Hi,
I have just bought a GL-AR1300LTE and so far I am very impressed! It was easy to setup and connected to the internet.
I run an OpenVPN server at home and I am trying to set up a site to site OpenVPN. The traffic flows from the GL LAN (192.168.4.x) to my LAN (192.168.1.x), but I can’t get the traffic to flow the other way. I haven’t setup any static routes (I think I need some but I am not entirely sure what I would need).
I have attached a diagram of the setup including the IP addresses / masks in question.
From the OpenVPN server firewall logs I can see the traffic is being passed correctly, so I am fairly sure the config issue is on the GL-AP1300.
A client specific override is added to the pfSense OpenVPN configuration, this is matched based on the certificate name the client is using, it’s best practice to use unique names/certificates for each client during implementation which identify the site/client clearly.
Because the OpenVPN client should be connected you can use the pfSense OpenVPN status page to copy and paste the exact certificate name of the connected OpenVPN client. Important settings are as follows:
Common Name is set to the client certificate name.
iroute for each remote network of that client is added in the Advanced field.
The OpenVPN server is restarted to force the OpenVPN client to reconnect and apply the changes, the network routes will now appear in the OpenVPN routing table in the status page.