VPN hub - shared WAN ip

Hi. Im struggling to understand how to set up a VPN hub to do what i need.
I have set up a VPN hub and connected 3 RUT241s to it (rut_1, rut_2 and rut_3).
They all have a public ip and is connected to the internet, but i want rut_1 and rut_2 to access the internet through rut_3 but only if clients try to reach a certain IP x.x.x.x/32.
The server with IP x.x.x.x has a firewall that only allows rut_3’s public IP in.
The rest of the Internet should be accessible directly through each rut’s WAN/mobile interface.

How do i go about achieving this goal?

I tried setting up a route to x.x.x.x/32 via rut_3 but that didnt do anything. Then i tried adding LAN and WAN forwarding in different configurations (not really understanding what those buttons do).
After adding the route i half expected to see that as a static route in rut_1 and rut_2s configuration but there is nothing there.

UPDATE:
After closer checking i found that i dont really understand the routing table on the client router.


root@RUT241:~# ip route
default via 109.74.186.1 dev eth0.2 proto static src 109.74.186.29 metric 1
109.74.186.0/26 dev eth0.2 proto static scope link metric 1
192.168.1.0/24 dev br-lan proto kernel scope link src 192.168.1.1
192.168.255.0/24 via 192.168.255.9 dev tun_c_rms_3VI8v
192.168.255.9 dev tun_c_rms_3VI8v proto kernel scope link src 192.168.255.10
195.88.54.16 via 192.168.255.9 dev tun_c_rms_3VI8v

root@RUT241:~# ping 192.168.255.9
PING 192.168.255.9 (192.168.255.9): 56 data bytes
^C
— 192.168.255.9 ping statistics —
5 packets transmitted, 0 packets received, 100% packet loss

root@RUT241:~# ping 192.168.255.6
PING 192.168.255.6 (192.168.255.6): 56 data bytes
64 bytes from 192.168.255.6: seq=0 ttl=64 time=43.691 ms
64 bytes from 192.168.255.6: seq=1 ttl=64 time=43.588 ms
64 bytes from 192.168.255.6: seq=2 ttl=64 time=43.678 ms
64 bytes from 192.168.255.6: seq=3 ttl=64 time=43.730 ms
^C
— 192.168.255.6 ping statistics —
5 packets transmitted, 4 packets received, 20% packet loss
round-trip min/avg/max = 43.588/43.671/43.730 ms

What device is 192.168.255.9 ?
Shouldnt the routing table say that 195.88.54.16 is reachable over 192.168.255.6 ?

This topic was automatically closed after 15 days. New replies are no longer allowed.