I am in the middle of adding a DMZ to our existing network. I currently have an Astaro 6.3 box as the Gateway/firewall. I will be adding a 7.0 Astaro box for the perimeter gateway/firewall but need to figure out some VPN stuff first.
Current network setup: *(each office has its own DHCP scope of 192.168.0.0/16)
Office 1
private network 192.168.0.0/16
public side IP A
Office 2 (central office)
private network 192.168.0.0/16
public side IP B
Office 1 has a VPN tunnel to the public IP B address set as endpoints.
New network setup:
Office 1
private network 192.168.0.0/16
public side IP A
Office 2 (perimeter)
private network10.10.0.0/16
public side IP C with IP B NAT to 10.10.1.10
Office 2 (internal)
private network 192.168.0.0/16
public side IP 10.10.1.10
If on the new perimeter astaro device I NAT public IP B to 10.10.1.10 (the public side of the existing internal gateway) will the VPN from office 1 to office 2 still connect through the NAT on the perimeter gateway? If not how do I set up a VPN tunnle between office 1 and the private network behind both gateways when I need a public IP address for the end point?
Edit: Office 1 is on Astaro Gateway 6.3 as is the Office 2 (internal), Office 2 (perimeter) is on 7.1
This thread was automatically locked due to age.