New Member
Posts: 1
Registered: ‎02-12-2019

Edgerouter PoE unable to ping a network over the VPN tunnel

Good afternoon, 

 

I have a EdgeRouter PoE model running firmware 1.10.7

I have a local network of 192.168.29.0/24

I have a remote network of 192.168.1.0/24

 

I have another VPN gateway device on the LAN at the main office on IP 192.168.1.10

 

I can ping the VPN router from the local network at the main office, however remotely I can only see 192.168.1.1 or .2 or another host. 

 

When I ping 192.168.1.10 I don't see that device

When I tracert to the VPN host that I need to be able to see over the Tunnel at the main office (10.0.1.125) it won't respond. 

 

I can ping 10.0.1.125 from the main office. 
If I am over the tunnel, the host doesn't respond. 

 

The gateway to the 10.0.1.0 network is 192.168.1.10

 

Any recommendations on what I can do to be able to see the remote network over the VPN?

 

It is a IPSec VPN tunnel between the office with the EdgeRouter and a Netgear FVS336 Router at the main office. 

Highlighted
Established Member
Posts: 1,595
Registered: ‎07-07-2014
Kudos: 375
Solutions: 105

Re: Edgerouter PoE unable to ping a network over the VPN tunnel

[ Edited ]

Hi @patrickdoman !

 

 

I have a local network of 192.168.29.0/24

I have a remote network of 192.168.1.0/24

 

OK Check!

 

I can ping 10.0.1.125 from the main office. 
If I am over the tunnel, the host doesn't respond. 

 

Aha!  So you have two remote networks - it must be defined or else the router won't know to send that traffic over the VPN.  It must be defined on both sides, of course.

 

 

You further mention:

 

The gateway to the 10.0.1.0 network is 192.168.1.10

 

The gateway at 192.168.1.10 may need to know something about 192.168.29.0/24 so it can route back.  If the gateway is not the same a the VPN device that terminates the tunnel.  A map may help!

 

 

EDIT: also keep in mind that pings are not a great way to test connectivity (unless pinging is the point of the VPN tunnel) - many devices have firewalls that by default do not respond to pings (or other traffic) from devices not on their own network. If you're sitting on the same network they may happily respond to pings, but might not if you are not on the same network.  Just keep it in mind as you try to test connectivity - test things you'll actually be using over the tunnel.