hub and spoke vpn topology with cisco routers
Posted on 2006-07-19
I have a question:
I have 3 separate locations.
Site A has a 1800 router that has a static public ip and a 192.168.10.x address range on the inside network.
Site B has an 800 series router which has 10.2.0.x internal range and the router has a dynamic public ip address.
site C has an 800 series router which has 10.3.0.x internal range and the router has a dynamic public ip address.
All locations use static private defined ip addresses for all workstations and nat is used for translation from public to private. In addition:
Site A has a nat transalation for an additional public ip address to an internal private ip address for email (smtp - port 25) An internal DNS server exists (whereby all machines internal are set to resolve from, the dns server forwards queries to two public dns servers for unanswered queries.)
All locations are connected by ADSL.
My requirement is to establish site to site vpn so site b and c can access resources at site A (Exchange and domain controllers)
Site A needs to access the workstations in site B and site C.
Additionally I need to be able to connect to site A using the cisco vpn client to access internal servers etc and it would be good to access site B and C through site A.
So I need somewhat full routing between Site A and the rest of the sites and for the Cisco VPN client :)
Please suggest how I should set this up. as I am clueless.