1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Openvpn to LAN on private ip

Discussion in 'Tomato Firmware' started by mikester, Mar 2, 2012.

  1. mikester

    mikester Network Guru Member

    Is anybody here using any flavor of tomato to remotely access their LAN which is on a private ip (i.e. your ISP gives you a private ip and does not allow inbound access from the Internet)?

    I'd like to find out what VPN server/services you are using and any problems/workarounds you may have had.
  2. humba

    humba Network Guru Member

    Can you swap the OpenVPN client/server around? So you'd run a client on the box with a private IP, and put the server somewhere where it can get a public IP (then use dyndns so that the client will connect to the proper address.... the client will try reconnecting up until the server is up and running). Not the most elegant solution, but it works - I've had such a scenario running for a couple of weeks
  3. mikester

    mikester Network Guru Member

    My problem is finding a secure server or service somewhere with a public ip...are you using a service for the VPN server?
  4. humba

    humba Network Guru Member

    No - I've had it set up as follows:
    A router running tomato set up as OpenVPN Server connected to a switch before my cable modem. The router was using DynDNS to get a well-known address.
    Then I put another router running Tomato on a private network (WAN port connected to the local LAN), set it up as a client to connect to the DynDNS address of the router running OpenVPN in server mode. The LAN port of the client router was connected to the local network that I wanted to bridge, and I could then connect to a lan port of the server router to be directly patched into the private network that I needed access to.

    Are your two endpoints on cellphone networks? In that case, you won't get around requiring a server running somewhere in the middle - not sure there are services just for that, but a root server running linux would certainly fit the bill - it would run the server and you'd have clients from your private LANs connect to the server. There are alternatives of course... teamviewer, go to my pc, and the likes that work even when both endpoints are on a private lan (but also only because they use a central server with a well known public address)
  5. mikester

    mikester Network Guru Member

    No I would have to find an internet accessible remote server with VPN server running. Thanks for the info.

Share This Page