cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
748
Views
0
Helpful
5
Replies

Want to setup Tunnelling between 2 routers at diff sites

Ken Le
Level 1
Level 1

Hi Experts,

I would like to setup something like the below Router connection.

PC B PC C

| |

PC A - Router A - Router B - Router C - Router D - PC D

PC - stands for computer.

I would like to do a tunnelling between PC A and PC D, meaning in the process PC A cannot connect to PC B or PC C, only to PC D.

P/S: Sorry, diagram not ilustrate correctly. PC B connected to Router B's LAN, and PC C connected to Router C's LAN.

Any Configuration or examples I can use?

Thanks in advance.

Cindy

5 Replies 5

Richard Burts
Hall of Fame
Hall of Fame

Cindy

Perhaps I am not understanding something about your environment. But I am not sure that tunneling would necessarily provide the result that you want.

It would be easy to set up a tunnel between routerA and routerD. And you could set up routing that would access PC D via the tunnel from routerA and that would access PC A via the tunnel from routerD. But that would not prevent PC A from accessing PC B or PC C. To prevent that access you would need to configure an access list on routerA to prevent access from PC A to PC B and PC C (and similar access list filtering on routerD). And once you have the access list filtering in place, then why do you need the tunnel?

If there is something that I have not understood then perhaps you can clarify this?

HTH

Rick

HTH

Rick

Rick,

Thanks for your reply..:)

Well, the scenario is like this LAN A and LAN D are vendor's LAN, but LAN B and LAN C are internal network.

We want to have tunnel so that the vendor's PC wont be able to come in to our LANs.

We want them to ride on our WAN Connection but at the same time wanna prevent them from coming to our network.

Hope this clarifies.

Thanks again,

cindy

cintelligroup
Level 1
Level 1

Hi Cindy,

I hope Generic Routing Encapsulation (GRE) will serve your purpose for more details see the link below.

http://www.cisco.com/en/US/tech/tk86/tk89/technologies_configuration_example09186a008011520d.shtml

Regards

Tirumala

Leo Laohoo
Hall of Fame
Hall of Fame

Private VLAN Catalyst Switch Support Matrix

http://www.cisco.com/en/US/products/hw/switches/ps708/products_tech_note09186a0080094830.shtml

Securing Networks with Private VLANs and VLAN Access Control Lists

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a008013565f.shtml

Hope this helps.

patrickvanham
Level 1
Level 1

Another possibility worth looking into is vrf lite to connect the specific PC's.

http://www.cisco.com/en/US/products/ps6128/products_configuration_example09186a0080a3a8a7.shtml

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: