Connecting multiple remote locations each with different address ranges to main office.

Posted on 2006-05-09
Last Modified: 2010-04-12
We have a currently working network with 3 remote locations connected with VPN through 2 Netgear FVS318. The remote locations are using FVS318's as well.

The office has a Sonicwall Pro230 or 290 (have to look at it to remember)

The office has the range os with as the lan address on the sonicwall.
The 3 locations have the following ranges:
1. Has a static wan address
2. Has a dynamic wan address
3. Has a static wan address

At the office we have 2 Netgear FVS318's that have the internal ip's of and .156
Number 1 and 3 connect via VPN to .155 and number 2 connects to .156

Now keep in mind that the sonicwall vpn will not connect to these guys (it never worked well anyway). Also the reason we connect with hardware is usualy because we program phone systems at the main office from the remote locations. We dod have a person that connects with a dynamic wan to the same netgear that 1 & 3 connect to and we cannot seem to get more than 1 dynamic to work at a time. Each of the remote locations has an IP phone that connects directly to our office PBX (Alcatel)

Now the real reason I'm laying this all out is that the Sonicwall freeked out on Friday and its been on the frits ever since. It is the box that dose all the routing between the remote locations so that they can see each other.

Is there a better way to do this that is not much more expensive and what would be a good box to take the Sonicwall's place?

Any help or suguestions would be nice.

Question by:morsecom
    LVL 42

    Expert Comment

    just my opinion... we use 3 different kinds of sonicwalls, across 6 locations, with site to site vpn.  works like a charm.

    are you sure your config is correct on the sonicwall?  have you upgraded the firmware to the latest and greatest?

    Author Comment

    The sonicwall had an issue about 3 months ago and has been flaky since then. I reset to factory and it still has problems. Tech support tells me thet there is a few issues with this unit as well as some security flaws. They recoment a new box. It has the newest firmware on it (2 years old) and we never could get anything but the software that Sonicwall provided to connect via VPN. The vpn at that time was not as important as it is now. I would not be opposed to a new Sonicwall but they will not pay for remote office location boxes that cost over 200$.
    LVL 77

    Expert Comment

    by:Rob Williams
    2 questions:
    1) Is the actual LAN network ID of LAN #1 or a typo. That is a public IP and could cause some routing issues.
    2) is following diagram similar to the set up you have ? VPN from Netgear1,2,3 to SonicWall NAT'd to appropriate other Netgears 155,156 ?

          Netgear            |-----------------|                       Netgear 1  = |                     |
                                 |   SonicWall    | =  Internet =   Netgear 3
                                 | 192.168138.1 |
         Netgear         =  |____________|                       Netgear 2

    Author Comment

    The map is off just a little.

    Netgear 1        Netgear 2        Netgear 3
         :                     :                  :
                     Sonicwall (routing)

    The 3 netgears connect witrh vpn to the .155 and at the office .138 range we can see each of those netgears, but they cannot see each other. We would like to have units 1,2, and 3 be able to see each others range without creating vpn connections between them.
    LVL 77

    Accepted Solution

    To the best of my knowledge it is not possible to route one VPN to the other, i.e. => => Though I have no idea how to do it, it might be possible if you had a proper router such as a Cisco unit, but as a rule with small office/NAT routers it is not possible.
    LVL 77

    Expert Comment

    by:Rob Williams
    Thanks morsecom,

    Featured Post

    6 Surprising Benefits of Threat Intelligence

    All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

    Join & Write a Comment

    Suggested Solutions

    Overview Often, we set up VPN appliances where the connected clients are on a separate subnet and the company will have alternate internet connections and do not use this particular device as the gateway for certain servers or clients. In this case…
    Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now