Jump to content

RMS VPN Hubs: Difference between revisions

3,651 bytes added ,  14 October 2022
no edit summary
No edit summary
No edit summary
Line 90: Line 90:


[[Category:RMS VPN]]
[[Category:RMS VPN]]
==LAN to LAN communication==
To set up LAN to LAN communication via RMS VPN Hub, you would need some additional configuration. As shown in the topology below, we are going to set up communication between two end devices connected to Teltonika Networks routers.
topology.png
The topology above contains two Teltonika routers ('''RUT1''' and '''RUT2''') with two end devices ('''END1''' and '''END2'''), each connected to a separate router's LAN. Both routers are connected to the same RMS VPN Hub. When this configuration is completed, not only will the two routers be able to communicate with each other, but the end devices will also be reachable to one another and from each router.
===Adding VPN Clients===
----
To start, you would need to set up a VPN Hub as shown in the previous example. Once the Hub is set up, add two RMS devices to the Hub. The clients tab should look like this:
[[File:RMS Clients tab.png|700px|border|class=tlt-border]]
===Adding Routes===
----
Before adding routes to end devices, we have to enable the LAN forwarding feature. To enable forwarding, click on the Hub and navigate to the '''Routes''' section. In the '''Clients''' tab, click on the LAN toggle to enable forwarding. Client with enabled LAN forwarding should look like this:
[[File:RMS Lan forwarding.png|border|class=tlt-border]]
The next step is to add Routes to the end devices. To add routes, navigate to the '''Routes''' section. Press '''Add Route''' button to open an additional menu. There, you could choose from either '''Auto Scan''' or '''Manual''' add route method. In this example, we are using '''Auto Scan'''. To add a route, select an RMS device from the list and press '''Scan Device'''. The procedure scans all devices that are connected to '''RUT1''' LAN.
[[File:RMS Route to end device.png|border|class=tlt-border]]
To complete the procedure, select the end device‘s IP address (in this example 192.168.1.211) and press add. In this configuration, we are going to need to add routes in both '''RUT1''' and '''RUT2'''. To add a route to the '''RUT2''' network end device, just follow the procedure above. Once both routes are added, '''restart the RMS Hub'''. If you have completed the steps correctly, the routes tab should look like this:
[[File:RMS both routes.png|border|class=tlt-border]]
===Modifying Firewall Zones===
----
For the end devices to be able to reach each other, we are going to need to modify Firewall zones in both '''RUT1''' and '''RUT2'''. To add firewall rules, navigate to '''Network -> Firewall -> General settings'''. In the zones section, click the edit button on WAN zone (wan -> REJECT).
[[File:FW Zones section.png|900px|border|class=tlt-border]]
In the '''Inter-Zone Forwarding''' section, click on '''Allow forwarding to destination zones''' and select '''rms''' (for example, rms_xzkEgQ: openvpn).
[[File:RMS Inter zone forwarding.png|900px|border|class=tlt-border]]
After Clicking on '''Save & Apply''' for both routers, the setup is completed and the LAN to LAN communication between devices should work.
===Testing the configuration===
----
As with any other configuration, it is always wise to test the setup in order to make sure that it works properly. To test LAN to LAN communication via RMS Hub, we could try to '''ping''' one end device from the other.
Pinging '''END2''' from '''END1''':
[[File:Ping to END2 device.png|border|class=tlt-border]]
Pinging '''END1''' from '''END2''':
[[File:Ping to END1 device.jpg|border|class=tlt-border]]
If the ping requests are successful, congratulations, your setup works. If not, we suggest that you review all the steps once more.