Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1061
Views
0
Helpful
4
Replies

Can I have an extended LAN over WAN?

Go to solution
cquiroz
Level 1
Level 1

‎10-04-2021 01:32 PM

Hello Community! 

 

I was wondering if I can have layer 2 traffic over a layer 3. 

 

Let me elaborate. 

 

I have a site A that has two servers working as a cluster. My client wants to replicate this cluster into another site that they have. The problem is that this cluster is using an IP address located in Site A and, when it switches, it brings the IP configured on the interfaces. Site B does not have this addressing whatsoever.  

 

These two sites connect via VPN. I know that layer 3 cannot have duplicates subnets because we can face issues of overlapping. I have little knowledge about "Extended LAN" that is basically a trick to have layer 2 traffic over layer 3 traffic, so when a servers wants to do a ping, it can reach it. 

 

SITE A - 10.10.10.0/24 - FW ===== VPN ====== FW - SITE B 10.10.10.0/24

 

What is the configuration that I should be looking into?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
cquiroz
Level 1
Level 1
In response to balaji.bandi

‎10-09-2021 09:10 AM

Hello! Thanks a lot for you help. 

 

I was able to understand a little bit more the requirement. I needed a service of Pseudowire or VPLS from the ISP so I can extend my LAN. 

 

I'm gonna  close the topic now. Thanks a lot! 

View solution in original post

0 Helpful
4 Replies 4

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎10-04-2021 04:26 PM

I go with Layer 2 Tunnel. ( what FW you have both the side ?)

 

example :

 

https://www.cisco.com/c/en/us/support/docs/ip/layer-two-tunnel-protocol-l2tp/116266-configure-l2-00.html

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
cquiroz
Level 1
Level 1
In response to balaji.bandi

‎10-06-2021 06:54 AM

Good day!

 

Thanks for your reply. I was Validating this configuration before but it got me wondering. We have a Sophos Firewall on one end and a Cisco Firepower on the other end. Is this configuration possible using third-party devices?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to cquiroz

‎10-06-2021 08:06 AM

yes This is standard requiirement -  any FW should support this feature, check the FW feature guide

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
cquiroz
Level 1
Level 1
In response to balaji.bandi

‎10-09-2021 09:10 AM

Hello! Thanks a lot for you help. 

 

I was able to understand a little bit more the requirement. I needed a service of Pseudowire or VPLS from the ISP so I can extend my LAN. 

 

I'm gonna  close the topic now. Thanks a lot! 

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card