Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Routing and firewall rules

    Scheduled Pinned Locked Moved Routing and Multi WAN
    4 Posts 2 Posters 407 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L Offline
      Lauryx
      last edited by

      Hello.

      I have the network as in bellow image
      The outcome is to be able to access the NVR using nvr.domain.com and the NAS using nas.domain.com
      Also to be able to access the NAS from the PC3
      Can someone help me please with the necessary settings to be able to achieve the mentioned outcome.

      Thank you

      ec9361b6-a541-41c4-9531-d18fc1c22540-image.png

      G 1 Reply Last reply Reply Quote 0
      • G Offline
        Gblenn @Lauryx
        last edited by

        @Lauryx So it looks like you already have the VPN up and running, using Wireguard?
        And I guess that also means that you can access any IP on either side, from any of the clients?

        So what is left is to create a "Host Override" on each site, which you do under Services > DNS Resolver (or Forwarder). At the bottom section you can add your host override as nvr and domain.com and the IP is 192.168.0.199

        You will have to set up something similar on the OpenWRT. I think it might be under DHCP and DNS and static leases.
        In the end the file /etc/config/dhcp needs to contain this:
        config domain
        option name 'nas'
        option domain 'domain. com'
        option ip '192.168.1.200'

        L 1 Reply Last reply Reply Quote 0
        • L Offline
          Lauryx @Gblenn
          last edited by

          @Gblenn
          Thank you very much for your reply.

          The first problem is that even if yes, the Wiregurad VPN works great, i am not able to connect to NAS form PC3 and NVR from PC1.

          I do not understand what rules i need do add to the firewall to allow traffic pass

          Thank you

          G 1 Reply Last reply Reply Quote 0
          • G Offline
            Gblenn @Lauryx
            last edited by

            @Lauryx Ok, so perhaps it's the Static route that you are missing then. If you go into System / Routing and static routes you need to add a route to 192.186.0.0/24 using the Wireguard Gateway.

            Again, how you do this on the OpenWRT side is something I don't know...

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.