SoftEther VPN User Forum

SoftEther VPN User Forum
https://forum.vpngate.net/

VPN access only with local network segments without Internet

https://forum.vpngate.net/viewtopic.php?f=7&t=66370

Page 1 of 1

VPN access only with local network segments without Internet

Posted: Wed Nov 11, 2020 4:11 pm
by orxan7m
Good day to all!

I Know a very simple task but something I can't do.

There is a network of servers 172.16.16.0/255.255.255.0/172.16.16.254
There are VPN clients(securenat) 192.168.30.1/255.255.255.0/192.168.30.1

you Need to make sure that VPN clients can only connect to the network servers, ie: 172.16.16.0/255.255.255.0

access to the Internet via VPN should be restricted.

How do I do this? Thank you in advance!

Re: VPN access only with local network segments without Internet

Posted: Thu Nov 12, 2020 7:24 pm
by centeredki69
Hello orxan7m,

Remove the Default gateway from the DHCP area of SecureNAT. Clients will now only use their own local ISP gateway for internet but now WILL NOT have access to the local resources at the VPN location. To solve this just add a static Route directing them to your local network under "Edit the Static routing table to push". The entry would be 172.16.16.0/255.255.255.0/192.168.30.1

Re: VPN access only with local network segments without Internet

Posted: Thu Nov 12, 2020 8:18 pm
by orxan7m
thank you very much! earned it!
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/