Good day!
I have a question regarding teltonika routing capabilities. I have a special setup where application is connected via vpn to teltonika and via port forward reaches desired node connected to lan of teltonika. In some cases application cat determine where there is a traffic on the node behind forwarding. Is there any possibility to make a “local network” for such type of connection so all ports would be accessible from vpn connection? For example ICMP from vpn towards lan node?
Good day,
There a couple of things I’d like to clarify regarding your current setup that you have. These things would be:
- Your currently used VPN
- An explanation of why everything is not being routed to the Teltonika device subnet and why do you want to use port forwarding instead?
Regards,
M.
We are using openvpn connection
Port forward allows us to forward particular port to the node connected to lan, but we need extended capabilities like ICMP to verify whether the node is reachable or not.
Thank you for the clarification.
I assume the router is used as a VPN server. If configured correctly, it is possible to route the entire subnet through the VPN tunnel, allowing each device to be reachable via its LAN IP address and respective ports.
Regards,
M.
Router is configured as openvpn client. All incoming connections go via vpn tunnel toward lan node.
Hello,
Could you clarify what kind of device the OpenVPN server is?
Key point is that if you are to go with the port forwarding option directly to your LAN devices on the Teltonika Device, you will have to make a forwarding rule for each and every single of the open ports.
My suggestion is to use VPN routing instead of port forwarding, but the configuration will need to be done on the server side, more specifically, you need to configure TLS clients, more information here: Configuring Client-specific Rules And Access Policies | OpenVPN
Regards,
M.