B
Bill
Hello, our company is the process of connecting two sites via a VPN,
however we have come to a stump as to how to address the following
problem, any assistance would be greatly appreciated.
Here's the network (sorry about the diagram, it's the best I could
do):
LAN 2
(sUBNET 10.0.3.0)
w/s1 w/s2 w/s3
! ! !
----------------------------------------
!
!
!
!(10.0.3.10 LAN)
zYWALL2 VPN
!(192.168.2.2 WAN)
!
!
!(192.168.2.1 LAN)
ADSL
!(212.34.23.123 WAN)
!
!
!
!
$VPN VPN VPN VPN$
!
!
!
!(212.34.23.124 WAN)
ADSL
!(192.168.3.1 LAN)
!
!
!(192.168.3.2 WAN)
zYWALL1 VPN
!(192.168.10.9 LAN)
!
!
!
!
!(192.168.10.12 NIC2)
W2K RRAS--------------------------- CABLE MODEM (192.168.10.10)
!(10.0.0.5 NIC1)
!
!
!
----------------------------------------
! ! !
w/s1 w/s2 w/s3
(sUBNET 10.0.0.0)
LAN 1
LAN 1 clients have their default gateway set to 10.0.0.5, the ip of
our RRAS NAT box. Within RRAS a static route has been setup to forward
all request for 10.0.3.0 to gateway 192.168.10.9 (out Zywall router),
which inturn sends it via the VPN link. All other requests to the RRAS
NAT server are routed to our cable modem for internet access.
This works perfectly, however from LAN 2 no inbound request can get
through.
A static route has been setup on Zywall 1 to route anything for
10.0.0.0 to our RRAS NAT server on 192.168.10.12 NIC2, however this
still does not work, and to be honest I am guessing it is not able to
do that either.
So I then added another Network Card ((NIC3)ip 192.168.10.13) to our
RRAS NAT server and configured our Zywall to route anything to
10.0.0.0 to that interfaces' IP. I added another static route to the
RRAS NAT server so that all incoming packets on NIC3 would be routed
through NIC1 to our LAN clients.
I am not sure if this is the appropriate way to do this.
I should also point out that LAN 1 clients must use the cable line for
their internet and not the ADSL line as LAN 2 clients do.
I am sure this would not be a problem if we didn't have two gateways.
Tho I'm not sure, can this be a NAT related issue?
Your help is much appreciated.
Bill
however we have come to a stump as to how to address the following
problem, any assistance would be greatly appreciated.
Here's the network (sorry about the diagram, it's the best I could
do):
LAN 2
(sUBNET 10.0.3.0)
w/s1 w/s2 w/s3
! ! !
----------------------------------------
!
!
!
!(10.0.3.10 LAN)
zYWALL2 VPN
!(192.168.2.2 WAN)
!
!
!(192.168.2.1 LAN)
ADSL
!(212.34.23.123 WAN)
!
!
!
!
$VPN VPN VPN VPN$
!
!
!
!(212.34.23.124 WAN)
ADSL
!(192.168.3.1 LAN)
!
!
!(192.168.3.2 WAN)
zYWALL1 VPN
!(192.168.10.9 LAN)
!
!
!
!
!(192.168.10.12 NIC2)
W2K RRAS--------------------------- CABLE MODEM (192.168.10.10)
!(10.0.0.5 NIC1)
!
!
!
----------------------------------------
! ! !
w/s1 w/s2 w/s3
(sUBNET 10.0.0.0)
LAN 1
LAN 1 clients have their default gateway set to 10.0.0.5, the ip of
our RRAS NAT box. Within RRAS a static route has been setup to forward
all request for 10.0.3.0 to gateway 192.168.10.9 (out Zywall router),
which inturn sends it via the VPN link. All other requests to the RRAS
NAT server are routed to our cable modem for internet access.
This works perfectly, however from LAN 2 no inbound request can get
through.
A static route has been setup on Zywall 1 to route anything for
10.0.0.0 to our RRAS NAT server on 192.168.10.12 NIC2, however this
still does not work, and to be honest I am guessing it is not able to
do that either.
So I then added another Network Card ((NIC3)ip 192.168.10.13) to our
RRAS NAT server and configured our Zywall to route anything to
10.0.0.0 to that interfaces' IP. I added another static route to the
RRAS NAT server so that all incoming packets on NIC3 would be routed
through NIC1 to our LAN clients.
I am not sure if this is the appropriate way to do this.
I should also point out that LAN 1 clients must use the cable line for
their internet and not the ADSL line as LAN 2 clients do.
I am sure this would not be a problem if we didn't have two gateways.
Tho I'm not sure, can this be a NAT related issue?
Your help is much appreciated.
Bill