site to site VPN

Discussion in 'Cisco' started by Bruce Fournier, Jul 11, 2003.

  1. Hello all,
    We are bringing in vpn connections from client sites which terminate in our
    DMZ area. The circuits and the associated routers belong to the clients, and
    the routers at our site also belong to them. currently we are routing the
    traffic into our site through a Microsoft ISA server with multiple NIC's
    installed. I want to change that to a cisco router like a 3662 or something
    along those lines. The problem that I forsee is that we are using the
    10.0.0.0 network, and so do some of our clients, so if I am at host 10.0.0.1
    on our network and need to talk to host 10.0.0.1 on the client network the
    router will see the packet and think it's on the local network and not route
    it through the site to site vpn. Is there any way around this?
    Thanks in advance
     
    Bruce Fournier, Jul 11, 2003
    #1
    1. Advertising

  2. Bruce Fournier

    /dev/alex Guest

    On Thu, 10 Jul 2003 17:01:42 -0700, Bruce Fournier wrote:

    > Hello all,
    > We are bringing in vpn connections from client sites which terminate in
    > our DMZ area. The circuits and the associated routers belong to the
    > clients, and the routers at our site also belong to them. currently we are
    > routing the traffic into our site through a Microsoft ISA server with
    > multiple NIC's installed. I want to change that to a cisco router like a
    > 3662 or something along those lines. The problem that I forsee is that we
    > are using the 10.0.0.0 network, and so do some of our clients, so if I am
    > at host 10.0.0.1 on our network and need to talk to host 10.0.0.1 on the
    > client network the router will see the packet and think it's on the local
    > network and not route it through the site to site vpn. Is there any way
    > around this? Thanks in advance


    use a alias IP of maybe 192.168.x.x on the same nic. We resolved alot
    of these issues and more by using the Linux frees/WAN IPsec setup.
    Ran much better and more easily maintained than the Cisco alternative.

    -a
     
    /dev/alex, Jul 11, 2003
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. tical
    Replies:
    3
    Views:
    3,967
    tical
    May 27, 2004
  2. Rick Stromberg
    Replies:
    7
    Views:
    9,996
    luisjimher
    Jun 3, 2011
  3. Nathan Simpson

    Incoming VPN and site to site VPN problems

    Nathan Simpson, Aug 14, 2004, in forum: Cisco
    Replies:
    1
    Views:
    525
  4. JJ DD
    Replies:
    3
    Views:
    709
    Anthony Mahoney
    Aug 23, 2004
  5. pasatealinux
    Replies:
    1
    Views:
    2,108
    pasatealinux
    Dec 17, 2007
Loading...

Share This Page