site to site vpn

Discussion in 'Cisco' started by Bruce Fournier, Jul 11, 2003.

  1. Hello all,
    We are currently terminating vpn connections from client sites in our dmz
    area and then letting their traffic pass through our firewall. The circuits
    and routers that the vpns terminate on are owned by the clients and are
    located at our facility. We are currently using the 10.0.0.0 address space
    and so are some of our clients. I can forsee a time when we might have a
    problem with this if a client has a host at 10.0.0.1 and if we have a host
    at 10.0.0.1 and we try to connect to the client's host our router will think
    the host is on the local subnet and not route the packet to the client host.
    This problem could also arise if two of our clients are using the same IP
    address the router won't know where to forward the packet and could cause a
    loop. is there any other way around this than getting some oublic address
    space and doing statics and conduits through a pix?
    Any ideas or suggestions ?!?
    Thanks in advance
     
    Bruce Fournier, Jul 11, 2003
    #1
    1. Advertisements

  2. Michael T. Hall, Jul 11, 2003
    #2
    1. Advertisements

  3. Bruce Fournier

    /dev/alex Guest

    /dev/alex, Jul 13, 2003
    #3
  4. Thank you for your replay, that is one that I hadn't thought of.
     
    Bruce Fournier, Jul 14, 2003
    #4
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.