Like every other website on the planet, SmallNetBuilder uses cookies. Our cookies track login status, but we only allow admins to log in anyway, so those don't apply to you. Any other cookies you pick up during your visit come from advertisers, which we don't control.
If you continue to use the site, you agree to tolerate our use of cookies. Thank you!
Privacy Policy

Wi-Fi Router Charts

Click for Wi-Fi Router Charts

Mesh System Charts

Click for Wi-Fi Mesh System Charts

LAN & WAN Reviews

Tags:

Installation/Configuration - more

Now we're ready to add a user to the SSL312. Click the Users and Groups link underneath the Access Administration heading. In the Users and Groups screen, click Add User. Refer to Figure 10. Fill in the information for any new users you may want to add at this point. You will use one of the user accounts to login in to the VPN portal later.

SSL312 - Administration - Users and Groups (click image to enlarge)

Figure 10: SSL312 - Administration - Users and Groups (click image to enlarge)

To specify how the SSL312 connects to the network, click the VPN Tunnel link underneath the Access Administration heading. The VPN Tunnel Client screen appears.

SSL312 - Administration - VPN Tunnel (click image to enlarge)

Figure 11: SSL312 - Administration - VPN Tunnel (click image to enlarge)

Notice the client address range start and client address range end. Those addresses represent the pool of addresses that will be available for assignment for the PPP connection that are made when we start the VPN tunnel. The range of numbers must not overlap with the network that we wish to connect to.

For example, if our network starts at 192.168.1.1, we would need to choose another unused subnet like 192.168.250.1 - 192.168.250.254. We will also need to add the route for the VPN tunnel client. Refer to Figure 11, which shows that I added the 192.168.0.x network so that the 192.168.250.x network could communicate with it.

VERY IMPORTANT: You will also need a static route set up in the firewall/router for the 192.168.250.x network (or the client network range you have configured) that points to the IP address of the SSL312. In my case, I needed a static route set up in such a way that any 192.168.250.x traffic is routed to the SSL312 gateway at 192.168.0.25. Without the static route back to the SSL312 from our firewall/router, packets may become lost and cause the VPN tunnel not to work correctly.

Also, be sure and take the time to confirm that port 443 (HTTPS) can be reached externally from the internet to the SSL312. Most firewalls/routers will need a rule set up to allow traffic from the outside (i.e. internet) to come inside the network to the SSL312. The procedure for doing this varies greatly depending on the kind of firewall/router and the design of your network. Save yourself some headaches and frustration by taking the time now to ensure that this level of connectivity is functioning correctly.

Support Us!

If you like what we do and want to thank us, just buy something on Amazon. We'll get a small commission on anything you buy. Thanks!

Don't Miss These

  • 1
  • 2

Most Read This Week

Over In The Forums

Three Dumb Routers concept inroduced by Steve Gibson (2016)
Sudden DNS issues with AC RT68U 386.7_2
Occasional Strange UDP Handling on GS-AX3000 - Any Ideas?
Strange IP DCHP adress at Wifi connections (openvpn active , FW 386.7-2 , RT-AC 86U)
Initiate a VPN client connection via commands