Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
313
Views
0
Helpful
0
Replies

RV32X Subnet filtering (Site to site VPN)

SolidSnakeSK
Level 1
Level 1

‎02-25-2017 09:30 AM

Hello,

1) I have a fully functional site to site tunnel using two RV325s, one device sits on 192.168.5.0/24 network, the other on 192.168.10.0/24 network, is there a way how to prevent clients from 10.0/24 network accessing the 5.0/24 network? I solved this temporarily by specifying 192.168.5.0/24 route to nonexistent host, however, there are devices that I cant do this (UniFi USG, ZyXEL USG), and still, this is configured on the client side, not on our side. ACLs seems to ignore these rules.

2) I have fully functional S2S IPsec VPN between RV325 and RV320, the RV325 sits on the 192.168.5.0/24 network, and the RV320 on 192.168.1.0/24 network. The 192.168.1.0/24 network has another gateway (192.168.1.2) that routes traffic to the 10.0.0.0/8 network, this works fine on the site, however, I cant access the 10.0.0.0/8 network from the 192.168.5.0/24 network over the VPN, is RV320 ignoring the route completely? I was also not able to ping the 192.168.1.2 gateway until I added static route for 192.168.5.0/24 GW192.168.1.1 .

Thank you :)

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents