PepVPN isolation using VLANs


#1

Hi,

We are using a combination of MAX and Balance products in our architecture:

  • 1 Balance 380
  • 4 Pepwave MAX BR1 Slim
  • 4 Pepwave MAX HD2

Our Balance 380 is located in our HQ and we are connecting to the remote Pepwave devices using PepVPN on the internet.

Traffic can go from any Pepwave to the HQ anf from the HQ to any Pepwave. However, the Pepwave must not be able to connect to any other Pepwave. We want to use VLANs.

I added VLANs using the ? icon and created a PepVPN profile for each Pepwave with their respective VLANs. But the PepVPNs fail to create the tunnel.

Did I miss something ?

Configuration example with two PepWave connecting to the internet using static IP address:

Balance 380:

  • WAN 1: 10.10.10.1/24 to the internet
  • WAN 2: 20.20.20.1/24 to the internet
  • UntaggedLAN : 192.168.60.0/24
  • VLAN10: 192.168.10.10/24
  • VLAN40: 192.168.40.10/24

Pepwave MAX HD2-LTE:

  • WAN1: 11.11.11.1/24 to the internet
  • UntaggedLAN: 192.168.20.0/24
  • VLAN 40: 192.168.40.1/24

Pepwave MAX BR1 Slim:

  • WAN1: 21.21.21.1/24 to the internet
  • UntaggedLAN: 192.168.50.0/24
  • VLAN 10: 192.168.10.1/24

Thank you.


#2

@ProGae

VLANs created for B380/HD2/BR1 is overlapped hence you going to have problem for the PepVPN connections. Please consider to change the VLANs network IP addresses.