×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Site to site VPN resources

Unanswered Question

We are planning on having a site to site VPN setup

between two PIX firewalls.


Site1 has 192.16.10.0 on the inside network and is the HQ. ( Head Quaters). This site contains most all the server and resources that site 2 would need access to.


Site2 has ip range of 192.16.12.0 on the inside and is just mainly access resources from site 1.


Both sites have their own Domain controllers. Would

both the sites be able to share resources without any problem once we have site to site VPN between PIX firewalls setup. Is there going to be any issues as far as pinging or authentication of resources goes.


Thanks in advance.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

both sites have their own domain controllers - does this mean they each have their own domain? if so, you could set up a trust between the domains to ease authentication between the sites.


you probably will need to set up wins and dns between the sites to populate network neighborhood and allow for name resolution

Yes, Both have their own donmains, dns and Wins.

To setup trust they shoudl atleast be able to ping by name. I think I will be able to ping by Ip after site to site VPN but by name would be a problem. Although I i know name is dependant on WINS.


My question is to setup a trust do I have to do anything special. Ofcourse I will be checking the

Microsoft website.


Thanks,

mjreupenny Fri, 02/06/2004 - 17:08
User Badges:

Hi there,


There shouldn't be any special setups. If I'm interpreting your setup correctly, the vpn connection makes the 2 networks connect seamlesssly. It would just be like setting up 2 domains on 2 different subnets on your LAN, no?


So if you know how to set trusts between the 2 domains locally, then the setup should run smoothely.


-mrew-


BTW.. you can ping hosts by name if your wins database contains information about the hosts/ip of the opposite domain... :) That's how we do it on our network(s).

Actions

This Discussion