Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 3 subscribers
  • Views 773 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Network question

mrshahin
Hi,

I have a question regarding the network IP range.

we have 2 networks that are connected with site-2-site VPN with each other,

The site1 has this IP range:

10.0.0.0
255.0.0.0

The site has this IP range:

172.20.1.0
255.0.0.0

now we want in the Site1 add a sencd IP scop for DHCP for the network:

10.0.10.0
255.255.0.0

my question,

Site2 trust the site1 throgh site-2-site vpn

from the scop 10.0.10.0 I can ping the 10.0.0.0 but I am not able to ping the site 2 servers 172.20.1.0

Can I do this? can we ping the site2 from the servers with the new IP range: 10.0.10.0?

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    172.20.1.0
    255.0.0.0

    Did you mean 255.255.255.0?

    10.0.0.0/8 includes 10.0.0.0/16

    So, I'm confused about this.  What is the definition of the tunnel, [172.20.1.0/24][10.0.0.0/8]?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Hi Balfson,

    Sorry, you are right the network site 2 has subnet 255.255.255.0

    Network site 2 :

    172.20.1.0
    255.255.255.0

    Network Site1:

    10.0.0.0
    255.0.0.0

    Site1 and Site2 are connected with site-2-site VPN.
    10.0.0.0  172.20.1.0

    Because our DHCP is out of IP address for the network: 10.0.0.0/8 and the DHCP has already lease the 255 IP address, now we need more IP address for some devices on the network site1, now I am thinking of adding a new DHCP scoop for a new network that must have the IP range: 10.0.10.0 255.255.0.0 (or any IP range that works)

    I did add a machine to the network site1 and give it the IP address 10.0.10.10 255.255.0.0, should I be able to ping the 1782.20.1.0 network? because I cannot.

    Thanks
  • 0 in reply to mrshahin
    ......Because our DHCP is out of IP address for the network: 10.0.0.0/8 and the DHCP has already lease the 255 IP address, now we need more IP address for some devices on the network site1, now I am thinking of adding a new DHCP scoop for a new network that must have the IP range: 10.0.10.0 255.255.0.0 (or any IP range that works)......


    I think you're trying a to find a solution to a problem that really isn't a problem but maybe just an incorrect DHCP configuration.
    10.0.0.0/8 is an 8-bit network address and so there are 24-bits available for hosts inside this network, that is 16.777.216 addresses and not just 255. The network IP's go from 10.0.0.0 (network address) to 10.255.255.255 (broadcast address).

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0 in reply to mrshahin
    ......Because our DHCP is out of IP address for the network: 10.0.0.0/8 and the DHCP has already lease the 255 IP address, now we need more IP address for some devices on the network site1, now I am thinking of adding a new DHCP scoop for a new network that must have the IP range: 10.0.10.0 255.255.0.0 (or any IP range that works)......


    I think you're trying a to find a solution to a problem that really isn't a problem but maybe just an incorrect DHCP configuration.
    10.0.0.0/8 is an 8-bit network address and so there are 24-bits available for hosts inside this network, that is 16.777.216 addresses and not just 255. The network IP's go from 10.0.0.0 (network address) to 10.255.255.255 (broadcast address).

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Cookie Information Banner