Hello together!
side-to-side works:
headquater (ASG220) x.x.1.1/24
office (ASG120) x.x.2.1/24
now I want to connect hosts (inner domain controllers / dns servers) together and tried
headquater x.x.0.254/24
office x.x.0.253/24
host a x.x.0.1
host ns-a x.x.0.2
host b x.x.0.3
host ns-b x.x.0.4
host a is the primary domain controller, with primary dns, host b secondary.
I tried
hq - additional address uplink port x.x.0.254/24
office - additional address uplink port x.x.0.253/24
network definition WAN - x.x.0.0/24 - interface any
hq: IPSEC gateway office - local network WAN - remote network WAN
office: IPSEC gateway hq - local network WAN - remote network WAN
but it doesn't work [:@]
In this case (and a short night) I tried the solution
hq - additional address uplink port x.x.0.6/29
office - additional address uplink port x.x.0.14/29
hq network definition
LAN inner - x.x.0.0/29 - interface inner
WAN inner - x.x.0.8/29 - interface uplink
office network definition
LAN inner - x.x.0.8/29 - interface inner
WAN inner - x.x.0.0/29 - interface uplink
IPSEC
hq: IPSEC gateway office - local network LAN inner - remote network WAN inner
office: IPSEC gateway hq - local network LAN inner - remote network WAN inner
This configuration works, but it is not ... good, I think.
How can I get my INNER-WAN to work, so that ASG220 is GW1, ASG120 is GW2 and all in INNER hosts will be in one subnet (x.x.0.0/24)?
Regards
Chris
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
