VPN Tunnel Accessing Resources

Unanswered Question
Jul 17th, 2008
User Badges:

My company ABC can establish VPN connection to company XYZ.

Problem- cannot ping or access resources on company xyz network after establishing vpn connection.


Facts- My company ABC LAN IP is 10.1.x.x & company XYZ LAN IP is 10.1.x.x.


Question- what can company XYZ do on their end to allow access for my company ABC because they both are on 10.1.x.x subnets. From any PC outside of company ABC, we can ping or access resources on company XYZ LAN via VPN connection.


Thanks for your help!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Rick Morris Thu, 07/17/2008 - 12:22
User Badges:
  • Silver, 250 points or more

one side will need to set up NAT

Rick Morris Thu, 07/17/2008 - 12:24
User Badges:
  • Silver, 250 points or more

ABC

10.1.x.x/8


XYZ

10.1.x.x/8


both are in the same subnet so traffic destined for the remote site will not go because the traffic will appear local.


to get around this one NAT.


ABC

10.1.x.x/8 NAT 10.199.x.x/16


XYZ

10.1.x.x/8 NAT 10.200.x.x/16

singhsaju Thu, 07/17/2008 - 12:26
User Badges:
  • Silver, 250 points or more

Hi,


You will have to do NAT on both side of the VPN tunnel.


change 10.1.x.x to 192.168.10.x on one side and on other side change 10.1.x.x to 172.16.1.x.


And then try to access remote networks for 192.168.10.x or 172.16.1.x accordingly.


Remember your crypto acls will change to Natted ip address .


HTH

Saju


Pls rate if it helps !

Actions

This Discussion