This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

If I have conflicting subnets in a VPN...

I have the latest version of Astaro running and the internal network is 192.168.90.x

I want to create an IPSEC tunnel to another network that sits behind a Checkpoint NGX device where the remote subnet is also 192.168.90.x.

What can I do to avoid address conflict? Is there a way I can do something like a static one-to-one NAT mapping of both the local and remote addresses?

Also what if a home user also has a 192.168.90.x address and connects remotely to the Astaro network? Will there also be a conflict?

This thread was automatically locked due to age.

Parents

0 BAlfson over 14 years ago

Do I understand correctly that you have the following and that you want devices in Site A to be able to communicate with devices in Site C?
{Site A LAN}>AstaroCheckPoint{Site C LAN}

In the VPN definition, you need to have {Site B LAN} and {Site C LAN} in 'Remote Networks' for the Astaro, and indicated as local networks in the Checkpoint. Also in the Checkpoint, you need a gateway route to the Router for traffic destined for {Site C LAN}. (I trust you have a different subnet for the Site C LAN. [;)])

Does that do what you want?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 14 years ago

Do I understand correctly that you have the following and that you want devices in Site A to be able to communicate with devices in Site C?
{Site A LAN}>AstaroCheckPoint{Site C LAN}

In the VPN definition, you need to have {Site B LAN} and {Site C LAN} in 'Remote Networks' for the Astaro, and indicated as local networks in the Checkpoint. Also in the Checkpoint, you need a gateway route to the Router for traffic destined for {Site C LAN}. (I trust you have a different subnet for the Site C LAN. [;)])

Does that do what you want?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data