RDP and VPN solution?

Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Forum Index -> General Questions
Author Message
Lights_On
DD-WRT User


Joined: 21 Jul 2012
Posts: 53

PostPosted: Wed May 23, 2018 11:19    Post subject: RDP and VPN solution? Reply with quote
Hi All,

Seeking some advice if possible.

I run a R7000 on Kong and run a permanent VPN using OpenVPN. All is well. I would like to be able to set up a way of RDP into machine on my LAN from outside the LAN. Obviously using DYNDNS and a VPN on the router stops the ability to simply port forward RDP to an IP and thus connect, plus also I would not want to open RDP ports to the web any way as is not safe. So as such - what is the best action to take? So I guess the short question is:

How do I remote into a PC from outside the LAN when my router is running a permanent VPN?

Thank you in advance for any support or direction here.
Sponsor
Lights_On
DD-WRT User


Joined: 21 Jul 2012
Posts: 53

PostPosted: Wed May 23, 2018 17:58    Post subject: Reply with quote
Hi,

Thanks for the reply but I think I have perhaps not been clear. If I run VPN on my router there is no way to access it or local IP addresses it may work with as the VPN does what it is meant to and masks things so as such once VPN on router is enabled there is no way to access an IP inside the land from outside the lan as the VPN set up ensures this. No VPN and a fixed IP or DNS does the job. But not when VPN on. With VPN on I have no issues inside the lan. Any ideas further to this extra detail?
Lights_On
DD-WRT User


Joined: 21 Jul 2012
Posts: 53

PostPosted: Wed May 23, 2018 22:05    Post subject: Reply with quote
Perfect. Yes 100% the situation. Thank you for supporting clarity. My desired solution possible with this set up?
Lights_On
DD-WRT User


Joined: 21 Jul 2012
Posts: 53

PostPosted: Wed May 23, 2018 23:15    Post subject: Reply with quote
Hi,

Thank you for taking the time to help and to share this code and information. I think either solution 4 or 5 will be best for me but as you say I will need to test them and find what works best.

One last question. If 4 and 5 sort of reverse update info to the router then does this then not in effect reverse the solution of using an openvpn solution. So as such I have not re routed traffic? Sory if this is obvious and a silly question.
Lights_On
DD-WRT User


Joined: 21 Jul 2012
Posts: 53

PostPosted: Wed May 23, 2018 23:48    Post subject: Reply with quote
Fully understood and a fair statement of facts. thank you. I need to go and test these and get my head round best implementation. I really appreciate your time helping me out - thank you.
portsup
DD-WRT User


Joined: 20 Oct 2018
Posts: 93

PostPosted: Sat Oct 20, 2018 23:38    Post subject: Re: RDP and VPN solution? Reply with quote
Lights_On wrote:
Hi All,

Seeking some advice if possible.

I run a R7000 on Kong and run a permanent VPN using OpenVPN. All is well. I would like to be able to set up a way of RDP into machine on my LAN from outside the LAN. Obviously using DYNDNS and a VPN on the router stops the ability to simply port forward RDP to an IP and thus connect, plus also I would not want to open RDP ports to the web any way as is not safe. So as such - what is the best action to take? So I guess the short question is:

How do I remote into a PC from outside the LAN when my router is running a permanent VPN?

Thank you in advance for any support or direction here.


VPN won't stop access to the router over WAN if you use PBR. You could use PBR then your RDP should be exposed to WAN, or maybe you will need to forward it.

If you want help setting up transmission while using PBR in openvpn look at my post https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=313661&start=30
Tuus Vere
DD-WRT Novice


Joined: 12 Jan 2020
Posts: 4

PostPosted: Sun Jan 12, 2020 22:21    Post subject: Using PBR is the easiest option Reply with quote
You have a VPN client running on a router behind a modem. In order to have connections to your router from outside the LAN of your router, using PBR is a very good option.

If you want, you can include all your LAN clients in PBR by using suitable IPs and netmasks in PBR. This way, except your router, every device on your LAN will be channeled through the VPN as usual.

By using PBR, your router will be able to accept and respond to connections coming to it from external networks (through port forwarding or through its own VPN clients).

This works because by using PBR, you are leaving the router itself out of the VPN and so it can now work as usual and receive connections from outside its LAN.

Otherwise, the router becomes part of another LAN and becomes inaccessible to anything that is not part of that LAN, unless that LAN is itself configured for some nasty port-forwarding, and connections are made to come through that LAN which we are certainly not interested in!
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 6416
Location: Netherlands

PostPosted: Mon Jan 13, 2020 6:38    Post subject: Reply with quote
Well that is already said by others in this thread and is elaborated here: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
_________________
Routers:Netgear R7800, R6400v1, R6400v2, Linksys EA8500, EA6900 (XvortexCFE), E2000 (converted WRT320N), WRT54GS v1.
OpenVPN Policy Based Routing: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN Server Setup:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Wireguard Server setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1183135
Wireguard Client setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324624
Wireguard Advanced setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324787
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Display posts from previous:    Page 1 of 1
Post new topic   This topic is locked: you cannot edit posts or make replies.    DD-WRT Forum Forum Index -> General Questions All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum