This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN with remote and local LAN the same IP scheme

I was wondering if there is a way to get around the issue of my office LAN having the same IP scheme as a remote LAN at an SSL VPN user's house, remote office, etc.
Here is the deal...the wonderful person that setup my office's LAN used 192.168.1.0/24 which of course is the IP scheme of just about every home network. My office LAN is just a little to large to go back and change the scheme and I plan on forcing all remote access to the network through SSL VPN tunnel but don't want to go through the hassle of having the users attempt to change the IP scheme at their remote location(s).

My IP schemes are as follows:
LAN: 192.168.1.0/24
SSL VPN Pool: 10.242.2.0/24

Thank you,
Kyle

This thread was automatically locked due to age.

0 BAlfson over 13 years ago

Go to the KnowledgeBase and search on vpn same subnet. There's an article about how to deal with having the same subnet on both sides of a VPN. Personally, I think the best long-term answer is to change the business subnet to something in 172.16.0.0/12.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 krichardson over 13 years ago

Bob -
I would agree that changing the subnet would be the best long-term answer but that is just not going to happen right now. I have looked all over the knowledgebase and have not been able to find the article that you are referring to. Well I did find the one about a tunnel between two ASGs with the same subnet but not sure if the applies to my situation.
Thanks - Kyle
Cancel
Vote Up 0 Vote Down

Cancel