Hi
Ive set up s2s but cannot access the network.
What do I need to do?
Network 1 192.168.1.1
Network 2 192.168.2.1
Network 2 is behind a firewall but I’m assuming that doesn’t matter due to the tunnelling.
Do I need to open ports on shadow for http access from network 1?
I’m unable to ping any device from N1 to N2.
Wan on shadow is getting dhcp from that network router and I’ve got no cable in the lan.
I’m assuming I can’t contact the network from N1 to N2 because the lan I’m trying to access is being used to receive wan on shadow?
alzhao
2
Are you setting up S2S via Goodcloud or manually?
You need to give more details of each router’s model, version and the upstream network.
If you use Goodcloud and build S2S network, I don’t see any need to open ports etc.
Via cloud.
Flint - v4.0.1
Shadow - 3.212
Shadow is on a network which has its own DHCP server, NAT firewall/router.
I plugged Shadow in to this network via WAN to allow me to set up the S2S.
I want to be able to access my work PC via RDP from home.
alzhao
4
What is the setttings you set on each router?
Click the small icon on each node to set up.
I’m able to ping both GL devices.
This is the topology
I was trying to access my work PC on 10.0.56.66 but it wouldnt work - I assume because the WAN interface is on this the LAN isnt accessible?
I will try accessing 192.168.2.254 tonight as i’ve only just set this up.
alzhao
9
should use this IP, not the 10.0.56.66.
Im able to ping 192.168.2.1 from 192.168.1.1 but i cannot ping the PC on 192.168.2.254
Tracert also fails.
Firewall on my PC is disabled.
alzhao
11
@hilll can you have a look at this one?
Try this, change Allow be Access for the following subnets settings.
Change 192.168.2.0/24 to 192.168.0.0/16
I’ve set this on the Shadow and Im still unable to ping the client from flint to shadow.
Can ping the shadow router.
Hi
i’ve done this but no change.
Im unable to ping the PC at Flint side but can ping router (firewall on pc is off).
Im unable to ping the PC at shadow side and cannot print the router (shadow)
alzhao
15
You have to be able to ping the pc at shadow side. Otherwise it is firewall of pc.
So why can I not ping the router from the PC in the flint network but can ping router to router?
hilll
17
Cloud you offer the message? login to router, execute command:
(1) ifconfig
(2) route
Flint
br-guest Link encap:Ethernet HWaddr 96:D4:5A:D2:B4:B8
inet addr:192.168.9.1 Bcast:192.168.9.255 Mask:255.255.255.0
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
br-guest-ifb Link encap:Ethernet HWaddr D2:59:BE:21:2F:D5
UP BROADCAST RUNNING NOARP MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:32
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
br-lan Link encap:Ethernet HWaddr 94:83:C4:12:E5:F3
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:5186843 errors:0 dropped:276 overruns:0 frame:0
TX packets:22094074 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:500756667 (477.5 MiB) TX bytes:31575992438 (29.4 GiB)
br-lan-ifb Link encap:Ethernet HWaddr 86:F5:EB:BF:9F:D8
UP BROADCAST RUNNING NOARP MTU:1500 Metric:1
RX packets:5132605 errors:0 dropped:0 overruns:0 frame:0
TX packets:5132605 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:32
RX bytes:569625825 (543.2 MiB) TX bytes:569625825 (543.2 MiB)
eth0 Link encap:Ethernet HWaddr 94:83:C4:12:E5:F2
inet6 addr: fe80::9683:c4ff:fe12:e5f2/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:22146840 errors:0 dropped:0 overruns:0 frame:0
TX packets:5245314 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:31855359122 (29.6 GiB) TX bytes:640420067 (610.7 MiB)
Base address:0x1000
eth1 Link encap:Ethernet HWaddr 94:83:C4:12:E5:F3
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:995291 errors:0 dropped:0 overruns:0 frame:0
TX packets:1878641 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:169991904 (162.1 MiB) TX bytes:1879827159 (1.7 GiB)
Base address:0x1200
eth2 Link encap:Ethernet HWaddr 94:83:C4:12:E5:F3
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:18119 errors:0 dropped:0 overruns:0 frame:0
TX packets:32978 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:10485987 (10.0 MiB) TX bytes:15610800 (14.8 MiB)
Base address:0x1400
eth3 Link encap:Ethernet HWaddr 94:83:C4:12:E5:F3
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Base address:0x1600
eth4 Link encap:Ethernet HWaddr 94:83:C4:12:E5:F3
UP BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Base address:0x1800
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:29141 errors:0 dropped:0 overruns:0 frame:0
TX packets:29141 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1
RX bytes:3145767 (3.0 MiB) TX bytes:3145767 (3.0 MiB)
wg1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.148.19.1 P-t-P:10.148.19.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MTU:1420 Metric:1
RX packets:1063 errors:0 dropped:0 overruns:0 frame:0
TX packets:831 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1
RX bytes:137184 (133.9 KiB) TX bytes:456732 (446.0 KiB)
wlan0 Link encap:Ethernet HWaddr 00:03:7F:12:00:3F
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:3503389 errors:0 dropped:0 overruns:0 frame:0
TX packets:16680068 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:4096
RX bytes:294843970 (281.1 MiB) TX bytes:24900434481 (23.1 GiB)
wlan1 Link encap:Ethernet HWaddr 00:03:7F:12:32:5F
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:747726 errors:0 dropped:0 overruns:0 frame:0
TX packets:3797024 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:4096
RX bytes:118083264 (112.6 MiB) TX bytes:5251152308 (4.8 GiB)
Destination Gateway Genmask Flags Metric Ref Use Iface
default ic1.kir.ipc.KCO 0.0.0.0 UG 0 0 0 pppoe-wa n
10.148.19.2 * 255.255.255.255 UH 80 0 0 wg1
192.168.0.0 * 255.255.0.0 U 80 0 0 wg1
192.168.1.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.9.0 * 255.255.255.0 U 0 0 0 br-guest
212.50.163.12 * 255.255.255.255 UH 0 0 0 pppoe-wa
Shadow
br-lan Link encap:Ethernet HWaddr 94:83:C4:1D:DC:5D
inet addr:192.168.2.1 Bcast:192.168.2.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:4305817 errors:0 dropped:11 overruns:0 frame:0
TX packets:5449460 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:610231803 (581.9 MiB) TX bytes:4958907056 (4.6 GiB)
eth0 Link encap:Ethernet HWaddr 94:83:C4:1D:DC:5C
inet addr:10.0.56.38 Bcast:10.255.255.255 Mask:255.0.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:10269971 errors:0 dropped:7630 overruns:0 frame:0
TX packets:4341794 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:983182230 (937.6 MiB) TX bytes:687412812 (655.5 MiB)
Interrupt:4
eth1 Link encap:Ethernet HWaddr 94:83:C4:1D:DC:5D
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:4305873 errors:0 dropped:111 overruns:0 frame:0
TX packets:5449494 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:670512896 (639.4 MiB) TX bytes:663947027 (633.1 MiB)
Interrupt:5
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:26022 errors:0 dropped:0 overruns:0 frame:0
TX packets:26022 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1939603 (1.8 MiB) TX bytes:1939603 (1.8 MiB)
wg1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 -00
inet addr:10.148.19.2 P-t-P:10.148.19.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MTU:1420 Metric:1
RX packets:992 errors:0 dropped:0 overruns:0 frame:0
TX packets:1217 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:508932 (497.0 KiB) TX bytes:157688 (153.9 KiB)
Destination Gateway Genmask Flags Metric Ref Use Iface
default 10.0.56.254 0.0.0.0 UG 10 0 0 eth0
10.0.0.0 * 255.0.0.0 U 10 0 0 eth0
10.0.60.0 * 255.255.255.0 U 80 0 0 wg1
10.148.19.0 * 255.255.255.0 U 80 0 0 wg1
192.168.1.0 * 255.255.255.0 U 80 0 0 wg1
192.168.2.0 * 255.255.255.0 U 0 0 0 br-lan
root@GL-AR300M:~#
I can ping shadow from flint but I can not ping shadow from a pc behind flint.
hilll
21
you can execute command: wg
such as:
the “allowed ips” is the route subnet, it is config ok?
