Re: How to access another VLAN via my gateway to gateway connection

Huggiesbear · ‎05-04-2018

just wondering if anyone wiser than me can help. I have setup my gateway to gateway connection ok and I can access each side.

Office 192.168.1.0

Remote 192.168.2.0

in the office I have now created two more VLAN networks on the RV320

192.168.10.0

192.168.20.0

I am trying to set it up so that the remote site can access all the networks (more for Remote Desktop to the servers)

i can see in the Gw to Gw setup, the RV320 asks for a subnet of each site and I can’t seem to add the new networks to this section. I have also read about using the Advanced Routing option. The VLAN are created and have enable inter VLAN access. When I am in the office I can access all the networks but not over the GW to GW connection. Can anyone help

Seb Rupik · ‎05-08-2018

Hi there,

With any VPN setup you will typically require an ACL which is used to identify "interesting" traffic (the encryption domain) destined for the remote end which will be sent via the VPN.

Looking at the RV320 configure guides it would appear that you can only define a single subnet in this ACL. The issue you have is the 192.168.2.0 subnet lies between 192.168.1.0 and 192.168.10.0 and 192.168.20.0.

Due to this limitation you need to ensure each site is allocated a contiguous address block (this would be good practice TBH) ,eg:

Office : 192.168.0.0/20 -> 192.168.0.0 - 192.168.15.254

Remote: 192.168.16.0/20 -> 192.168.16.0 - 192.168.31.254

Obviously this will require to re-subnet both sites.

Alternatively just configure static routes on the remote site RV320 with the next-hop address set as SVI IP for 192.168.1.0 subnet.

cheers,

Seb.