Solved

IP Addressing

Posted on 2002-05-29
10
194 Views
Last Modified: 2010-04-17
I am designing a public data network to connect branch offices of different clients, by creating a VPN for each client on the same public infrastructure. Physically, what I'm going to end up with is branch office LANs of different clients connecting into a cloud. I intend to use private IP addresses for this public network because clients will use it mostly to connect branch offices. My problem is that different clients will have overlapping IP addresses on their LANs over which I do not wish to have any influence. What technologies can I deploy that will allow clients to maintain their own IP addresses irregardless of who else is using the same addresses on the network and still be able to implement the routing correctly?
0
Comment
Question by:Wyse
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
10 Comments
 
LVL 3

Expert Comment

by:afurman
ID: 7042186
Wyse,

I think it is possible to use NAT (many-to-many) on branch routers. In this case you don't need to change addressing scheme into each branch. However, you can implement any addressing scheme in 'main' private network.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7042456
if you use NAT or another technology (like l2tp), highly depends on your VPN and routers. Could you please give more descriptions/vendors about them.
0
 

Author Comment

by:Wyse
ID: 7043739
Ok ahoffmann, it's like this:
I intend to use cisco 3600 and 7200 series routers at POP sites for customer aggregation with the catalyst 8510 and MGX 8850 making up the distribution and core respectively. I'm actually hoping to use MPLS technology but then I need to get my routing in order before I can deploy MPLS don't I?
0
Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

 

Author Comment

by:Wyse
ID: 7043744
afurman, any idea where I can read about this many-to-many NAT technology?
0
 

Author Comment

by:Wyse
ID: 7044301
afurman, from what I undestand about NAT many-to-many, your router simply maps multiple local addresses to multiple global addresses. This only modifies the source addresses and still leaves me with the problem of more than one possible destination for a particular destination address.
0
 
LVL 3

Expert Comment

by:afurman
ID: 7044362
Wyse,

At first, you need to plan your global network with address/subnetwork ranges for all brunches. Then simple map private (internal) addresses/subnetworks trough NAT to those addresses/subnetworks which you have planned.

When, for example, a client in one brunch connects to another one in other brunch it uses IP from global address range. So, you have avoided a problem with more then one possible destination.
0
 

Author Comment

by:Wyse
ID: 7046610
If a client is at one branch office and wants to connect to a host at another branch, do they have to use the global IP address of that branch or they'll just continue using the old local address of that branch and NAT will take care of the translation but substituting the destination address with a global one? I am trying to avoid a situation where clients actually have to make IP address changes to their internal systems.
0
 
LVL 3

Accepted Solution

by:
afurman earned 100 total points
ID: 7046628
When a client at any branch office wants to connect to a client or server at another branch office it uses global IP address of that client.

Now I'm writing this comment on a PC with local address 10.1.1.13 but when somebody accesses my PC from the Internet (ICQ for example) it uses public IP. It doesn't know and it doesn't need to know my private IP.
0
 

Author Comment

by:Wyse
ID: 7046662
afurman,
Makes a lot of sense that,I'm sure after a bit more reading I should get the hang of it. thanks a lot.
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question