Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 1341 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

S2S IPSEC with mulitple IP addresses

mkleine
Greetings,

I'm running multiple IPSEC S2S connections and would like to use two IP different IP addresses to connect from the external interface.

I have one IP address up and running with multiple connections on the device address in the ETH0 (external) interface using x.x.x.106.

I'd like to set up a second IP address x.x.x.107 to connect to a different set of IPSEC S2S sites. x.x.x.107 is defined as an additional address on the same ETH0 interface as x.x.x.106.

However, in setting up the IPSEC connection, I can select only the 'external' interface (x.x.x.106), and I haven't figured out how to make this work.

Any thoughts?

Mark


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to BAlfson
    Bob, 

    I figured you'd show up [:D]

    I've used Windows ISA, and allows you to define which of the external IP addresses you'd like to 'listen' to. ISA 2006 Firewall as a VPN Remote Access Server - A Few Tricks We used it to create a VPN to somewhere in Europe for an accounting training at the local Tech Center in a deal I built for York.

    Not really a deal breaker here, I'm starting to get covered up in VPN's, and I was thinking of segregating them in case something/someone starting misbehaving.

    I was wondering if I could build additional 'virtual interfaces' to attach to the IPSEC goodies. Maybe turn the ETH0 interface into a VLAN interface and build additional VLAN interfaces that would allow the segregation? Hadn't really thought that through. 

    Thanks, Mark