Solved

Draytek 2820 VPN Configuration

Posted on 2010-08-24
1
821 Views
Last Modified: 2012-05-10
Hi, I've got a couple of 2820s spread across the internet.

I have one main site which has LAN to LAN pptp VPN configured (Dial in and Out) for all the sites. Let's call the main site Site HQ.

So it's configured from

Site HQ <--> Site A
Site HQ <--> Site B
Site HQ <--> Site C

How do I configure the routers so that traffic goes from Site C to Site A through Site HQ? And vice versa?

I was playing with the routes but it didn't work out so well.
0
Comment
Question by:binele
1 Comment
 
LVL 3

Accepted Solution

by:
kevdines earned 500 total points
ID: 33509161
You were on the right track - the easiest way in a network this size is with static routes. Assuming that clients at HQ can ping clients at any of the remote locations, and that the clients at the remote sites can already ping resources at HQ, you just need to set some static routes either on the Drayteks at the remote sites.

If the sites have the following example subnets:

HQ Draytek: 192.168.0.254
HQ: 192.168.0.x
SiteA: 192.168.1.x
SiteB: 192.168.2.x
SiteC: 192.168.3.x

On the Draytek at SiteA you will need the following static routes:
To route to SiteB
Destination IP Address: 192.168.2.0
Subnet Mask: 255.255.255.0
Gateway IP Address: 192.168.0.254

To route to SiteC
Destination IP Address: 192.168.3.0
Subnet Mask: 255.255.255.0
Gateway IP Address: 192.168.0.254

In order for ping to work, you also need the corresponding static routes configured at the other end (otherwise the packet will  get there, but the router at SiteB/SiteC will not know where to send the reply back to and it will look broken, even though the packet arrived at it's destination).

You'll need to change my examples to the correct Destination IP Addresses and Subnets for your network, but provided that the HQ->SiteX and SiteX->HQ routing is working correctly, all you need to do is to tell all traffic for other remote networks to go via the LAN IP of the HQ router.

Hope this helps,

Kev
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Best Quad port Gigabit Network card for Hyper-V 2 74
cradle point vpn to sonicwall 5 48
Add Mac address reservation to Sonicwall TZ 210 router 1 45
WAN Site Edge Routers 15 50
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now