IP info for OpenVPN

Hey guys,

This is probably a simple question to ask but I want to be sure about this before I hand out any information.

My parent company is looking to implement OpenVPN as a solution to provide us with the ability to connect our two networks so that we can share our intranet with one another. The IT manager over there is asking me for the following:

1.    IP network range and mask
2.    IP address of your default gateway (if any)
3.    DHCP range (if used)

Now, is he referring to my internal network IP info (192.168.x.x) when he asks the above questions or my external IP info from my ISP????

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Nenad RajsicCommented:
He needs your internal network details not external
he will also need your external static IP address in order to configure your VPN tunel

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
If it should be an always-on connection you need to know each other's public IP addreses to establish a point-to-point tunnel. In that configuration both sites try to contact the other one to establish a connection.
The usual setup is a client-server mode. One site acts as server, the other as client. The client site needs to know the server public IP address. Only the client can initiate the connection

Both setups allow for a LAN-to-LAN connection, if routing is done appropriate.

sbodnarAuthor Commented:

This is all correct however is vukovarcan correct in his statement that what he is requesting is my internal IP's???
Put Your Flow Data to Work

SolarWinds® Flow Tool Bundle combines three easy-to-download, easy-to-use flow analysis tools that can help you quickly distribute, test, and configure your flow traffic.

Nenad RajsicCommented:
he needs your internal ip addresses range in order to route all the traffic properly. so the answer is he does need your internal range or you won't be able to share any of the resources across the network.

also if you are on the same prive subnet as your head office he might ask you to change your subnet as some firewalls can't route VPN traffic between sites that are on the same subnet
sbodnarAuthor Commented:

Nope there is no subnet. We are completely seperate networks on two different continents
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
As V. states, to get to the resources you both need the subnets and specific IP addresses to reach. I'm certain that this is what he's asking for (for now), I think he wants to make sure there is no overlapping or conflicting IP.

The default gateway is the device which has to know of the opposite subnet, and how to get there. Usually it will either be the OpenVPN client/server itself, or route the remote network to it. I'm wondering why he doesn't want to know which kind of device the default gateway is ...
sbodnarAuthor Commented:
so you guys are positive that the questions he is requesting are for my internal IP information not external???

Sorry to be doubtful just want to make sure before I send him this info
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
.     (|

Open in new window

Nenad RajsicCommented:
"so you guys are positive that the questions he is requesting are for my internal IP information not external???"

well he will need your internal network info. firewall info, and your public static ip address before he can do anything.

"Nope there is no subnet. We are completely separate networks on two different continents"

It doesn't matter where you are you still have your own private subnet that you use on your network. In most cases it's better if those private subnets are different when you create a site to site VPN due to firewall limitations.

SOunds like they are trying to take over and gradually take over and support your office remotely
sbodnarAuthor Commented:
wow! vukovarcan,

thanks for making me feel better about my job here!!!
Nenad RajsicCommented:
lol sorry mate i know it's off topic but just talking from my experience. as soon as outsiders try to "help" you know that there will be some changes so you can either fight them as much as possible or embrace the change and go with the flow
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.