The aim:
With two sites connected via a VPN using two RV082 routers; I would like to configure them so that the only data able to pass through the line is across the VPN. I would later like to choose exactly which servers can be accessed across the VPN but that should not be a problem once I understand the following.
The problem:
While the VPN itself establishes and works without issue, it does not when I add firewall rules that block everything other than the VPN. This is obviously due to a flawed understanding on my part but I have configured a few firewalls before so I am not a complete novice.
I added various rules along the lines of allowing only private traffic in and out of both routers, across the appropriate WAN1/LAN ports. When this did not work I assumed that I was missing rules that allowed for negotiation of the VPN on the public addresses. Allowing for this did not work either.
After a lot of variations I really am at a loss as to why data is not getting through. Is VPN traffic firewalled using the public IP addresses or the private IP addresses (as I had assumed)? Any advice or pointers given will be gratefully received.
Russell.
Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
With two sites connected via a VPN using two RV082 routers; I would like to configure them so that the only data able to pass through the line is across the VPN. I would later like to choose exactly which servers can be accessed across the VPN but that should not be a problem once I understand the following.
The problem:
While the VPN itself establishes and works without issue, it does not when I add firewall rules that block everything other than the VPN. This is obviously due to a flawed understanding on my part but I have configured a few firewalls before so I am not a complete novice.
I added various rules along the lines of allowing only private traffic in and out of both routers, across the appropriate WAN1/LAN ports. When this did not work I assumed that I was missing rules that allowed for negotiation of the VPN on the public addresses. Allowing for this did not work either.
After a lot of variations I really am at a loss as to why data is not getting through. Is VPN traffic firewalled using the public IP addresses or the private IP addresses (as I had assumed)? Any advice or pointers given will be gratefully received.
Russell.
Carlsberg don't run I.T departments, but if they did they'd probably be more fun.