Basic RMS VPN with Unifi USG configuration

Hello, we have a main site that we want remote users to vpn connect to.
The configuration is like this:

I’ve set up a nice VPN connection on the TRB500, using the fabulously easy to use RMS VPN Hub, and my laptop client is hooking up but I can’t ping the 192.168.1.x LAN. The problem is that I’m (obvs) on the wrong side of the USG firewall.
Please can anyone advise how I can configure the setup of the USG so that the traffic from the VPN clients gets through to the 192.168.1.X LAN?
Presumably I need some kind of route through the firewall but I want to avoid creating some massive security hole by essentially turning off the firewall on the USG and rendering it pointless.

So far I have added an FW rule to allow 192.168.255.X traffic through the FW but I’m getting this on a ping:

Request timeout for icmp_seq 0
92 bytes from Destination Port Unreachable
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 5400 4265 0 0000 3f 01 b7cc

It feels like I’m pretty close but no cigar…

Any thoughts on this greatly appreciated!
cheers, Giles

This topic was automatically closed after 15 days. New replies are no longer allowed.