Questions tagged [vpn]
VPN is the acronym for Virtual Private Network - a network type that uses a the Internet to provide remote networks or single machines with secure access to their organization's network avoiding expensive leased lines.
5,117
questions
0
votes
0
answers
7
views
Built-in IKEv2 and PSK on Windows Server
I tried to use on Windows Server 2019, then built-in VPN Type IKEv2 + PSK
So:
Fill the PSK in "Allow custom IPsec policy for L2TP/IKEv2 connection" (rrasmgmt.msc)
Firewall ports are opened ...
-2
votes
0
answers
60
views
How does DNS work in wg-quick?
I am trying to setup a VPN with two hops: traffic coming from the client gets routed through a VPS server and then to mullvad vpn:
https://i.sstatic.net/CbKJEd1r.png
Everything works just fine, but I'...
0
votes
0
answers
19
views
Access Wireguard (wg0) interface from outside docker container
I want to run a Nuclei scan through a VPN configured inside a docker container. I am using the thrnz/docker-wireguard-pia image, and the container starts correctly. When running the Nuclei scan inside ...
0
votes
0
answers
40
views
Change VPN address ip to APIPA address [closed]
I have a strange use case basically I am using a vpn like himachi, radmin, zero tier,etc to connect to another pc. The issue is the remote pc’s will have a vpn address like 10.x.x.x. Most vpns will ...
1
vote
0
answers
39
views
Accessing Azure File Share when port 445 is blocked, while maintaining access to on prem DNS for name resolution
Currently port 445 is blocked for endpoints attempting to access a file share in Azure. I have two options, use Azure File Sync, or use a VPN / ExpressRoute.
By using a VPN, will I have the same issue ...
0
votes
0
answers
19
views
mtr shows consistent packet loss at a specific IP inside ISP network (I think) [migrated]
first off - I read this, but it's only partial coverage. I have VPN in the mix here.
I have bad latency, packet loss ==> sometimes unusable, wobbly VoIP in WFH meetings.
To do my ISP's job for them,...
-1
votes
0
answers
56
views
Can't SSH into Wireguard client directly, but have to SSH into Wireguard host server then Wireguard client
I have a Linux server sitting inside of a Starlink network (no public IP, hence Wireguard tunnel) that I want to ssh into. I currently have a Raspberry Pi (10.10.10.1) sitting in my home network with ...
-1
votes
0
answers
35
views
Round-robin between two VPNs with route tables and iptables [migrated]
I opened to vpn interfaces with
openvpn --config vpn1.ovpn
openvpn --config vpn2.ovpn
and I want to send all from my laptop by one of the vpns.
I prevented the vpns from changing my default gateway ...
0
votes
0
answers
13
views
Config routing Softether VPN for connect DB by card vpn and config access internet by card eth0
I setup Softether VPN client on centos 7.
After setting up VPN, I saw my IP change to the IP of the server VPN.
I want to connect DB by VPN and other connections to my Server using card eth0.
Can you ...
0
votes
3
answers
206
views
Configure Wireguard server with NordVPN [closed]
I have a Wireguard server running on raspberri pi on port 51821. I want all internet outbound traffic incoming to wg0 to go through NordVPN. But whenever I enable NordVPN I loose internet access as ...
-1
votes
1
answer
67
views
Block LAN access to a client in Wireguard
I have a Wireguard server running on a raspberri pi on my home LAN. I want to give a relative who lives in a different country access to my VPN, so he can freely use internet services blocked by his ...
0
votes
2
answers
75
views
connecting two networks over vpn
I have two network, both with an internet connection. One linux station (Debian 12) per network are connected by vpn.
I have this scenario:
net 192.168.160.x -->
default gateway 192.168.160.4
...
1
vote
1
answer
104
views
AWS - Client VPN Endpoint hostname is not resolvable
I created a Client-VPN-Endpoint in AWS and I'm trying to connect using AWS VPN client but I get the error "Connection failed. Try again."
I tried to nslookup or ping endpoint but I see that ...
0
votes
2
answers
86
views
Route all local traffic through another openVPN client behind a NAT
So I'm working on a very simple problem,
There is a web based cloud infra behind a VPN (openvpn), Lets call it A
ANd then there is an openvpn client inside my office (behind NAT ofc) with no ...
-2
votes
1
answer
44
views
Unable to access LAN behind Windows peer from remote Android peer
been trying the entire weekend to get Wireguard to work the way I want to no avail. I want my phone to be able to see my home LAN, the Android phone will see and connect to the Windows peer and can ...
1
vote
1
answer
124
views
Openvpn on fedora40 raises error on systemd process but works well in regular command prompt
Although on ubuntu everything is work well when I tried to start openvpn as systemd service in fedora40, its work well in prompt :
sudo /usr/sbin/openvpn --verb 9 --suppress-timestamps --nobind --...
0
votes
0
answers
207
views
Windows share not working over WireGuard
I have a Mikrotik router, where I have set up WireGuard server. The connection is established from the Windows client PC using the official WireGuard client, and everything is working except the ...
0
votes
0
answers
65
views
I need to run two separate VPN clients simultaneously on Windows 11. Fails for me. Works for coworkers
VPN clients are FortiCLient 7.2.4.0972 and NetExtender 10.2.339.
Two hosts: one for db access and the other for web API access. Split tunneling is not used.
When I connect both (in any order), ...
0
votes
0
answers
116
views
Installing and configuring ZeroTier application in TrueNAS
How to properly set up ZeroTier in the TrueNAS Scale server to access the NAS server through the ZT network? I have installed ZT and confirmed that it is connected through the pod shell. However, I am ...
0
votes
0
answers
39
views
IPSEC configuration and usage on networks with overlapping network addresses
I use a different SSL VPN client to connect to remote customers. I would prefer to connect directly to remote devices in ssh and/or monitor the same ones via SNMP.
The problem is that although each ...
1
vote
0
answers
19
views
Site-To-Site IPSec between StrongSwan and zyxel usg100
We bought USG flex 100 into our office and we added it to the nebula.
Now, we need to setup site-to-site tunnel into our datacenter. On nebula site we have network 10.5.1.0/24 and in datacenter we ...
1
vote
0
answers
14
views
push nameserver to client with vpn windows built-in
I have configured an IKEv2 VPN with Windows-server 2022,
and defined a static range of IP addresses for then tunneling (192.168.1.0 -> 192.168.1.10).
Now, every client that connects will get 192....
0
votes
0
answers
33
views
linux ip route (interface) selection based on ping to destination?
Intro
I live in Thailand. Our connectivity to Europe here is somewhat strange.
Sometimes connections go directly to Europe (ping of 180-250ms), because my ISP has a direct 100G link to a peering ...
0
votes
1
answer
25
views
Connecting to on-premises machine from VPN
I have a Linux host on-premises, and a VPN configured in AWS. I want to SSH securely to the Linux host
The host is behind a router. There is a static IP for router and static private IP for host.
I ...
0
votes
0
answers
87
views
Wireguard clients can not KDE connect between peers
I succesfully established a Wireguard VPN from a Rocky Linux 9 server at the cloud. As of now there are two clients: a Fedora desktop and an Android mobile phone. The first problem I want to solve is ...
0
votes
0
answers
27
views
Swastrong IPSec with Password Authentication
I'm in the exact same situation as sashok_bg here : I'm trying to access my Freebox pro VPN through Swanstrong client vpn on Debian.
So far, with what has been said in his converstation with ecdsa, ...
2
votes
1
answer
143
views
How to setup routing to the tun interface from an interface that is receiving tagged frames
I am configuring a Raspberry Pi to route traffic from a specific VLAN through a VPN, but I am encountering routing issues. Here’s an overview of my setup and the problems I'm facing:
Setup:
Raspberry ...
0
votes
0
answers
43
views
Another NetExtender instance is already running. NetExtender will now exit in linux
I Have provisioned the Ubuntu 20.04 LTS machine on the GCP Console.
We've installed xRDP to facilitate remote desktop access.
So we installed the NetExtender on Linux through RDP
Install NetExtender
...
0
votes
2
answers
192
views
How do I replace the main network interface with a bridge on GCP?
What I'm trying to do is launch a bridged OpenVPN server on GCP (in a GCE VM). What looks like a crucial part to me is in the title. If I succeed, the rest is supposedly easy. I tried two approaches:
...
0
votes
1
answer
317
views
Strongswan VPN Client (Android) can't connect to my test Kerio Control server
I have the following issue: I set up a Kerio Control 9.4.4 build 8365 and tried to connect to VPN server through Android 14+ device. I used Strongswan(Android) for this, but I got the following error ...
0
votes
0
answers
33
views
Connection to host reset when accessed via VPN or behind corporate firewalls
A client of mine was reporting connectivity issues from a lot of his customers who are either accessing his website from behind a corporate firewall or via VPN recently.
I did check the endpoint it ...
0
votes
1
answer
259
views
Port Forwarding all ports in UFW to a VPN Client on Ubuntu Server
I am running a VPN Wireguard server on Ubuntu 22.04. I am trying to forward all ports from the server to a vpn client on 10.10.10.2. As of now, I have perfected port forwarding for single ports. In /...
1
vote
1
answer
324
views
how to add a dns ro resolve wireguard endpoint when using wg setconfg instead of wg-quick
Following wireguard docs for ordinary-containerization it works with something similar to this configuration file:
# /etc/wireguard/wg0.conf
#
[Interface]
PrivateKey = ...
0
votes
0
answers
41
views
How can I set separate phase 1 and phase 2 IPs using AWS Managed IPSec offerring?
I'm trying to setup an AWS Site-to-Site VPN connection that is IPSec based. It seems to be their managed offering. A particular connection I am trying to setup specifies distinct Phase 1 and Phase 2 ...
0
votes
0
answers
64
views
AWS Site to Site VPN to Kerio Control Phase 2 parsed INFORMATIONAL_V1 request 380820527 [ HASH N(INVALID) ]
I'm setting up a Site-to-Site VPN between my on-premises network and AWS VPC, and encountering an INVALID_ID_INFORMATION error during the phase 2 (Quick Mode) negotiation. The setup involves IPsec ...
0
votes
0
answers
143
views
Restricting Access to Kubernetes Ingress using LDAP and VPN
I'm working on securing access to my Kubernetes cluster, specifically for the domain name xyz.com. Currently, I'm using NGINX Ingress with the nginx.ingress.kubernetes.io/whitelist-source-range ...
-1
votes
1
answer
67
views
No DNS record or entry in Host file, but can still access IIS site?
We have a VM in azure (with no Public IP), that has a bunch of sites inside the IIS. These sites are only accessible from inside the VM or whilst being connected to our OpenVPN. There is no DNS record ...
0
votes
2
answers
58
views
Exclude local sub-net (local IP ranges)
In my company's VPN app we have a disable-able feature which excludes below List of non-web-site IP-address ranges from being routed into the VPN server.
This allows local-net Apps to continue working ...
-1
votes
1
answer
256
views
How to do VPN split tunneling for urls and IP addresses on Windows 11
On Windows 11 I want any traffic going to long.dns.name.amazonaws.com (DataGrip Redshift connection) and http://n.n.n.n:8000/ (Airbyte hosted on EC2 with an elastic ip) to be routed through my VPN, ...
1
vote
1
answer
387
views
Port unreachable when wireguard is connected
I have a server that routes all of its traffic through wireguard. When I start the wireguard, all ports listening on this server's public IP are unavailable - even ssh does not work.
What I want is to ...
1
vote
1
answer
213
views
Running wg-quick up wg0 is altering my /etc/wireguard/wg0.conf file
Im using debian 11 server on my VPS, and trying to setup wireguard.
after creating my private and public keys, i create my config file /etc/wireguard/wg0.conf with contents
[Interface]
PrivateKey = [...
1
vote
0
answers
356
views
I can't open X-UI panel address installed on my oracle ubuntu server
I have installed x-ui panel and it shows it's up and running on my server, but when I try to access my server_ip:specified_port_for_x-ui it says connection time out or the site can't be reached.
I ...
0
votes
0
answers
308
views
How to configure MFA for WireGuard VPN
I have a WireGuard VPN on linux to create a secure tunnel to my server and clients.
I want to add MFA functionality for user connections. I would like require entering a security code when connecting....
0
votes
2
answers
57
views
OpenVPN - Properly sharing keys/certificates
I enabled OpenVPN on the router at work so that we can connect to different devices like our NAS and RDP into the computers there without opening those ports to the internet.
One cause of concern that ...
0
votes
1
answer
259
views
Unable to ping other subnet through IPSEC tunnel
I'm configuring an S2S IPSEC VPN tunnel between two Fortigate firewalls.
The tunnel is up and running. Network topology:
When I ping from the LAN interface, which is directly connected to the ...
1
vote
0
answers
56
views
Wireguard connected to multiple VPN peers
I have a wireguard setup which connects my mobile devices with a wireguard instance running in a VPS.
This allows me to access both my internal resources, and the internet, as if I was on the VPS.
The ...
0
votes
1
answer
83
views
Site to Site VPN 4G/5G
We have just set up a new site where internet is currently unavailable so we are using 4G/5G internet which we are unable to get a static IP address for. We use WatchGuard devices for Branch Office ...
0
votes
0
answers
27
views
Google Cloud VPN maintenance
I would like to check when my GCP Cloud VPN underwent to maintenance.
I found docs regarding Cloud VPN Maintenance and availability, but there is noting about checking when this event occurred.
Is it ...
0
votes
0
answers
188
views
NRPT via GPO while using Always On VPN NRPT
I have a working Always On VPN Profile deployed using the ProfileXML implementation of automatic NRPT to the local device configuration:
<DomainNameInformation>
<DomainName>.example....
0
votes
0
answers
56
views
VPN netmap multiple sites with same LAN network address
I have some issues applying netmapping to a case for which I could not find much info about on the web.
I am trying to set up a VPN network (server ip: 10.1.0.1) where a user (VPN IP: 10.1.0.2) can ...