) it stops working.
    And you can see on the main router, (the one in which the other's WAN port are connected to it's LAN ports) the led light going crazy, so maybe (probably) there's a looping error in which a packet returns from one router and outputs from another, and it blows one router to smithereens.

    Thanks for the help and sorry to bring this old topic afloat.

Share This Page