IP addressing on VPN

Been tasked with installing a time clock at a new facility that needs to connect back to server at main facikity. I have a VPN tunnel up and running and can ping through the tunnel to the server that will control the time clock. The main facility is a 192.168.1.X and the clock is at the facility with 192.168.2.X.
Do I give the clock a 192.168.1.X address??
LVL 2
warsawtechConsultantAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

bigeven2002Commented:
Hello,
I believe the time clock should be on the 2.x network.  Having it on the 1.x network would create additional broadcast traffic through the VPN.  Since you can already ping the 2.x network, all that should need to be done at that point is to make sure the ports needed to communicate with the time clock are allowed through the VPN and that the VPN itself has a keep-alive measure to prevent auto-disconnect.

It may also be worthwhile to look into WAN routing with direct connection DSU/CSU since a mere VPN connection is more prone to connection instability.
1
QlemoBatchelor, Developer and EE Topic AdvisorCommented:
Keep it at the correct local IP (2.x), make sure that routing between both network works, and the necessary ports are allowed for the clock.
1

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
JohnBusiness Consultant (Owner)Commented:
Also makes sure the tunnel settings are set to subnet at each end, not just one IP address.
1
Top Threats of Q1 & How to Defend Against Them

WEBINAR: Join WatchGuard CTO and our Threat Research Team on Aug. 2nd to hear the findings from our Q1 Internet Security Report! Learn more about the top threats detected in the first quarter and how you can defend your business against them!

warsawtechConsultantAuthor Commented:
I'll be onsite tomorrow to configure time clock and will report back the. Thanks for the comment John I did at least do that right and set the tunnel to subnet.
0
Ian ArakelNetwork Lead: Data and SecurityCommented:
Hi there,

If the clock is in 192.168.2.x facility, avoid assigning an IP in the 1.x range.

Ensure that the interesting traffic defined in the tunnel is matching as per requirement.
0
warsawtechConsultantAuthor Commented:
Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.