10-17-2008 03:59 AM - edited 03-09-2019 09:41 PM
When using easy vpn in nem mode it has been said that the remote site present a single routable network to the hub site.What is that mean?
Does it mean that i could directly access the pc at the remote site from the hub?
Solved! Go to Solution.
10-17-2008 05:55 AM
Hi,
Yes, you could directly access the PC at the remote site from the Hub. Below is some info on VPN3002 NEM and this concept should apply for all EZVPN Implementation in NEM. Also, if you chose to deploy NEM, make sure that there are no overlapping remote subnets.
Network Extension mode allows the VPN 3002 to present a single, routable network to the remote private network over the VPN tunnel. IPSec encapsulates all traffic from the VPN 3002 private network to networks behind the central-site VPN Concentrator. PAT does not apply. Therefore, devices behind the VPN Concentrator have direct access to devices on the VPN 3002 private network over the tunnel, and only over the tunnel, and vice versa. The VPN 3002 must initiate the tunnel, but after the tunnel is up, either side can initiate data exchange.
Regards,
Arul
** Please rate all helpful posts **
10-17-2008 05:55 AM
Hi,
Yes, you could directly access the PC at the remote site from the Hub. Below is some info on VPN3002 NEM and this concept should apply for all EZVPN Implementation in NEM. Also, if you chose to deploy NEM, make sure that there are no overlapping remote subnets.
Network Extension mode allows the VPN 3002 to present a single, routable network to the remote private network over the VPN tunnel. IPSec encapsulates all traffic from the VPN 3002 private network to networks behind the central-site VPN Concentrator. PAT does not apply. Therefore, devices behind the VPN Concentrator have direct access to devices on the VPN 3002 private network over the tunnel, and only over the tunnel, and vice versa. The VPN 3002 must initiate the tunnel, but after the tunnel is up, either side can initiate data exchange.
Regards,
Arul
** Please rate all helpful posts **
10-17-2008 06:42 AM
What is the meaning of direct access?
Does it mean that i could use remote desktop connection to access any machine at the remote site?
10-17-2008 02:16 PM
Hi,
In this context direct access means that after the IPSEC Connection is established between the remote and headend side, the connection is treated as a Lan to Lan Connection. So, either side can initiate traffic.
This is in contrast with PAT Mode, where after the IPSEC Connection is established, traffic can only be initiated from the remote side.
So, to answer your specific question, Yes, after the tunnel is up in NEM, you should be able to to RDC from the Headend to the remote site.
Regards,
Arul
** Please rate all helpful posts **
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide