How to configure routing?

Eniki · March 11, 2025, 3:04pm

Hello,

I have a RUT240, Firmware RUT2_R_00.07.06.17. I successfully configured a IPec-VPN-connection via mobile network to my Gateway (Lancom) via public IPv4-Adress.

Private Gateway-IP is 10.2.100.1, it has many VPN-Client-Routers (Lancom) with 10.2.1.1/24 to 10.2.90.1/24.
The RUT240 has 10.2.85.1. Routing at the gateway is working for every client network.

But I can´t configure a working routing at the RUT240.

Both physical ETH-Ports are bridged as LAN with 10.2.85.0/24 and DHCP-Server, IPv4 only, Clients get a IP as configured. Clients can ping the gateway 10.2.100.1, but no other adress. Traceroute shows only the RUT as first hop, no other entry.
I configured static routing table with Interface “mob1s1a1” and target 10.0.0.0, netmask 255.0.0.0 and gateway 10.2.100.1 as Unicast, without success. I tried adding a WAN-Interface with 10.2.85.0/24 and using this as Interface, also without success.
Even target 0.0.0.0 with netmask 0.0.0.0 didn’t work.

Is there a possibility to selct the VPN as interface? Do I have to configure local/remote IP-adresses inside the VPN-configuration?

Clients need connection to 10.0.0.0/8-networks and 192.168.0.0/16, all available vie the gateway 10.2.100.1, all traffic should be route to the VPN.

My other VPN-Clients are LANCOM-routers, there I use n:m-mapping, so all local clients are in the local network 10.2.0.0/24 and can by reached from central network with a correspondending IP from the VPN-tunnel.

Thanks in advance for help.

Sven

Marija · April 17, 2025, 10:33am

Hello,

Apologies for the delayed response. Could you please confirm if you still require assistance with your issue?

Best regards,

Eniki · April 17, 2025, 11:31am

Hello,

yes, the problem is unsolved an help would still be very appreciated.

Best regards

Marija · April 23, 2025, 7:11am

Hello,

Unfortunately, when configuring routes, it is not possible to select IPsec as an interface for routing.
Instead of creating static routes, I recommend navigating to the IPsec tunnel settings and configuring the following:

Local subnet: 10.2.85.0 (RUT240 LAN)
Remote subnets: 10.0.0.0/8 and 192.168.0.0/16

Please let me know if this helps or if you need further assistance.

Best regards,

Eniki · April 24, 2025, 7:44am

Hello,

thank you for this. Unfortunately it didn’t work.

When I delete all static routes and add 192.168.0.0/16 as remote network I still can’t reach or even ping devices there (also not the other way around). When I add 10.0.0.0/8 as remote network I even cant’t access the router webinterface from a local computer at the LAN-port.
I tried to add 10.2.48.0/24 as remote network but can’t ping devices there.

Monitoring the VPN-gateway I don’t see any packets from the router, so it’s not a routing problem at the VPN-gateway.

Best regards

system · May 10, 2025, 3:05pm

This topic was automatically closed after 60 days. New replies are no longer allowed.