2-Router VPN Setup Question

Discussion in 'Tomato Firmware' started by mnye, Aug 28, 2010.

  1. mnye

    mnye Networkin' Nut Member

    Hi everyone,

    I've been using the typical two router setup method to connect select computers to a public VPN that I pay for for almost a year now with no problems. I've gotten to the point though where I've run out of physical ports on the primary router but I have all of them open on my secondary router (the one constantly connected to the VPN). I changed the mode of the secondary router from "gateway" to "router" & enabled RIP on both routers & this successfully copied routing tables across both routers & allowed me access all devices physically plugged into both routers from any device on the network, achieving exactly what I set out to do. The VPN is still connected & working as it should too.

    My question is that I'm worried someone else connected to the same public VPN might have access to my entire network now that the VPN router has it's firewall disabled (by being in router mode instead of gateway mode). My first thought is that this shouldn't really change anything since any device connected to the VPN router can technically see anything above it anyway in the previous "gateway" mode. My ignorance of how the VPN actually works is what has me second guessing myself though. Is it safe to assume that the VPN has it's own built-in firewall? I see an option under the VPN client "basic" tab called Firewall that is set to automatic which makes me think so. This also leads me to believe that the routers mode has nothing to do with the VPN's firewall.

    What do you guys think? Do I have stuff setup correctly & should I be safe? I can try to dig up more details about the VPN if I missed something relevant. Thanks for taking the time to read all this,
