VPN access through a dedicated router port?

philjayj · 26 May 2011 at 23:54

Hi,

I'm just wondering, is there way to connect to a VPN at router level, specifically through just one router port? So basically, anything that's plugged in to that port will automatically be connected via the VPN?

Laptops and PCs can connect through the OS, but not all devices that I want to connect allow for VPN use.

Someone mentioned to me that some routers allow for this, but rather than connect a specific port, you connect a specific IP address - anyone know of a gigabit router that does this?

Cheers

Phil

PistolPete · 27 May 2011 at 00:35

Routers that have VPN clients are available, though I've never come across one that allows you to connect via a specific port.

It's not really a normal feature require by most home users, so you may have to look at enterprise kit, or a open source firmware for a consumer router that has it or you can compile in.

BloodyL · 27 May 2011 at 02:56

The Draytek Vigor 2130 seems to fit the bill perfectly here.

bigredshark · 27 May 2011 at 09:56

Only from one port, it's fairly easy to configure cheap stuff for certain traffic to route over a VPN, to enable a certain port to...wqell there are two options I can see -

- Create a seperate vrf/vrouter and put the specific port and the tunnel interface for a route based VPN in there to isolate them from everything else

- Get the box to give a different DHCP range on that port and then use a policy to route traffic from that subnet over a policy based VPN

Either would work, the first is more elegant in my view, that and I hate policy based VPNs personally. Either requires reasonable kit, I'd use a Juniper SSG or SRX, various Cisco ASAs will do the job. Can't (or won't) recommend much else.