Solved

IP Addressing

Posted on 2002-05-29
10
195 Views
Last Modified: 2010-04-17
I am designing a public data network to connect branch offices of different clients, by creating a VPN for each client on the same public infrastructure. Physically, what I'm going to end up with is branch office LANs of different clients connecting into a cloud. I intend to use private IP addresses for this public network because clients will use it mostly to connect branch offices. My problem is that different clients will have overlapping IP addresses on their LANs over which I do not wish to have any influence. What technologies can I deploy that will allow clients to maintain their own IP addresses irregardless of who else is using the same addresses on the network and still be able to implement the routing correctly?
0
Comment
Question by:Wyse
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
10 Comments
 
LVL 3

Expert Comment

by:afurman
ID: 7042186
Wyse,

I think it is possible to use NAT (many-to-many) on branch routers. In this case you don't need to change addressing scheme into each branch. However, you can implement any addressing scheme in 'main' private network.
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7042456
if you use NAT or another technology (like l2tp), highly depends on your VPN and routers. Could you please give more descriptions/vendors about them.
0
 

Author Comment

by:Wyse
ID: 7043739
Ok ahoffmann, it's like this:
I intend to use cisco 3600 and 7200 series routers at POP sites for customer aggregation with the catalyst 8510 and MGX 8850 making up the distribution and core respectively. I'm actually hoping to use MPLS technology but then I need to get my routing in order before I can deploy MPLS don't I?
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 

Author Comment

by:Wyse
ID: 7043744
afurman, any idea where I can read about this many-to-many NAT technology?
0
 

Author Comment

by:Wyse
ID: 7044301
afurman, from what I undestand about NAT many-to-many, your router simply maps multiple local addresses to multiple global addresses. This only modifies the source addresses and still leaves me with the problem of more than one possible destination for a particular destination address.
0
 
LVL 3

Expert Comment

by:afurman
ID: 7044362
Wyse,

At first, you need to plan your global network with address/subnetwork ranges for all brunches. Then simple map private (internal) addresses/subnetworks trough NAT to those addresses/subnetworks which you have planned.

When, for example, a client in one brunch connects to another one in other brunch it uses IP from global address range. So, you have avoided a problem with more then one possible destination.
0
 

Author Comment

by:Wyse
ID: 7046610
If a client is at one branch office and wants to connect to a host at another branch, do they have to use the global IP address of that branch or they'll just continue using the old local address of that branch and NAT will take care of the translation but substituting the destination address with a global one? I am trying to avoid a situation where clients actually have to make IP address changes to their internal systems.
0
 
LVL 3

Accepted Solution

by:
afurman earned 100 total points
ID: 7046628
When a client at any branch office wants to connect to a client or server at another branch office it uses global IP address of that client.

Now I'm writing this comment on a PC with local address 10.1.1.13 but when somebody accesses my PC from the Internet (ICQ for example) it uses public IP. It doesn't know and it doesn't need to know my private IP.
0
 

Author Comment

by:Wyse
ID: 7046662
afurman,
Makes a lot of sense that,I'm sure after a bit more reading I should get the hang of it. thanks a lot.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month7 days, 8 hours left to enroll

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question