2
My existing home network setup is as follows;
- Virgin Media Superhub 2 in modem only mode
- ASUS RT-N13U working as a switch / wireless AP running DD-WRT firmware version
DD-WRT v24-sp2 (08/07/10) std
- Port forwarding on ASUS for RDP (
3389
for what its worth) - DDNS with NOIP
- PIA Anonymous VPN Service - using client software on Windows 7 PC & Android mobile device - no VPN config on switch / router
Regardless of whether I am connected to the VPN, if my Windows PC is switched on, I can RDP into it remotely (not on the LAN) from pretty much anywhere - have tested on multiple devices from multiple locations. This works using either my WAN IP or my DDNS hostname.
My problem is that I cannot access the remote admin page of my switch and I'm pretty sure it's something to do with my VPN. I have listed the example scenarios I have tried below;
Scenario 1: The PC is switched on - connected to the VPN
Result 1: Cannot remotely access switchScenario 2: The PC is switched off - was connected to the VPN when last shut down
Result: Cannot remotely access switchScenario 3: The PC is switched on - not connected to VPN
Result 3: Can remotely access switchScenario 4: The PC is switched off - was not connected to VPN when last shut down
Result 4: Can remotely access switch
As with my RDP tests, I have tried all of the above 4 scenarios using both my WAN IP and my DDNS hostname from various devices in various locations.
There are two things which are confusing the hell outta me here;
Firstly why is the VPN apparently the issue here when it is controlled by software on a PC which may be on or off when trying to remotely access? I could understand if the VPN was configured on the switch / router but it isn't.
Secondly, how is RDP getting through every time without fail and remote switch / router access is failing every time without fail?
I have attached a few (hopefully) useful screenshots of the DD-WRT config, if any more details are required let me know in the comments and I will edit as necessary.
Assuming you're accessing the WAN interface outside LAN, otherwise, you'll need to enable NAT loopback. Settings looks OK for me, its possible that your ISP blockes popular ports on WAN, since you've tried ssh/telent, how about changing the default 8080 port?
– Chris.C – 2015-07-26T18:38:08.290Correct, trying to access from WAN - not on the same LAN. Nope not accessible through any means. I have tried different ports, yes. – Jonny Wright – 2015-07-26T18:44:28.410
But you have RDP working? which defaults at 3389. So if you disable the 3389 port forwarding and set WEB on 3389, does it work? – Chris.C – 2015-07-26T18:47:22.747
Nope -
ERR_CONNECTION_TIMED_OUT
– Jonny Wright – 2015-07-26T18:50:32.807Ok found it - for some reason it won't connect when I'm connected through VPN. Really should have mentioned I use a VPN in the question. – Jonny Wright – 2015-07-26T18:54:46.013
How is your port forwarding set for port 8080? Can you post screenshots of that? (Sorry this really should be a comment, but I can't post there because I'm new and my reputation is too low. Will edit as needed). – teknoman – 2015-07-26T18:08:01.043
No port forwarding on 80/8080. Only 3389 for RDP. – Jonny Wright – 2015-07-26T18:40:25.520
1When you VPN in you should be able to access your router's admin page by entering its private LAN IP address (i.e. 10.0.0.1) via HTTP or HTTPS. The "Remote access" would be through your WAN IP on whatever port you've selected. As your SuperHub is in "modem only" mode then it's probably put the ASUS in its DMZ. Also, make sure the network you're using to connect doesn't dish out IPs in the range 10.0.0.x... Are you able to ping the router's LAN IP when you've connected via the VPN? You most certainly should be able to use the router's internal IP to get the GUI when you're RDP'ing... – Kinnectus – 2015-07-30T16:23:54.913
@Big Chris; Sorry the question could probably have been worded better. Its an anonymous VPN service for, well, anonymous browsing. So AFAIK I can't connect to my machine/VPN from a remote location - it's one way only. – Jonny Wright – 2015-07-30T22:03:56.793
Umm, where is your NoIP client running, and are you sure you are using your router's WAN IP and not your VPN WAN IP? And also, your ASUS RT-N13U working as a router not switch/WAP (well, all three, but most importantly a router). Using the wrong terms will just confuse people. – qasdfdsaq – 2015-07-31T16:42:03.487
1NoIP client is on the router (sorry for the mis-match of device desriptions). It is definitely my WAN IP I am trying, not the VPN IP. – Jonny Wright – 2015-08-02T22:21:50.163
Hmm, that seems like it should be fine. What happens if you try a traceroute to your router while the VPN is connected (and is there any difference when it isn't connected)? (Both from an internal, and external device) – qasdfdsaq – 2015-08-04T13:00:53.803