RMS VPN Hubs: Difference between revisions
→LAN to LAN communication
Justas.Cip (talk | contribs) No edit summary |
Justas.Cip (talk | contribs) |
||
Line 91: | Line 91: | ||
[[Category:RMS VPN]] | [[Category:RMS VPN]] | ||
==LAN to LAN communication== | == LAN to LAN communication== | ||
To set up LAN to LAN communication via RMS VPN Hub, you would need some additional configuration. As shown in the topology below, we are going to set up communication between two end devices connected to Teltonika Networks routers. | To set up LAN to LAN communication via RMS VPN Hub, you would need some additional configuration. As shown in the topology below, we are going to set up communication between two end devices connected to Teltonika Networks routers, which are RMS VPN clients. | ||
topology.png | topology.png | ||
The topology above contains two Teltonika routers ('''RUT1''' and '''RUT2''') with two end devices ('''END1''' and '''END2'''), each connected to a separate router's LAN. Both routers are | The topology above contains two Teltonika routers ('''RUT1''' and '''RUT2''') with two end devices ('''END1''' and '''END2'''), each connected to a separate router's LAN. Both routers are added to the same RMS VPN Hub as RMS VPN clients. When this configuration is completed, not only will the two routers be able to communicate with each other, but the end devices will also be reachable to one another and from each router. | ||
===Adding VPN Clients=== | === Adding VPN Clients=== | ||
---- | ---- | ||
To start, you would need to set up a VPN Hub as shown in the previous example. Once the Hub is set up | To start, you would need to set up a VPN Hub as shown in the previous example. Once the Hub is set up and two RMS devices are added to the Hub, the clients tab should look like this: | ||
[[File:RMS Clients tab.png|700px|border|class=tlt-border]] | [[File:RMS Clients tab.png|700px|border|class=tlt-border]] | ||
===Adding Routes=== | === Adding Routes=== | ||
---- | ---- | ||
Before adding routes to end devices, we have to enable the LAN forwarding feature. To enable forwarding, | Before adding routes to end devices, we have to enable the LAN forwarding feature. To enable forwarding, follow these steps: | ||
* Click on the Hub and navigate to the '''Routes''' section. | |||
* In the '''Clients''' tab, click on the LAN toggle to enable forwarding. | |||
Client with enabled LAN forwarding should look like this: | |||
[[File:RMS Lan forwarding.png|border|class=tlt-border]] | [[File:RMS Lan forwarding.png|border|class=tlt-border]] | ||
The next step is to add Routes to the end devices. | The next step is to add Routes to the end devices. Follow these steps to add routes: | ||
*Navigate to the '''Routes''' section. | |||
*Press '''Add Route''' button to open an additional menu. | |||
*You could choose from either '''Auto Scan''' or '''Manual''' add route method. In this example, we are using '''Auto Scan'''. | |||
*To add a route, select an RMS device from the list and press '''Scan Device'''. | |||
*The procedure scans all devices that are connected to '''RUT1''' LAN. | |||
[[File:RMS Route to end device.png|border|class=tlt-border]] | [[File:RMS Route to end device.png|border|class=tlt-border]] | ||
Once the scan is completed, follow the steps to continue: | |||
*Select the end device‘s IP address (in this example 192.168.1.211) and press add. | |||
*In this configuration, we are going to need to add routes in both '''RUT1''' and '''RUT2'''. | |||
*To add a route to the '''RUT2''' network end device, just follow the procedure above. | |||
Once both routes are added, '''restart the RMS Hub'''. If you have completed the steps correctly, the routes tab should look like this: | |||
[[File:RMS both routes.png|border|class=tlt-border]] | [[File:RMS both routes.png|border|class=tlt-border]] | ||
===Modifying Firewall Zones=== | === Modifying Firewall Zones=== | ||
---- | ---- | ||
For the end devices to be able to reach each other, we are going to need to modify Firewall zones in both '''RUT1''' and '''RUT2'''. | For the end devices to be able to reach each other, we are going to need to modify Firewall zones in both '''RUT1''' and '''RUT2'''. Follow these steps to edit Firewall zones: | ||
*Navigate to '''Network -> Firewall -> General settings'''. | |||
*In the zones section, click the edit button on WAN zone (wan -> REJECT). | |||
[[File:FW Zones section.png|900px|border|class=tlt-border]] | [[File:FW Zones section.png|900px|border|class=tlt-border]] | ||
In the '''Inter-Zone Forwarding''' section, click on '''Allow forwarding to destination zones''' and select '''rms''' (for example, rms_xzkEgQ: openvpn). | *In the '''Inter-Zone Forwarding''' section, click on '''Allow forwarding to destination zones''' and select '''rms''' (for example, rms_xzkEgQ: openvpn). | ||
[[File:RMS Inter zone forwarding.png|900px|border|class=tlt-border]] | [[File:RMS Inter zone forwarding.png|900px|border|class=tlt-border]] | ||
Line 130: | Line 146: | ||
After Clicking on '''Save & Apply''' for both routers, the setup is completed and the LAN to LAN communication between devices should work. | After Clicking on '''Save & Apply''' for both routers, the setup is completed and the LAN to LAN communication between devices should work. | ||
===Testing the configuration=== | === Testing the configuration=== | ||
---- | ---- | ||
As with any other configuration, it is always wise to test the setup in order to make sure that it works properly. To test LAN to LAN communication via RMS Hub, we could try to '''ping''' one end device from the other. | As with any other configuration, it is always wise to test the setup in order to make sure that it works properly. To test LAN to LAN communication via RMS Hub, we could try to '''ping''' one end device from the other. |