MattLight
asked on
Two Routers, One Network
i currently have a network in place with a Router running ClearOS, unfortunately it doesn't support a VPN solution or you have to pay for that module. i do however have a Cisco RV042 router available from a prior network configuration that does support VPN's.
I want to keep the ClearOS box (made from an older PC with two NIC's) because it provides bandwidth throttling rules to all dhcp addresses, and can handle many clients than some household linksys. i have about 130 dhcp users and static addresses for all my switches.
what i want to do:
i have another site set up the same way and they too have an RV042 Router from the previous network configs. i would like to do a site to site VPN but create the VPN network on a different VLAN (VLAN 2, 192.168.x.x ).
im not quite sure how to make this happen since ive never done something like this before. as far as configuring the switches for Vlan2, its not a problem. Just the network topology as well as if there is a better way to do this is my question.
thanks everyone!
I want to keep the ClearOS box (made from an older PC with two NIC's) because it provides bandwidth throttling rules to all dhcp addresses, and can handle many clients than some household linksys. i have about 130 dhcp users and static addresses for all my switches.
what i want to do:
i have another site set up the same way and they too have an RV042 Router from the previous network configs. i would like to do a site to site VPN but create the VPN network on a different VLAN (VLAN 2, 192.168.x.x ).
im not quite sure how to make this happen since ive never done something like this before. as far as configuring the switches for Vlan2, its not a problem. Just the network topology as well as if there is a better way to do this is my question.
thanks everyone!
Last Comment
For your RV042 to work site to site VPN, it needs to have a static external IP address. So if you only have one IP serving your business, then the RV042 needs to be the main router. You can hook up the ClearOS to a LAN port on the RV042, but I don't know how it will help
When you get the RV042 boxes installed, then use the VPN tab to set up a connection between the two boxes.
.... Thinkpads_User
When you get the RV042 boxes installed, then use the VPN tab to set up a connection between the two boxes.
.... Thinkpads_User
ASKER
@thinkpads_user-
so, theoretically, have the RV042 set as example: 192.168.1.1, turn off dhcp, and set the ClearOS box to 192.168.1.2, dhcp enabled, set the gateway to the .1 address?
in the interface for ClearOS it has three operating modes:
gateway mode
standalone
standalone - no firewall
i understand that i would not want it on gateway mode since the RV042 would be the gateway, but would it be wise to put the ClearOS Box in standalone- no firewall since the Rv042 would be providing the Firewall?
also, once the vpn tunnel is established and the ClearOS box is handing out the IP addresses would both networks be able to talk with each other if both site A and Site B are on a 192.168.1.xxx address?
Still flipping through my Net+ Book trying to read up on this so i could grasp how it works as this is my first practical application experience. thanks for bearing with me :-)
so, theoretically, have the RV042 set as example: 192.168.1.1, turn off dhcp, and set the ClearOS box to 192.168.1.2, dhcp enabled, set the gateway to the .1 address?
in the interface for ClearOS it has three operating modes:
gateway mode
standalone
standalone - no firewall
i understand that i would not want it on gateway mode since the RV042 would be the gateway, but would it be wise to put the ClearOS Box in standalone- no firewall since the Rv042 would be providing the Firewall?
also, once the vpn tunnel is established and the ClearOS box is handing out the IP addresses would both networks be able to talk with each other if both site A and Site B are on a 192.168.1.xxx address?
Still flipping through my Net+ Book trying to read up on this so i could grasp how it works as this is my first practical application experience. thanks for bearing with me :-)
It would probably be a good idea to get the RV042 routers connected the way you want without using ClearOS.
Then see if ClearOS can be added. You may not need it.
.... Thinkpads_User
Then see if ClearOS can be added. You may not need it.
.... Thinkpads_User
ASKER
sorry about not updating this post sooner, i found that our ClearOS Router was not previously registered ( previous IT employee ) and once registered, found i had a ton of updates and patches to do. once those were in place, i was able to download a VPN module (free) for ClearOS. this will resolve the issue and eliminate the use of the RV042.
however it was good to look into how a site could be set up with more than one router on a LAN segment. Or i may have to implement this router later on as users increase at our site to accommodate for the amount of traffic being sent over the LAN segment.
any comments?
however it was good to look into how a site could be set up with more than one router on a LAN segment. Or i may have to implement this router later on as users increase at our site to accommodate for the amount of traffic being sent over the LAN segment.
any comments?
If your ClearOS can make the tunnel to the other site, I would use it. I use my own RV042 to connect to Juniper Netscreen clients. There is nothing to say that the ends must be the same product. The tunnels need to be configured the same at each end but that's all.
... Thinkpads_User
... Thinkpads_User
ASKER
@Thinkpads_User
sorry about the late response, cleaning up from the previous IT Manager. anywho, been doing some reading up on VPN's ect. and nothing really says how the IP ranges at each site work. if you are connecting two sites via VPN, one site with a IP range of 192.168.1-5.xxx and the other site with an IP range of 192.169.1-5.xxx. since you have a VPN tunnel build from your gateway to "Answering side", wouldn't you have to accommodate for all the IP's from the "calling side" since theoretically everyone will be on the same network?
or will each site still be able to ping locally as well as ping the other sites servers via the tunnel?
sorry about the late response, cleaning up from the previous IT Manager. anywho, been doing some reading up on VPN's ect. and nothing really says how the IP ranges at each site work. if you are connecting two sites via VPN, one site with a IP range of 192.168.1-5.xxx and the other site with an IP range of 192.169.1-5.xxx. since you have a VPN tunnel build from your gateway to "Answering side", wouldn't you have to accommodate for all the IP's from the "calling side" since theoretically everyone will be on the same network?
or will each site still be able to ping locally as well as ping the other sites servers via the tunnel?
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Thank you. I was happy to help and good luck going forward with ClearOS.
.... Thinkpads_User
.... Thinkpads_User
Routers
A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.
49K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
Not sure there is a benefit to the extra VLAN.