HI, I would start reading some documents about them: support.huaweicloud.com/intl/en-us/vpn_faq/vpn_08_0602.html and help.skytap.com/wan-vpn-configuration-parameters.html#topo may give you a good start point for understanding terms and phases of the VPN negotiation.
Too many on the platform needlessly inflate a discussion to increase payout. You keep it concise and too the point without any unnecessary filler or mental ticks. Outstanding, and subbed. TY.
Can you help me understand one thing please? If I use third party VPN like NordVPN my network traffic passes through their VPN server (which has a different country's public IP) right? So if I setup the same VPN server but it's self hosted at home which IP does the traffic pass through? Is it the same public Ip address I was assigned by my ISP? Or will I need another public IP for setting up my VPN? Thanks. Very precise and informational video. Subscribed.
These VPNs WireGuard, IPsec, OpenVPN, do not use any other service to redirect traffic. Others may use proxies where they handle sort of like data redirection to make you look that you are someplace else. For these specific cases you will need ideally to have a fixed IP at the "server" location.
@@TechnologyMoments So my public IP and in turn my location is still the one that was assigned to me by my ISP for a self hosted VPN server? So what is the point of setting up a VPN server except for encrypting the traffic? I'm still geo-restricted from accessing content banned in my location right?
Perfect video - helped me a ton after finding no good resources for openvpn config for the ER605. Can you please link a video or guide to configure the firewall exceptions you mentioned around 5:48?
@@TechnologyMoments I have the same question. (similar question-- I can't route traffic between the internal lan and the vpn address pool. Have the same prob on an archer tplink w open vpn as well. I can connect but can't reach my devices (not windows servers, other devices that i can see from lan). Help?
Hey guys, I'm new to the VPN world. I have a question about my setup. I run OpenVPN server as docker container on Ubuntu server within private home network (no public IP). And port-forward towards IP:Port of the server in the router. This works great, however, my main concern is security. My Router doesn't have VPN config options as it is quite old, is port-forwarding secure enough for the simple use case of accessing home media server? Are there any options I can leverage that are better? Any input would be helpful :) Thanks
I would just upgrade my router, is not a big investment if you choose the er605 and is robust enough for medium sized networks. Actually they are quite affordable. ( amzn.to/4cOHX8h ) Good luck with your projects
Yes it does. But for this particular scenario with Open VPN you can use a dynamic IP with a NoIP service and just edit the "remote" server on the OVPN file
That is a good question. OpenVPN is the prefered option nowadays and well implemented can be used for robust solutions. Take a look at this article and how they consider from weakest to strongest VPN alternatives. vpn.ac/knowledgebase/36/PPTP-vs-L2TP-vs-OpenVPN-which-one-to-use.html
Our very "personal" recommendation is to implement the VPNs directly form the GUI, one advantage is connection speed after power failures. But it is absolutely possible to do it all from the controller.
Hi, Thanks for sharing, I tried this openVPN and it access to your local network device and but does not take Router public IP. do we have solution with this router ? for example if my laptop with ISP IP Y1.Y2.Y3.Y4 connect to openVPN server with public IP X1.X2.X3.X4 , my laptop still have the IP of the Y1.Y2.Y3.Y4 ( what my public IP )
You are right. Let me see if I understood correctly. Besides you connecting to you main office network and sharing resources, you will still be able to connect to the internet, and if you go to whatismyip.com you will still be able to connect to your ISP through the gateway originally configured in your network adapter. That is how it works and depending how you connect from one to another you can change this. For example we're about to publish a video having two routers connected through Open VPN and it works in a totally different way, letting you have more options. Also our recently released video about IPsec tunnels (site to site) between two of these routers is a great functionallity that will let you play a little with the gateways.
@@TechnologyMoments what I expect from openVPN functionality is this scenario: I have one VM in AWS and I only can ssh to it from my home office, now if I want to ssh to my VM in a coffee shop via browser using my home VPN server , can I do it ? ( I mean by using this router)
Thanks for that video. But I have the following problem, if I import that file it shows me the local IP from the er605 (192.168.x.x) and not like yours a public one. I believe, I missed some settings, but according to video I can't see, where I did the mistake. maybe you know, what is the trick. As long as I am connected to the er605 I can connect with the openvpn. But as soon I am using for example my hotspot, I can't connect anymore. Thanks for your help
At the moment of exporting the ovpn file such file includes the address that was assigned to the WAN port of your router. If you have it behind a firewall and forwarded the corresponding port (1194) just edit the line for the host name of your DynDNS or the public IP, connect to a remote network and attempt connection. Have a great day!
@@TechnologyMoments I’ve managed to connect a VPN (actually use L2TP VPN) however I have no control over the LAN network which my IP cameras are connected to. I’m guessing it might have something to do with port forwarding access? Sorry complete novice trying to learn any advice greatly appreciated!
Hi, yes the IP continues to be the public IP of remote client, all traffic should be forwarded through remote network and remote gateway for it to have access to the internet through the remote network. There are of course ways to manipulate such settings. We'll try and have a video tweaking the ovpn file for such tasks.
Newbie question: Would it be possible if I plug my ER605 directly to my ISP's ONT and then configure it from there? So it'll be something like ISP's ONT > ER605 > Wireless Router
That is the most common scenario for any router as your ISP will decide from there if it will handle the public IP or if it will let you configure it, letting the ONT work in bridge mode. If not, the only thing that'll happen is that it will translate two times. One done by the ONT and one by the ER605. Big advantage is that you'll have control not only of your internal network, but choose which DNS the router will query.
Hi sir, assuming that i want to access remotely my home network using different network but establishing a openvpn server. Can i access my home network by doing these? Thank you!
Hey, so I have some questions, first I need a public IP for this to work right? Do I need to open a port on the router after I configured openvpn? Do I need to open a port on the computer where I will be using the vpn?
Hi, yes, you'll need the public IP address ideally. Eventhough you can use NoIP or OpenDNS seems like it does not work too good anymore. As for ports, as you are going to be configuring in the same router, it will open the ports automatically. Good luck!
Great video! Do you know how to configure for the client dont use the internet of the VPN server when connected, but use the internet of ISP of the local network? I'm tried routing policy and other configs, but doenst work. Thanks!
It is a well known topic for tp-link routers not to be able to specify the gateway. They say for future firmwares it is going to be available. Some people have been able to tweak this parameter through the OVPN file, but most of the times with no luck.
Hi, it may be very probable you have a fixed IP address, and you may need to test before with dynamic IP. Then set again to fixed IP and add another DNS different than your router. It as a matter of DNS settings, and you can tell as you can ping an external IP address, and such ping will continue without problem after connecting.
@@TechnologyMoments im using DHCP (on the ER605) for all clients. ISP gives me fixed. I followed your instructions but still can’t access WAN through VPN, only LANs. I saw on some forums that this seems to be an issue with the ER605. Any ideas?
Es correcto, pero lo importante es que puedas "encontrarlo" desde cualquier lugar de manera que una IP fija por parte de tu proveedor de internet y que tu router las pueda manejar, es lo ideal. Open VPN como viste en este video es tu mejor opción. Saludos!
If your ER7206 (or ER605) hosting the VPN is behind it, then yes. If you are talking about where the client is located, then no, you don't need to do anything on the clients' side. You could very well be at a hotspot and should get connected.
@@TechnologyMoments i dont remember but i suppose it is v2 but i will check it in monday
Год назад
can I define my vlans (with tags) on TP LINK ER605 and use those VLANS on a TP Link EAP225 directly? I mean... I don't want (aka dont have money) to use a controller and a switch. Will only the ER605 + EAP225 do the trick? thanks!
Remember you can install the Omada Application in your Windows computer, configure, and let it running. You don't need to have it always on, and both your devices support it. www.tp-link.com/us/support/download/omada-software-controller/#Controller_Software Good luck!
@@TechnologyMomentsDo you know, by any chance, how to generate new cert? Even when I delete VPN profile and create new one, diff checker shows that certificate parts are completely identical for old and new profile files.
This is cool and all, but doesnt apply to Android 12 as I last commented on your previous VPN video using the ER605. Can you do a video for the latest Android revision that applies to most of the current android devices.
That is a good Idea, we are currently working on the site to site VPN which is basically using your routers to stablish the tunnel, you might enjoy it too. Your suggestion is appreciated we'll try and do that very soon.
dear friend becauase i dont remember for sure and i am confused . when you connect from android, do u have access to the internet? because right now i dont , any help please?
Hi, that is a good question and a very usual one with Open VPN. Remember that most of the routing information can be configured in the ovpn file. Here a link to your specific question: superuser.com/questions/1203170/gateway-doesnt-change-when-connecting-to-openvpn-on-1-specific-client
@@TechnologyMoments i will just answer my own question for others to know, u have full access to the internet without doing anything, however i want to make you another question if you know. i am running a home server with truenas scale, right now wake on lan is enabled but i cant wake my server with openvpn any ideas? thank you
For this client to server connection you just need to be connected to the internet and the VPN will connect your laptop/PC to your office/home.. If you want to have a "client site" to a "Main Office Site", keep in mind that not all routers have the same configurable options so it is ideal to have both ends of the VPN with the same hardware. That particular scenario we watched in this video: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-lSup3DoTsUY.html
I have a Virgin Router connected to my ER7206 and is giving a DHCP IP to it. When I try to create the OpenVPN server, it is taken the IP from the Virgin router as "public ip". I already tried to change manually in the file, but doesnt work. Any idea what I could try to solve it or am I doing something wrong?
The reason is that your ISP's router must have the port redirected to the internal router. Otherwise it wont connect. You did right just changing the IP in the file, only thing left is Virgin letting you redirect the port used for the connection.
@@felipecardoso7117 hi I am trying to do the same can you help here . Know your ip showing vpn server but the other website which I am trying to access is getting my actual Wi-Fi router location
@@vinnumarto3505 To be honest, I gave up from OpenVPN, and I'm doing trough L2TP Server, I managed to make it work! But if you still want to, you have to go to your ISP router and set your tp-link as DMZ or the ISP router as bridge mode. This will allow your ISP router to foward the necessary ports to the VPN request hit your TP Link. Let me know if I can help you with anything else.
@@felipecardoso7117 Thanks for the reply ..I am trying to access my office laptop pretending to be in home location for that i need wifi hotspot with vpn (since I am in another country) to office laptop , the office laptop using okta verify for location finding , I have tried express vpn hot spot its showing home IP in knowyourIp address however okta verify gettting actual source IP .Please help you know any Idea or setup