I have successfully established a VPN server and client using two GL.iNet routers with WireGuard, but when I try to connect to my company VPN, the TLS handshake fails. Here are the details of my set up.
VPN Server: GL.iNet GL-AR-750 (Creta)
Plugged into the hybrid modem/router (Arris Touchstone DG3450) via ethernet cable into the GL.iNet GL-AR750 WAN port.
Port forwarding set up between the Arris modem/router and the GL.iNet router for port 51820.
VPN Client: GL.iNet GL-E750 (Mudi)
Wireguard profile exported from the GLi.Net GL-AR750 admin portal
Company VPN
OpenVPN GUI on computer
Port 1194
I can connect my computer to the Gli.Net router that is used as the client and access the internet without issue via wifi and internet. However, when I then try and also connect to my company’s OpenVPN server via the OpenVPN GUI on my computer, there is a TLS handshake fail.
What can I do to resolve this issue so I can simultaneously connect to my home VPN with WireGuard as for my internet connection, as well as my company’s OpenVPN server which is required to access internal sites?
Additionally, when I use my VPN client to connect to an AirVPN server with a WireGuard configuration file, I do not have this issue. Only when connected to my home VPN server does the TLS handshake fail when trying to simultaneously connect to OpenVPN.
As in the logs to my travel router being used as the client and the failed OpenVPN connection? I am not near my router being used as my server so I do not have access to that one.
I’m wondering if it could be a server issue as ive set up my WireGuard homeVPN server with address 10.0.0.3/24, but the AirVPN server that doesn’t have an issue has the address 10.181.3.66/32.
I’ve tried so many things and still get the TLS handshake error.
-Changed the WireGuard home VPN server address to avoid IP and sublet overlap
-Enabled bridge mode on my modem/router combo
-Disabled bridge mode and set up DMZ
-Lowering MTU to 1320, and then 1280 in my .conf file on the router acting as a client
If I connect my computer directly to the GL.iNet router acting as a WireGuard server as my source of internet, I can then use the OpenVPN software on my computer to connect to my company VPN. But when I connect my computer to my GLi.Net router acting as a VPN client (which is connected to the GL.iNet router acting as a server), I always get the TLS handshake error.
I cannot figure out if the problem is on my server router, client router or both. It is very strange that I can connect my computer to the router acting as a client, have that router connect to AirVPN via WireGuard (using port 51820), and then connect my company VPN using the OpenVPN software on the computer, but can’t do so with my own WireGuard server.
Any other suggestions of what I can configure to make this work?
Current set up:
-Arris DG3450 modem/router combo with port forwarding to GL.iNet router acting as a WireGuard Server for both ports 51820 and 1194
-GL.iNet router connected to modem/router combo via WAN port
-GLi.Net router acting as a WireGuard client connected to my computer for internet access (internet works, only issue is that I cannot connect to my company VPN with the installed OpenVPN software)
-Company VPN uses port 1194
-Ports 51820 and 1194 open on both GL.iNets routers (server and client)