Omada Site to Site VPN Setup
HTML-код
- Опубликовано: 23 июл 2024
- Controller - amzn.to/3k1FW2Q
Router - amzn.to/3VQmzqN
Switch - amzn.to/3WW2AZ2
AP - amzn.to/3ZwOf7p
-------------------------------------------------------------------------------------------
🛒 Amazon Shop - www.amazon.com/shop/raidowl
👕 Merch - / raidowl
-------------------------------------------------------------------------------------------
🔥 Check out this week's BEST DEALS in PC Gaming from Best Buy: shop-links.co/cgDzeydlH34
💰 Premium storage solutions from Samsung: shop-links.co/cgDzWiEKhB8
⚡ Keep your devices powered up with charging solutions from Anker: shop-links.co/cgDzZ755mwl
-------------------------------------------------------------------------------------------
Join the Discord: / discord
Become a Channel Member!
/ @raidowl
Support the channel on:
Patreon - / raidowl
Discord - bit.ly/3J53xYs
Paypal - bit.ly/3Fcrs5V
Affiliate Links:
Ryzen 9 5950x - amzn.to/3z29yko
Samsung 980 2TB - amzn.to/3myEa85
Logitech G513 - amzn.to/3sPS6yv
Logitech G703 - shop-links.co/cgVV8GQizYq
WD Ultrastar 12TB - amzn.to/3EvOPXc
My Studio Equipment:
Sony FX3 - shop-links.co/cgVV8HHF3mX / amzn.to/3qq4Jxl
Sony 24mm 1.4 GM -
Tascam DR-40x Audio Recorder - shop-links.co/cgVV8G3Xt0e
Rode NTG4+ Mic - amzn.to/3JuElLs
Atmos NinjaV - amzn.to/3Hi0ue1
Godox SL150 Light - amzn.to/3Es0Qg3
links.hostowl.net/
0:00 Intro
0:35 The plan
1:55 Setup
13:11 Conclusion Наука
Very helpful, currently setting up one, have searched and searched how to configure these TPLink Omada setup but this channel cut it through! More power to you bro!
I’ve been wanting to setup an Omada site to site vpn for a while now. Nice video!
I use site to site for work and thanks for explaining it in an easy to understand way!
pretty neat and loved the narration too keep it up!!!
Thanks for the vid. I'm using the same Omada setup, and I dig it. I setup my folks with the same Omada gear. I just can't figure out a way to have the router talk to the controller via IP when my home IP is always changing. I wish they supported more DNS services like Cloudflare.
As a heads up, its not impossible to see the blurred IP address if you look carefully enough or use a tool to deblur. So in future, you may be better off wiping the data from the footage with something less visible than a blur effect;
I check my logs when at the community pool. 😂 love this vid man
Question, should the home network be in the responder mode under the advanced settings? Thanks.
The logs 😂😂😂 Should have seen that coming, but I didn't. Good one.
Better checking the logs in the woods vs the bathroom.
I've been using openvpn b/w my home & office, but I'm going to check this out. I assume this can be done as long as both sites have the ability to run omada. Home = pfsense router, proxmox ct running omada & I can put a pi4 in my office to run omada.
what if the client did not have a static IP ? will the ipsec accept ddns as remote node's gateway ?
and could you show how to add multiple nodes VPN ? like 5 or 10 nodes ?
Hello, I have a question?
after done with configuration like this, does this affect my ip phones as well. I use the Grandstream phone
so that I can call the other phones in the remote office?
Can I use the same device model for site-to-site VPN? I'm using ER7206 model on both sites.
Thank you for sharing, this is very informative. I have a question. Does this site-to-site vpn works when the public IP address of both sites is shared among clients of the ISP (double nat)?
Nice video, Can this be done with just the bare TP-Link ER605 (web interface) or do you need to buy the controller also? I just want to connect to mt home network from my laptop at work.
It works with just the bare routers as well.
Any advice on how to get full traffic over ipsec tunnel in omada?
How would you add a third site to the mix?
Awesome!
Any advantages over tailscale?
im gonna have to find the money to invest in an Omada setup this would help with my property in Maryland where my mom lives she is still on cable for bothe properties down there.
Seems like this requires static IPs. Can you share how yo do this ddns?
I notice your Omada dashboard showing the ISP Load graph. You are showing really high Latency… mine does the same, but I’ve never seen that kind of WAN latency ever (200+ msec???)… what the heck is being measured and displayed on that graph?
Nice LSU shirt! :)
Geaux Tigers
I manage a small biz network. We use identical TPLINK routers at each site which adds up to a whopping 2 routers... LOL The one and only reason we have a VPN between the two buildings is because we poll an electronic time clock at the 2nd building to pull in punch in's and punch outs. The 2nd building is 3 blocks away. A simple solution, but it works for us.
Haha yeah doesn’t matter if you’re 3 blocks away or 3 countries away, a VPN is still super useful.
Can the Tunnel IP be configured manually?
Really good video! Now one question, what if I have a dynamic public ip address? Will this still work? How do they communicate and update each others ip addressses? Or dont they? I saw on the gui of the work site router yould enter a domain name. So is this how I need to work around this? Configure both routers with different domain names and use them as the public gateway?
You need a domain and use ddns server
@@kaiadam6476 But it does work? Just set up a say Cloudflare service on each network and use domain names instead? Only reason I ask is I have not acquired my second set of equipment yet or I'd prolly just try it. If this is not possible Ill need to look at another route. Both sites are behind CGNAT.
Would having a controller each site linked to images cloud resolve this? I am about to start something similar while I am abroad and would like to make the setup as simple as possible.
Cool video! You don't have to put a .1 on the last oclet for the remote subnet. A .0 will work just fine. The start of the subnet usually at .0. .1 usually the gateway on the router.
So that's not always the case. Some applications take .0. Others take .1. its funny you say that cuz its a meme in the community. We want it all standard. yet non of us can agree on what option is correct. So usually who ever builds the app gets to pick what to put in. You will find that it depends on the software your using what the system will take. Some think its obvious... I'm just setting the subnet. So i can say what it is and the system will generate the options in that obvious range. The other opinion is to take it as littoral as passible. In that case you can't have a range of numbers from 0 - 0. So dev would ask you for a 1 to start the range. For the Omada line products and pretty much all TP link devices ive played with they want the .1
You can make a video with Client-to-Site VPN settings ? Thanks a lot.
Can u please do me a video setting up l2tp VPN client using omada router
What happens when you have multiply physical locations and you want to keep everything on the same network? Simple, ZeroTier, and NO open ports in any of the Firewalls.
You would do the same steps for each location
Does this still work without public IPs? Like just using the WAN address given by the ISP when the internet connection is plugged into the port?
I was wondering the same. Do you know if it will work without static ip?
I've been working for days trying to get this to work. Are there error logs which show why it's not working?
So then how do we connect multiple sites to be able to access any other site? This seems like a 1:1 only type of solution.
I run a wireguard vpn with gl-inet gear.
0:33 LMAO
how setup site to site vpn USB Modem?
Does this work if the networks are double or triple nated?
Nah you will have to use something like Tailscale
@@RaidOwl thank you for the quick reply, just making sure i understand. I would need to have the public IP directly from my internet providers but i would be able to set up dynamic DNS if that is available, right?
0:10 damn you must be rich, probably that RUclips money
Always check the logs and touch wood and grass :D
Also, I want that shirt.
69 nice! Thanks man.
You missed one nice spot at 12.06
you missed a couple frames at 2:37
just use wireguard - it works great and is faster than openvpn - it runs on anything - no fancy hw needed
That's not the point of Omada. Ok great, Wireguard is faster, I even agree with you. But does Wireguard have Routers, APs and Switches? WG is only a way of connecting networks. Omada is much more than that. Its hardware and software that works together to do many many thing for a network. This is for users of the Omada line. If you don't run Omada then awesome. Use a dif protocol. Some people have massive networks built out with the Omada line for many reasons. Expandability, Quality, Ease of use, Remote access. Invested thousands into the hardware. It's nice to have a functional option built in. The user doesn't have to run a vm or have a server at each site dedicated to this job. As would be the case to run WG. The user would need WG running at each site. Omada just works off the hardware the user already has at every location. And as mentioned before they invest in the Omada line for other reasons. Probably not just around this feature. This is a perk to the hardware after the fact. Your proposing WG simpler. And in some ways it is. But in the Enterprise environment it would in fact be more complicated. Every site has a router. It's needed regardless of site application. I can tie in some random remote outpost that has a single computer station for data input. No need for a server at that location. It's unsecure to run network services on a single client machine deployed to the field like that anyway. So what then? Buy a Pi and put on the network. I'm just wasting money. The router already has the ability to do it baked in. And its easy to use and set up on top of that. The speed is not that bad anyway. Your location site speed matters way more than the protocol you use when doing this type of thing anyway. Crappy ISP = Crappy VPN. No matter the protocol.
Hmmmmm
69th like, cool!
Tailscale…
I like Tailscale
Nebula...
1:00 I do not appreciate the satanic imagery.