• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 217
  • Last Modified:

Connecting multiple remote locations each with different address ranges to main office.

We have a currently working network with 3 remote locations connected with VPN through 2 Netgear FVS318. The remote locations are using FVS318's as well.

The office has a Sonicwall Pro230 or 290 (have to look at it to remember)

The office has the range os 192.168.138.0 255.255.255.0 with 192.168.138.1 as the lan address on the sonicwall.
The 3 locations have the following ranges:
1. 192.10.10.0 255.255.255.0 Has a static wan address
2. 192.168.10.0 255.255.255.0 Has a dynamic wan address
3. 192.168.20.0 255.255.255.0 Has a static wan address

At the office we have 2 Netgear FVS318's that have the internal ip's of 192.168.138.155 and .156
Number 1 and 3 connect via VPN to .155 and number 2 connects to .156

Now keep in mind that the sonicwall vpn will not connect to these guys (it never worked well anyway). Also the reason we connect with hardware is usualy because we program phone systems at the main office from the remote locations. We dod have a person that connects with a dynamic wan to the same netgear that 1 & 3 connect to and we cannot seem to get more than 1 dynamic to work at a time. Each of the remote locations has an IP phone that connects directly to our office PBX (Alcatel)

Now the real reason I'm laying this all out is that the Sonicwall freeked out on Friday and its been on the frits ever since. It is the box that dose all the routing between the remote locations so that they can see each other.

Is there a better way to do this that is not much more expensive and what would be a good box to take the Sonicwall's place?

Any help or suguestions would be nice.

Keith
0
morsecom
Asked:
morsecom
  • 3
  • 2
1 Solution
 
zephyr_hex (Megan)DeveloperCommented:
just my opinion... we use 3 different kinds of sonicwalls, across 6 locations, with site to site vpn.  works like a charm.

are you sure your config is correct on the sonicwall?  have you upgraded the firmware to the latest and greatest?
0
 
morsecomAuthor Commented:
The sonicwall had an issue about 3 months ago and has been flaky since then. I reset to factory and it still has problems. Tech support tells me thet there is a few issues with this unit as well as some security flaws. They recoment a new box. It has the newest firmware on it (2 years old) and we never could get anything but the software that Sonicwall provided to connect via VPN. The vpn at that time was not as important as it is now. I would not be opposed to a new Sonicwall but they will not pay for remote office location boxes that cost over 200$.
0
 
Rob WilliamsCommented:
2 questions:
1) Is 192.10.10.0 the actual LAN network ID of LAN #1 or a typo. That is a public IP and could cause some routing issues.
2) is following diagram similar to the set up you have ? VPN from Netgear1,2,3 to SonicWall NAT'd to appropriate other Netgears 155,156 ?


      Netgear            |-----------------|                       Netgear 1
192.168.138.155  = |                     |
                             |   SonicWall    | =  Internet =   Netgear 3
                             | 192.168138.1 |
     Netgear         =  |____________|                       Netgear 2
192.168.138.156
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
morsecomAuthor Commented:
The map is off just a little.

Netgear 1        Netgear 2        Netgear 3
192.168.20.1  192.168.10.1  192.168.40.1
     :                     :                  :
                  Internet
                       :
                 Netgear 192.168.138.155
                       :
                 Sonicwall (routing) 192.168.138.1

The 3 netgears connect witrh vpn to the .155 and at the office .138 range we can see each of those netgears, but they cannot see each other. We would like to have units 1,2, and 3 be able to see each others range without creating vpn connections between them.
0
 
Rob WilliamsCommented:
To the best of my knowledge it is not possible to route one VPN to the other, i.e. 192.168.20.1 => 192.168.138.155 =>192.168.10.1 Though I have no idea how to do it, it might be possible if you had a proper router such as a Cisco unit, but as a rule with small office/NAT routers it is not possible.
0
 
Rob WilliamsCommented:
Thanks morsecom,
--Rob
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now