This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Site2Site VPN between 10.x networks

Hello everyone
I want to extend one of our branch networks.

We got 10.0.x.x/16 subnets (/24 networks in the 10.0.x.x range) on the main site and a branches with two 10.y.x.x/24 networks (see schema attached)

I want to be able to VPN to the branches (at best with /16 tunnels) and reach all of the remote networks.
Currently only the networks are reachable where the ASG has its Internal interface in (e.g. 10.1.2.x/24)

Is this possible (I guess it is [;)])? I am currently not seeing clear after a long work day.

The switches in the branches are L3 and do inter-VLAN routing on-site.

Any help would be nice, since I need to ship an ASG to a branch next week and we need to switch from MPLS to VPN on that site asap.

Thanks in advance everyone [:)]

Best regards
chas0rde

This thread was automatically locked due to age.

Parents

0 apijnappels over 12 years ago

You have to put /16 at both sides of tunnel! Not /24 on one side and /16 on the other.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 apijnappels over 12 years ago

You have to put /16 at both sides of tunnel! Not /24 on one side and /16 on the other.

Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data