Comunication back behind SecureNAT

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
mendoza_lt
Posts: 28
Joined: Fri Jul 05, 2024 8:37 pm

Comunication back behind SecureNAT

Post by mendoza_lt » Tue Oct 08, 2024 2:15 pm

Goodmorning.

Tried to search the forum for solution, but it is not so easy...

Here is my situation:

There is a specific server running in local network with ip 10.10.0.0/24 and gateway 10.10.0.26 . SE VPN running. Secure NAT and DHCP enabled. Secure NAT network is 192.168.10.0/24 gateway 192.168.10.26. Also a routing rule 10.10.0.0.255.255.255.0/192.168.10.26 is pushed, so clients would only access local resources ( web interface ) but not internet through VPN. There is a Bridge (Openwrt router running SE) at the remote site, which is in same 192.168.10.0 network. Clients PC's that are in 192.168.10.0 network can connect to server's web interface (ip: 10.10.0.202), and that's as it ok, and how should be. The problem is: there are IOT devices at the remote site, that are directly (or through switch, that does not matter) connected to the bridge (for example IP 192.168.10.5), and the server (10.10.0.202) must access them. It does not. Would that be possible? How would i do that?

mendoza_lt
Posts: 28
Joined: Fri Jul 05, 2024 8:37 pm

Re: Comunication back behind SecureNAT

Post by mendoza_lt » Tue Oct 08, 2024 4:55 pm

Ok, pretty sure virtual L3 switch must be involved, trying to learn about it now...

Post Reply