Solved

VPN Tunnels into multiple locations while protecting local network

Posted on 2008-10-30
6
257 Views
Last Modified: 2012-05-05
My company has around 20 clients that all have Linksys RV082 or RV016 routers in place. Our office has the same router as well (rv082).  We use these routers to connect our clients multiple offices via VPN Tunnels. We support all of the workstations at these locations and I would like to know, if possible, how to connect to all of these locations via our router in the office without giving them access to our internal network. I can create the Tunnels without issue, but then our local LAN is accessible.

Currently we have to VPN into each site using a software VPN client, which is becoming a bit of a pain. I want to be able to be connected to each location at all times in order to remote into their machines, yet I don't want them to be able to see anything on our side of the network.

Is this possible with the current equipment? Any thoughts or suggestions are welcome.
0
Comment
Question by:world-net
  • 4
  • 2
6 Comments
 
LVL 15

Expert Comment

by:bkepford
Comment Utility
It's possible but you have to allow at least one PC to be accessed. What I have done is setup an always on LAN to LAN tunnel between my PC and their server and then RDP into their server where I then RDP into what ever PC I need to.
0
 

Author Comment

by:world-net
Comment Utility
This would work but if I could do it on a broader setup. It would be acceptable to give all of our techs the ability to be connected and for them to see the tech machines, but not the rest of the lan. Any thoughts on how this might be completed?
0
 
LVL 15

Accepted Solution

by:
bkepford earned 250 total points
Comment Utility
In the LAN to LAN setup options on a Linksys just specify only the Tech PCs for instance if you give your techs reservations in your DHCP server  for the last 32 (-2) addresses (225-254).
In your Linksys you will have to specify local network and remote network. Say if your IP range is 192.168.100.0 255.255.255.0 your local network would be 192.168.100.224 255.255.255.224.
Rember at the customer sites it would be the opposite 192.168.100.224 255.255.255.224 would be the remote network.
Then
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 
LVL 15

Expert Comment

by:bkepford
Comment Utility
oops didn't finish. Then you have to make sure your router knows to how to get to the other customer networks if the VPN device is not the router.
0
 

Author Comment

by:world-net
Comment Utility
Thanks
0
 
LVL 15

Expert Comment

by:bkepford
Comment Utility
Did you get this taken care of or do you need any further assistance?
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now