Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
623
Views
0
Helpful
1
Replies

Full Mash VPN Network

krishan.saran
Level 1
Level 1

‎08-03-2011 05:41 PM - edited ‎03-04-2019 01:10 PM

Hi Team

We have 4 remote locations, all these locations are connected to Head Office via Site to site VPN tunnels, i have one tunnel to each location form head office,

HQ 10.10.1.0/24  (Cisco 851)

Site 1 10.10.2.0/24  (Cisco 861)

Site 2 10.10.4.0/24 (Cisco 861)

Site 3  192.168.10.0/24 (Linksys RV4102)

Site 4 192.168.1.0/24  (Some Linksys )

We are using these VPN tunnels for IP phones at remote locations, Every thing works fine except when some body want to make a call form any remote locations to another remote location e..g site 1 call site 2 there is no audio, to over come this problem we need to a fully mesh network, each location should be able to access each other or in other words we can say that i should be able to ping LAN IP of Site 1 form Site 2, so to get it working i need to create vpn tunnel form each location to each location, in that way we have to create 4 tunnels in each router, or we can have DMVPN, but due to mix of equipments we cant have DMVPN, because only cisco 851 supports DMVPN, not even cisco 861)

So my question to all experts is that there is any way i can do some thing in HQ, so that it can route traffic from one remote site to another site, or it can work as hub so that i dont have to create 4 vpn tunnels in each router, because of the cisco 851 and cisco 861, i can have only 5 VPN tunnels, if i will create 4 VPN tunnels in each router i will be ran out very soon,

I am attaching the Edited Running config of HQ router, Sorry i edited it due to security reasons

Labels:
111107-Aug 03 2011 edited version.txt.zip
0 Helpful
1 Reply 1

Calin C.
Level 5
Level 5

‎08-03-2011 11:31 PM 

So my question to all experts is that there is any way i can do some  thing in HQ, so that it can route traffic from one remote site to  another site

I understand correctly that for now remote sites can communicate only with HQ and no site-to-site communication is possible?

You can fix this easy when using standard equipments (e.g. Cisco) with dynamic routing (e.g. OSPF) over VPN tunnels. In your case, I believe Linksys doesn't support dynamic routing, so you have to do everything with static routing. HQ router should be aware of all remote sites subnets (doesn't matter how, but quickest way is static routing on Cisco 851) and the remote sites have a default route point to HQ through VPN tunnel.

Of course you need four tunnels from HQ, one pointing to each remote site and all site-to-site communication is done through HQ.

With your mix of equipments I don't see any other simple solution. Basically your possible solutions are limited by the mix of equipment and low end devices. Let me know if this is clear for you.

HTH,

Calin

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card