I am trying to connect my local network (location A, AR-300M) to a FritzBox router (FritzBox 7390 at location B) via VPN.
I want that all internet traffic of my local network (A) is routed through the tunnel (as if it were to originate at B) - so devices in network A have the public IP address of network B.
It would also be nice if devices in network A could reach devices in network B.
(similar to what is described in the following, but FritzBox doesn’t support OpenVPN: Site To Site VPN Routing Explained In Detail | OpenVPN)
The FritzBox VPN configuration is up and running.
I can for example install the ShrewSoft VPN client on a laptop at A and then connect to B as described here (3 Setting up a VPN connection in the Shrew Soft VPN Client): Using the Shrew Soft VPN Client to set up a VPN connection to the FRITZ!Box | FRITZ!Box 4040 | AVM International.
All I need for this is:
URL of FritzBox, username, password, preshared-key.
It uses IPsec/ IKEv1.
Instead of using this ShrewSoft client I’d like to set up my AR-300M to establish this connection, so that all devices connected to the AR-300M automatically route all internet traffic through B.
I found several useful webpages but I wasn’t successful in setting this up…
This suggests to use l2tp - but that is not supported by FritzBox:
This one suggests to use the package vpnc (based on Lede):
I was able to install vpnc and vpnc-scripts packages - but luci-proto-vpnc does not exist on my Chaos Calmer, r47065 OpenWRT system.
Other webpages suggest to use strongswan:
(the above mentions that the FritzBox only supports IPsec/ IKEv1)
The follwing one says it were crucial to change the FritzBox configuration in order to make this work - I have not tried this yet because I cannot risk messing up the FritzBox because I don’t have physical access to it:
So maybe my first questions are:
do I need to change anything on the FritzBox side, or does the fact that I can connect a laptop via the ShrewSoft client prove that the FritzBox side is fine for what I want to achieve?
What is the simplest method to achieve that devices in network A have a the public IP adress of network B? Strongswan? vpnc? Something else?
Thanks for your help!