I currently have a L2L VPN that connects a remote office. It is partly managed by a third party. Currently it permits traffic from our internal LAN 18.104.22.168/24. I am in the process of re-addressing our internal LAN. I have created, Vlan'd and subnetted 4 new subnets using 192.168.32.0/26 192.168.32.64/26 etc etc. The trouble I?m having is connectivity from the new subnets to the remote site.
The guy at the third party has made the changes his end to permit the new subnets. I have added rules to my access-lists as required but no joy.
access-list nonat extended permit ip 192.168.32.0 255.255.255.0 172.16.0.0 255.255.255.0
access-list 127 extended permit ip 192.168.32.0 255.255.255.0 172.16.0.0 255.255.255.0
I think the third party guy has just permitted 192.168.32.0/24, and I?m wondering if that is correct as I?m actually using 192.168.32.0/26, 192.168.32.64/26, 192.168.128.0/26 192.168.32.192/26. Should subnets be permitted individually or would 192.168.32.0/24 be a workable summarization?