I have a pair of Linksys BEFVP41's. One is 192.168.1.1 the other is 192.168.2.1. I've been able to establish a tunnel.
My general question is "how do I configure them to route traffic "beyond" their endpoints (their local/remote secure groups?"
Here's the end-to-end "hops" from my home net (10.3/16) to the office (10.0/16):
1) 10.3/16 net (home Class B)
2) router1 (needed because home net is Class B and Linksys doesn't support - boo!)
3) 192.168.1/24 net
4) home BEFVP41 (LAN addr 192.168.1.1)
5) cable modem
6) Internet
7) T1
8) router2
9) 206.109.149.192/28 net
10) office BEFVP41 (LAN addr 192.168.2.1)
11) 192.168.2/24 net
12) router3 (again, needed to connect Class B office to Class C Linksys)
13) 10.0/16 (office Class B)
I have the VP41's each configured with their own LAN side (192.169.1 and .2 respectively) as their local secure group, and their partner's LAN side as their remote secure group.
I can ping from the home LAN (10.0) to the LAN side of the office VP41, but can't ping beyond the office VP41.
I called Linksys tech support and they're fairly useless (they said they don't support anything related to the Advanced tab!).
So, do I just need a static route definition or are my local/remote secure groups inappropriate for what I'm trying to do? And just what exactly does the local/remote security group actually define?
Thanks!
David Thom
My general question is "how do I configure them to route traffic "beyond" their endpoints (their local/remote secure groups?"
Here's the end-to-end "hops" from my home net (10.3/16) to the office (10.0/16):
1) 10.3/16 net (home Class B)
2) router1 (needed because home net is Class B and Linksys doesn't support - boo!)
3) 192.168.1/24 net
4) home BEFVP41 (LAN addr 192.168.1.1)
5) cable modem
6) Internet
7) T1
8) router2
9) 206.109.149.192/28 net
10) office BEFVP41 (LAN addr 192.168.2.1)
11) 192.168.2/24 net
12) router3 (again, needed to connect Class B office to Class C Linksys)
13) 10.0/16 (office Class B)
I have the VP41's each configured with their own LAN side (192.169.1 and .2 respectively) as their local secure group, and their partner's LAN side as their remote secure group.
I can ping from the home LAN (10.0) to the LAN side of the office VP41, but can't ping beyond the office VP41.
I called Linksys tech support and they're fairly useless (they said they don't support anything related to the Advanced tab!).
So, do I just need a static route definition or are my local/remote secure groups inappropriate for what I'm trying to do? And just what exactly does the local/remote security group actually define?
Thanks!
David Thom