Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1413
Views
0
Helpful
4
Replies

Two RV016, gateway to gateway, routing over VPN

Go to solution
thjalfi79
Level 1
Level 1

ā€Ž03-08-2011 09:36 PM

Hi,

I have two RV016, I have a gateway to gateway vpn  connection between them both and i can ping computers on both sides but i can't reach the thrid lan (10.0.0.0/255.0.0.0). I can reach this network from routerA but not from routerB.

My network typology:

network.jpeg

Configuration of routers (see attachments)

How should I configure the static routes on router B?

I've tried to do but it doesn't work (see RouterB_routing.jpg)

Can someone help me?

Thanks.

Labels:
Preview file
43 KB
Preview file
56 KB
Preview file
62 KB
Preview file
37 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
David Carr
Level 6
Level 6

ā€Ž03-09-2011 05:57 AM

Krzysztof,


Unfortunately the rv016 will not allow you to do static routes through the vpn tunnel as it don't have an interface ipsec in the static routes section of the router.  This is by design, the router will only recognize the default lan setup in the vpn tunnel.


You would have to have enterprise routers to do the static routes through the ipsec tunnel.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
David Carr
Level 6
Level 6

ā€Ž03-09-2011 05:57 AM

Krzysztof,


Unfortunately the rv016 will not allow you to do static routes through the vpn tunnel as it don't have an interface ipsec in the static routes section of the router.  This is by design, the router will only recognize the default lan setup in the vpn tunnel.


You would have to have enterprise routers to do the static routes through the ipsec tunnel.

0 Helpful

Go to solution
thjalfi79
Level 1
Level 1
In response to David Carr

ā€Ž03-09-2011 07:00 AM

Hi David,

could you recommend me a router that is capable of doing this?

Thanks.

0 Helpful

Go to solution
David Carr
Level 6
Level 6
In response to thjalfi79

ā€Ž03-09-2011 08:54 AM

Pretty much any enterprise router will allow you to do static routes through the ipsec interface.


I apologize I don't know the ins and outs of our enterprise devices yet to really recommend something.

0 Helpful

Go to solution
Net_Connect473
Level 1
Level 1
In response to David Carr

ā€Ž03-10-2011 07:10 PM

I recently had a network of RV082's and RV016's configured with static routes across gateway-to-gateway VPN's to enable remote locations to reach a database server inside of a business partner's network that was directly connected to the primary network (see diagram).

Here's what I had to do:

1.  Add the additional Network and subnets to the multiple subnet feature on the devices where appropriate to enable multiple network access across the devices.  For example:  192.168.1.0/24, etc.

2.  Create static routes to and from all of the devices, substitute the LAN interface for the IPSEC interface.  BTW, this is pretty standard for how linux and some of the unixes do routing over a VPN.

3.  You have to make sure that you use different private IP network combinations for the core network versus the remote sites.  For example use 10.10.x.x/24 for the core and 192.168.x.x/24 for the remotes or vice versa.

See the attached drawing.  Hopefully this helps you.

Preview file
48 KB
0 Helpful
Customers Also Viewed These Support Documents