mt360
asked on
Linksys RV042 x 3 sites + Routing issues
Diagram:
216.191.xxx.xxx
|
|
10.10.0.0
CORPORATE SITE
|
|
VPN ------- 10.10.0.50-------VPN
| |
| |
12.146.xxx.xxx 69.159.xxx.xxx
Remote Site A Remote Site B
10.90.0.0 10.100.0.0
Situation: VPN tunnels are established and Corporate can talk to both Remote sites. But, Remote Sites cannot talk to eachother.
Any Ideas?
If I do a tracert from Remote Site A to B, the first hop is the router(10.90.0.1), then it goes to the external address (12.146.xxx.xxx) instead of the LAN address 10.10.0.50 on the other side of the VPN tunnel.
216.191.xxx.xxx
|
|
10.10.0.0
CORPORATE SITE
|
|
VPN ------- 10.10.0.50-------VPN
| |
| |
12.146.xxx.xxx 69.159.xxx.xxx
Remote Site A Remote Site B
10.90.0.0 10.100.0.0
Situation: VPN tunnels are established and Corporate can talk to both Remote sites. But, Remote Sites cannot talk to eachother.
Any Ideas?
If I do a tracert from Remote Site A to B, the first hop is the router(10.90.0.1), then it goes to the external address (12.146.xxx.xxx) instead of the LAN address 10.10.0.50 on the other side of the VPN tunnel.
You will have to create separate tunnels from Site A to B
ASKER
Can I not use static routing with these devices?
No. The Linksys at Corp cannot route between the VPN tunnels.
If you want A to talk to B, simply add another direct tunnel between them
Corp
| |
A --- B
If you want A to talk to B, simply add another direct tunnel between them
Corp
| |
A --- B
I agree but he'd probably have to swap out the equipment at A&B if they couldn't establish the tunnel between the sites.
Couldn't he also add four static routes
1. To Corp that routes traffic from Remote Site A to Remote Site B
Destination IP Address: 10.100.0.0
Gateway: 69.159.XXX.XXX
2. To Corp that routes traffic from B to A
Destination IP Address: 10.90.0.0
Gateway: 12.146.XXX.XXX
3. To Remote Site A that routes all traffic destined for B through Corp
Destination IP Address: 10.100.0.0
Gateway: 216.191.xxx.xxx or maybe the internal VPN address 10.10.0.50
4. To Remote Site B that routes all traffic destined for A through Corp
Destination IP Address: 10.90.0.0
Gateway: 216.191.xxx.xxx or maybe the internal VPN address 10.10.0.50
Couldn't he also add four static routes
1. To Corp that routes traffic from Remote Site A to Remote Site B
Destination IP Address: 10.100.0.0
Gateway: 69.159.XXX.XXX
2. To Corp that routes traffic from B to A
Destination IP Address: 10.90.0.0
Gateway: 12.146.XXX.XXX
3. To Remote Site A that routes all traffic destined for B through Corp
Destination IP Address: 10.100.0.0
Gateway: 216.191.xxx.xxx or maybe the internal VPN address 10.10.0.50
4. To Remote Site B that routes all traffic destined for A through Corp
Destination IP Address: 10.90.0.0
Gateway: 216.191.xxx.xxx or maybe the internal VPN address 10.10.0.50
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I have talked to Linksys and they also confired the fact that the only way to have all sites see eachother is with seperate vpns connect each one to the other.
Do you need any more assistance or information?
Can you close out this long-forgotten question?
Here's how:
https://www.experts-exchange.com/help.jsp#hs5
Thanks!
<8-}
Can you close out this long-forgotten question?
Here's how:
https://www.experts-exchange.com/help.jsp#hs5
Thanks!
<8-}