07-17-2008 10:12 AM - edited 03-03-2019 10:47 PM
My company ABC can establish VPN connection to company XYZ.
Problem- cannot ping or access resources on company xyz network after establishing vpn connection.
Facts- My company ABC LAN IP is 10.1.x.x & company XYZ LAN IP is 10.1.x.x.
Question- what can company XYZ do on their end to allow access for my company ABC because they both are on 10.1.x.x subnets. From any PC outside of company ABC, we can ping or access resources on company XYZ LAN via VPN connection.
Thanks for your help!
07-17-2008 12:22 PM
one side will need to set up NAT
07-17-2008 12:24 PM
ABC
10.1.x.x/8
XYZ
10.1.x.x/8
both are in the same subnet so traffic destined for the remote site will not go because the traffic will appear local.
to get around this one NAT.
ABC
10.1.x.x/8 NAT 10.199.x.x/16
XYZ
10.1.x.x/8 NAT 10.200.x.x/16
07-17-2008 12:26 PM
Hi,
You will have to do NAT on both side of the VPN tunnel.
change 10.1.x.x to 192.168.10.x on one side and on other side change 10.1.x.x to 172.16.1.x.
And then try to access remote networks for 192.168.10.x or 172.16.1.x accordingly.
Remember your crypto acls will change to Natted ip address .
HTH
Saju
Pls rate if it helps !
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: