NetGear XR5000 Configuration Help

This forum is for admins who are looking to build or expand their OpenVPN setup.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
lgfz71
OpenVpn Newbie
Posts: 1
Joined: Mon Mar 23, 2020 7:08 pm

NetGear XR5000 Configuration Help

Post by lgfz71 » Mon Mar 23, 2020 7:32 pm

Hello,

I recently bought a new NetGear XR500 router (Nighthawk AC3200 died) and I'm trying to configure OpenVPN on it. I'm a bit of a novice when it comes to OpenVPN as I've had no need to configure this until now. However, I'm having some issues with my VPN client unable to see my LAN devices.

Here's an image of my network:
https://imgur.com/a/elPJ2Yp

A written version:
I have an outward facing AT&T router/modem (fiber connection) with IP passthrough (DMZ Plus) disabled, behind that sits my NetGear XR500 which hosts the OpenVPN server. I've configured the OpenVPN server (limited configuration) to allow clients to access LAN devices and internet. I cannot post my configuration file as it sits on my NetGear.

My internal router's subnet is 192.168.1.0/255
OpenVPN assigns IP addresses from the 192.168.2.0/255 subnet.
VPN connections from iOS devices are always successful but I cannot see any other LAN device aside from my Synology NAS via a browser at 192.168.1.8:5000. I would assume this is a limitation on iOS from the research I have done. The goal here is to be able to use my iPad to a connect to my network and access my local computers.

Here's the ovpn file my iOS devices use:

Code: Select all

client
dev tun
proto udp
remote xxx.mynetgear.com  12973
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
...
</ca>
<cert>
...
</cert>
<key>
...
</key>
cipher AES-128-CBC
comp-lzo
verb 5
Is there any additional configuration options I need to apply to be able to see my other LAN devices? I've already attempted to enable IP passthrough on my AT&T router and place my NetGear in the DMZ Plus. This seems to cause additional non-related issues such as SSH broken pipes.

Perhaps someone has achieved this desired configuration with a similar network setup.


Thanks in advance.

Post Reply