Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Bridging or NATing between a VPN Tunnel using IPSEC & IKE

Status
Not open for further replies.
dufresnem

dufresnem

IS-IT--Management
Aug 19, 2002
136
CA
I have two Netopia R9120XL routers and want to establish a VPN Tunnel between the two using IPSEC & IKE. I want to know if one of the two scenarios are possible?

Scenario One:
Can the R9120XL routers act as a bridge(LAN extension) between two locations. All workstations & servers at two separate locations linked via a VPN tunnel using IPSEC & IKE. Both internal private networks on each end of the tunnel using the same private 192.168.0.0/24 network address?

LAN-A: 192.168.0.1-126
LAN-B: 192.168.0.127-254

Scenario Two:
If I cannot do the above and I have to put one of those networks on its own private Class C network which would be 192.168.20.0/24. Can I NAT this network (192.168.20.0/24), across the VPN IPSEC & IKE Tunnel? This way traffic from 192.168.20.0/24 routed across the VPN tunnel reaching my network would become 192.168.0.0/24.

Is anyone of these solutions possible?

 
Sort by date Sort by votes
I am not too familiar with those routers, but you will need to have 2 seperate networks, as described in your second scenario.
Why would you want to NAT them as described? I don't think it is possible, but I have been wrong before and I will be again....

Thanks,

Matt Wray
MCSE, MCSA, MCP, CCNA

 
Upvote 0 Downvote
Simple reason is this, but complicated.

I have Cisco routers in two seperate locations that connect us to another network to access certain services. These Cisco routers are managed by another company, which refuse to make any changes I ask and has not allowed my network at one location to grow. These Cisco routers are configured to perform static NAT one to one with my private LANs 192.168.0.0/24 & 192.168.20.0/24.

I want the company that manages the Cisco's to remove one circuit, which will allow me to utilize a VPN tunnel in order to reduce cost. In order for me to do this I need to have 192.168.20.0/24 traffic go through the VPN tunnel, then through my Cisco which is located on network 192.168.0.0/24. Since this Cisco does static NAT one to one with 192.168.0.0/24, the 192.168.20.0/24 traffic coming from the VPN tunnel, must look like 192.168.0.0/24 traffic in order to route back properly.

Any suggestions????

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

F
  • Locked
  • Solved
some IP Phone not working over site-to-site OpenVPN, packets modified on other side of tunnel
Replies
1
Views
2K
FrankSider12
F
teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
685
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
514
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
474
sircles
sircles
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
422
Joon Smith
Joon Smith

Part and Inventory Search

Sponsor

Back
Top