NOTE: This is only valid if you choose not to use the Default Use NAT option.
If you do not wish to use NAT, then default routes will need to be configured.
In order for your VPN clients to be able to connect to your network (when not using the default NAT mode), you must ensure that the routing is configured correctly for your environment.
The required routing options are split between configuration you can perform on the LogonBox VPN server (for client routing) and Static Routes that you need to configure on the default gateway on your main network (so that your network knows where to route connection responses back to).
The client side routing options are covered in the Enable Remote Access section of the Initial Configuration Guide where you have the options of allowing clients to route to each other or just access the server subnet.
1. Getting the routing information
For your clients to get any responses back from the server subnet though, you must configure a static route on the default gateway on your server's subnet.
To see what subnet your server is using from the pool, navigate to Administration->VPN->Configuration and look at the Subnet value. Note this down.
You also need to know the main IP address of the server. This can be found via an ifconfig command from a shell or SSH session (look at the eth0 IP), or alternatively you can see this from VMCentre on the console by looking at the Networking tab.
2. Setting a default route
This step will differ depending on what device you have running as your default gateway on your server's network.
We will show 2 examples here, assuming the subnet in use is 192.168.4.0/24 and the server's IP address is 192.168.4.1.
Ubiquiti Unifi example
In Settings->Routing & Firewall, select the Static Routes tab and click Create New Route.
Give the new route a name, ensure the route is enabled and set to Static.
Type 192.168.4.0/24 into Network.
Select Next Hop for Static Route Type and enter 192.168.4.1 in the Next Hop field.
Click Save to create the route.
Draytek router example
Log on to your router and navigate to LAN->Static Route.
Click on an index number for an unconfigured route.
Tick the enable box and set the Destination IP Address to the subnet required (without the CIDR prefix at the end). For example, enter 192.168.4.0
Type in the correct subnet mask that corresponds to the Pool Prefix Length setting. i.e. if your CIDR prefix is 24 as per this example, the subnet mask will be 255.255.255.0 (a handy CIDR calculator can be found here).
For the Gateway IP address enter your LogonBox VPN server's IP address, 192.168.4.1 in this example. Then set the Network Interface of the router connected to the network.
Click OK to save the route.
Your target network should now be able to route back to your VPN clients when they are connected.
