Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

RV320 VPN cannot access LAN device using iPad

Using RV320, firmware 1.1.1.06

LAN 192.168.1.x 255.255.255.0

VPN 192.168.09.100 to 192.168.09.150

I need to access a device on the LAN using this VPN connection from iPad. The device, received DHCP address on LAN, broadcasts its presence every second on Port 4992.

When located on LAN, the iPAD sees the presence broadcast and accesses the device without an issue. When I VPN in, the Easy VPN works well. I configured rules on the router firewall as:

AllowAll Traffic [1]LAN192.168.9.100 ~ 192.168.9.150192.168.1.1 ~ 192.168.1.255

Always

AllowAll Traffic [1]LAN192.168.1.1 ~ 192.168.1.255192.168.9.100 ~ 192.168.9.150

Alway

If I first connect to the device when the iPad is on the LAN, I turn off WiFi, and connect via the VPN, I can continue to control the device. However, if I have not connected to the device locally first, I cannot see the presence broadcast on port 4992 when connecting first via the VPN. The broadcast does not seem to reach the 192.168.9.x connected iPad from a 192.168.1.x device.

What is the correct way for the iPad on the 192.168.9.x see the broadcast from 192.168.1.x?

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Hello,Broadcasts will not be

Hello,

Broadcasts will not be sent out over the VPN tunnel.  The only traffic that will go from the LAN to your client is traffic specifically destined for it, otherwise the router won't send it out.  It sounds like your presence packet is a broadcast, so any VPN clients will not be able to see it. 

I believe when you connect locally you are picking up on the broadcast, and then when you switch over to the VPN that hasn't timed out yet, hence why it works if you connect locally first.

Hope that helps a bit,

Christopher Ebert - Advanced Network Support Engineer

Cisco Small Business Support Center

*please rate helpful posts*

1 REPLY
Silver

Hello,Broadcasts will not be

Hello,

Broadcasts will not be sent out over the VPN tunnel.  The only traffic that will go from the LAN to your client is traffic specifically destined for it, otherwise the router won't send it out.  It sounds like your presence packet is a broadcast, so any VPN clients will not be able to see it. 

I believe when you connect locally you are picking up on the broadcast, and then when you switch over to the VPN that hasn't timed out yet, hence why it works if you connect locally first.

Hope that helps a bit,

Christopher Ebert - Advanced Network Support Engineer

Cisco Small Business Support Center

*please rate helpful posts*

219
Views
0
Helpful
1
Replies
CreatePlease to create content