FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Unable to ping imageCLASS LBP246dw when connected to network via tun VPN

tbain98
Apprentice

‎04-13-2025 03:24 PM - last edited on ‎04-16-2025 09:47 AM by Moderator

I've got an ImageCLASS LBP246 on a home network with a simple network configuration (ASUS RT-AX5400 router, DHCP w/ an IP reservation for the printer, 255.255.255.0 subnet, no VLANs, no firewall customizations). When directly connected to the router, I can access the printer as expected (ping, Remote UI access, printing all work).

The router provides built-in VPN servers, and I've configured both WireGuard and OpenVPN to allow myself remote access to the network since I live across the country. WireGuard is configured as a tun (L2/Ethernet bridging) VPN connection, and I've tried configuring OpenVPN both as tun and as tap (L3/IP bridging). In all three cases, I can access the router's admin console without issue and can ping other devices on the network (not the printer), so the VPN connections themselves are working correctly.

However, I've only been able to interact with the Canon printer when I use the tap OpenVPN configuration. For the two tun configurations, ping gives me "Request timed out" (but pinging other devices on the same subnet works just fine) and the Remote UI page doesn't connect when accessed from a browser. If I couldn't ping any devices on the network, I'd suspect this was a problem with the VPN configuration, but given that other devices respond as expected I think this is a problem in the printer, and I'd appreciate help determining what it is and how to fix it.

The printer's Remote UI shows that the printer is getting its IP/subnet/default gateway from the router's DHCP server, and they look as I'd expect (the printer's IP is the reserved one, the subnet is 255.255.255.0, the default gateway is that of the router). There are no firewall rules showing in the Remote UI. What else might be causing this, and how can I figure out more about what's going on?

0 Likes
4 REPLIES 4

tbain98
Apprentice

‎04-14-2025 10:09 AM

Small correction: tun is L3/IP bridging, tap is L2/Ethernet bridging, rather than the inverse as I wrote it.

0 Likes

shadowsports
Legend
Legend

‎04-14-2025 10:43 AM

Greetings,

Look for a setting on the router or VPN client called split tunnel or similar.  This allows traffic typically confined to the tunnel to communicate with devices on the local LAN.  This a network configuration and has nothing to do with your printer.  🙂

~Rick
Bay Area - CA


~R5 C (1.0.9.1) ~RF Trinity, ~RF 100 Macro, ~RF 100~400, ~RF 100~500, ~RF 200-800 +RF 1.4x TC, BG-R10, 430EX III-RT ~DxO PhotoLab Elite ~DaVinci Resolve Studio ~ImageClass MF644Cdw/MF656Cdw ~Pixel 8 ~CarePaks Are Worth It

Stephen
Moderator
Moderator
In response to shadowsports

‎04-14-2025 11:09 AM

Rick is correct about it being a networking/VPN issue rather than a printer issue. The printer must be on the same network/VLAN (VPN) as the client (computer) you're trying to print from, or they won't be able to see each other.

Please keep in mind, Canon USA does not support this, and I'm not a tech support rep, I'm just a nerd who happens to know a lot of random stuff, and I've worked here for 16 years.

Most router-based VPN clients assign the inbound connection to a VLAN (Virtual LAN). By design, VLANs are isolated from the rest of the network, so you have to tell the VPN client to grant it access to all of the network resources. If you're not sure how to do that, you'll need to check the documentation for your ASUS Router's VPN client.

The other thing that I recommend (so you don't run into problems) is to log into your printer's local web UI and set it to a static IP, and make sure to assign a static IP from your router, too. Since you want to be able to get to it from the VPN, you don't want any DHCP nonsense getting in the way. HERE is info on that.

Also, if you haven't installed the Canon software & drivers, I recommend doing that. The built-in drivers are limited. You can get the Windows software HERE or macOS software HERE.

I hope this helps, but if you need additional help, let us know here or contact support at 1-800-OK-CANON (800-652-2666).

tbain98
Apprentice
In response to Stephen

‎04-14-2025 11:11 PM

Thank you both for your responses. 

Rick, my understanding is that split tunneling is applicable when you want to access devices on the LAN the client is on, whereas in this case the printer I'm trying to access is on the server LAN.

Stephen, your explanation of network segregation at the router / VPN server was what I started out assuming, but what doesn't add up for me is the fact that I can ping other devices connected to the remote router. If my VPN client is unable to see the printer due to the remote router isolating my client from the rest of the network (all of it), why am I able to ping other devices on that network but not the Canon printer? That was the part that makes me think the printer is choosing to not respond to the traffic (ping, HTTP) rather than that this is caused by the router not passing traffic through in one of the directions. Is there a firewall in the printer itself that's configured by default to not respond to clients connecting from outside the subnet?

Thanks for your recommendation about using a static IP. I use DHCP reservations for a few devices on my home router (also Asus, though a different model) and haven't had any issues in several years of use, but if it becomes flaky I'll consider switching to a static IP. 

0 Likes

Announcements

03/18/2025: New firmware updates are available.

EOS R1 - Version 1.0.2

EOS R5 Mark II - Version 1.0.3


02/20/2025: New firmware updates are available.

RF70-200mm F2.8 L IS USM Z - Version 1.0.6

RF24-105mm F2.8 L IS USM Z - Version 1.0.9

RF100-300mm F2.8 L IS USM - Version 1.0.8

RF50mm F1.4 L VCM - Version 1.0.2

RF24mm F1.4 L VCM - Version 1.0.3


01/27/2025: New firmware updates are available.

EOS R5C - Version 1.1.0.1

EOS C80 - Version 1.0.2.1


01/22/2024: Canon Supports Disaster Relief Efforts in California
01/14/2025: Steps to resolve still image problem when using certain SanDisk SD cards with the Canon EOS R5 Mark II

12/18/2024: New firmware updates are available.

EOS C70 - Version 1.1.0.1

EOS C300 Mark III - Version 1..0.9.1

EOS C400 - Version 1.0.2.1

XF605 - Version 1.0.5.0


12/13/2024: EOS Webcam Utility Pro V2.3b is now available to support Windows on ARM PC users.
11/14/2024: Windows V 2.3a installer for EOS Webcam Utility Pro is available for download
11/12/2024: EOS Webcam Utility Pro - Version 2.3 is available
Copyright © 2025 Khoros, LLC