VPN Tunnel Accessing Resources

mikntwd49508 · ‎07-17-2008

My company ABC can establish VPN connection to company XYZ.

Problem- cannot ping or access resources on company xyz network after establishing vpn connection.

Facts- My company ABC LAN IP is 10.1.x.x & company XYZ LAN IP is 10.1.x.x.

Question- what can company XYZ do on their end to allow access for my company ABC because they both are on 10.1.x.x subnets. From any PC outside of company ABC, we can ping or access resources on company XYZ LAN via VPN connection.

Thanks for your help!

Rick Morris · ‎07-17-2008

one side will need to set up NAT

Rick Morris · ‎07-17-2008

ABC

10.1.x.x/8

XYZ

10.1.x.x/8

both are in the same subnet so traffic destined for the remote site will not go because the traffic will appear local.

to get around this one NAT.

ABC

10.1.x.x/8 NAT 10.199.x.x/16

XYZ

10.1.x.x/8 NAT 10.200.x.x/16

singhsaju · ‎07-17-2008

Hi,

You will have to do NAT on both side of the VPN tunnel.

change 10.1.x.x to 192.168.10.x on one side and on other side change 10.1.x.x to 172.16.1.x.

And then try to access remote networks for 192.168.10.x or 172.16.1.x accordingly.

Remember your crypto acls will change to Natted ip address .

HTH

Saju

Pls rate if it helps !