Menu
What's new
By:
Filters Better Search

Double NAT, VPN Client, Firewall ...

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

N

netguru

Regular Contributor
Hi there,

i am running since years Merlin behind a Fritzbox Router perfectly.
Fritzbox has its own IP Range and DHCP and a static Route to Merlin.
On Merlin there a running a few clients, some are in VPN Client Mode, some not. To connect TO the VPN Clients i use the VPN IP and connects to them with open Ports on firewall. Works perfectly.

My Problem ist now, that i have a client on the ASUS Merlin machine, which ist NOT in VPN.
So i have to connect the client via normal ISP IP via the Fritzbox Router.

The problem ist, that the static route from fritzbox to asus does not work because of the NAT working on the asus merlin one ...
Ist there any disadvantage turning off NAT on the asus router? Losing firewall could be important? VPN provider uses firewall also ... So i have to open the ports on asus AND provider. Problem turning NAT off?

Thx a lot
 
Last edited:
Is there any reason you can’t bridge the fritzbox and make Asus main router without double NAT?
 
Yes, fritzbox deals also as telephone station and has several clients istself connected via cable ...
if turning off NAT is a problem, then it is no big problem, its only one client and i have then to test if it works when it is also a vpn client (connection then works, but streaming television is not so good)
 
How about connecting Asus Merlin router to Fritzbox using the LAN port? Fritz can be the DHCP server for the entire network. VPN clients will still work if you define a default route (0.0.0.0) on Merlin so all Internet traffic routes to the Fritz.

I have this kind of setup. My main router is Verizon @ 192.168.0.1 whereas my Merlin AC86u is on 192.168.0.2 connected via LAN port, in router mode. With some customizing, I have been able to get guest networks, VPN server (PPTP/OpenVPN/IPSEC ikev2) and some other things to work. Needless to say the firewall on the Merlin is off. I think this kind of setup has a lot less overhead than double-NAT. On the main router 192.168.0.1 you need static routes for any VPN IP ranges to 192.168.0.2.
 
You must log in or register to reply here.

Similar threads

StephanK
RT-AX88U Pro Wireguard
Replies
5
Views
388
StephanK
StephanK
T
Internet connection via ISP despite existing VPN connection in the Asus RT-AC 86U
Replies
5
Views
383
tom
T
J
Double NAT trouble? ISP-provided modem/router + GT-AX6000 (w/ RMerlin)
Replies
6
Views
612
bennor
B
Yota
How to enable port randomization in Asuswrt-Merlin?
Replies
4
Views
384
Yota
Yota
S
OpenVPN LAN access + one external IP
Replies
3
Views
289
eibgrad
eibgrad
Similar threads
Thread starter Title Forum Replies Date
J Double NAT trouble? ISP-provided modem/router + GT-AX6000 (w/ RMerlin) Asuswrt-Merlin 6
A Open NAT game profiles Asuswrt-Merlin 8
J Max number of open NAT connections on GT-AXE16000 and GT-BE98 Asuswrt-Merlin 9
S VoWifi and NAT Acceleration Asuswrt-Merlin 0
C Solved Need help with nat-start scripts Asuswrt-Merlin 3
Mr Solis Enabling NAT Acceleration (CTF) breaks Port Forwarding? (RT-AC68U w/ 386.12_4) Asuswrt-Merlin 17
orudie VPN does not auto connect after primary WAN disconnects and Secondary WAN becomes active. When primary WAN reconnects again then VPN auto reconnects Asuswrt-Merlin 6
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
G Using VPN Director to route only torrent traffic through VPN Asuswrt-Merlin 9
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 920 (members: 34, guests: 886)
Top