Help to establish this kind of connection: PC -> VPN -> Switch -> RUT951 -> Remote Device (SIM/APN)

Hello everyone,

I’m trying to figure out a connection through VPN which grants access to a LAN network, this network has a RUT951 with a SIM card which grants access to remote devices via APN.

Here is a draft of what I’m trying to achieve:

imagem800×411 40.3 KB

So far I manage to gain access to the RUT951 through VPN. But I still struggling to reach any remote device via APN though the RUT951. Also, I can reach those devices if I’m connected on the LAN network.

I guess that there is still some configuration needed on the RUT951 to make a “passage” through it from the VPN access. Maybe create a route or something.

I did create a route to get access to the RUT951 from the VPN:

imagem1853×701 50.4 KB

What else should I do to reach those remote device?

Thanks in advance

Hello,

To better assist you, could you please clarify a few points about your setup:

• What is the LAN IP address of the RUT951 and the end device you’re trying to reach behind it?
• From your topology draft, it looks like the RUT951 gets a private IP from the APN, could you confirm whether this is a bridge/passthrough mode or a standard NAT routing setup?
• Additionally, which VPN protocol are you currently using?

It would be very helpful if you could redraw or describe the topology more clearly, including all relevant IP addresses on each device and how they’re connected: VPN server, client, LAN network, and end LAN-side devices.

Lastly, I’d strongly recommend updating your RUT951 firmware to the latest available release (7.15.2), as the current running firmware version is pretty outdated.

In the meantime, you might find these knowledge base articles useful regarding LAN-to-LAN communication over VPN:

• ZeroTier Configuration - Teltonika Networks Wiki
• OpenVPN configuration examples - Teltonika Networks Wiki
• Wireguard Peer To Peer Configuration example - Teltonika Networks Wiki

Best regards,

Thanks for your answer.

I will explain here the configured IP’s of the diverse devices involved:

PC:
IP VPN: x.x.100.4

VPN:
IP VPN: x.x.100.1
IP LAN: x.x.10.1

Switch:
IP LAN: x.x.10.254
GW: x.x.10.1

RUT951
IP LAN: x.x.10.20
IP WAN (APN): x.x.30.40
GW: none

Router/Modem:
IP WAN (APN): x.x.30.50
IP LAN: x.x.1.1
GW: none

Remote Device:
IP LAN: x.x.1.10
GW: x.x.1.1

Yes, It is a private fixed IP (x.x.30.40) from the APN/SIM card. The other router/modem also have a private fixed IP (x.x.30.50).

Both are configured with a standard NAT setup. Here is a better draft:

imagem960×493 45.7 KB

It is OpenVPN

Did it now, thanks for the advise

We are already using ZeroTier for other purposes. But seems we already have the “architecture” to do this connection, so we are trying to achieve it with our existing VPN and avoid any confusion with ZeroTier network.

Hello,

Apologies for the delay in getting back to you.

Based on your described network layout, I’d suggest trying the following by adding static routes on both the RUT951 and the “another router/modem”:

• On RUT951 (to reach the remote device’s LAN):
  • Interface: mob1s1a1 (or wan)
  • Target: X.X.1.0/24
  • Gateway: X.X.30.50
• On the “another router/modem” (to reach RUT951’s LAN):
  • Target: X.X.10.0/24
  • Gateway: X.X.30.40

Please give this a try and let me know if it works.

Best regards,

This topic was automatically closed after 60 days. New replies are no longer allowed.