Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2570
Views
0
Helpful
3
Replies

Best Soho Router - Split Tunnel VPN

Go to solution
rburrows69
Level 1
Level 1

‎01-13-2011 07:38 PM

Hi - I'm looking for some advice for a soho router. 

Basically the key feature I'm looking for is to run , what I think is a split-tunnel VPN, so that all internal clients route default traffic out to the ISP gateway. However if traffic is destined for a list of multiple specific subnets (x.x.x.x/24  , y.y.y.y/24 etc) , then it should establish a tunnel to a single remote IPSEC/PPTP host and route traffic for those subnets via the tunnel.   To be clear those subnets (x.x.x.x and y.y.y.y) are not attached to the end of the tunnel - that is a gateway device that will route them further on.

I've been looking at the various VPN router offerings, and its not clear to me whether I can do it with a RV-042 ,  BEFVP41 or something like the SRP521W  else that I need to be able to manipulate the routing tables directly on.

As an extra note, I have complete control over the SOHO end - but merely an account to terminate the tunnel with  (its a service provider).  The idea being I use the public services for 90% of the traffic, but if the clients want to access a specific set of addresses, it will route that specific traffic via the tunnel.

Thanks in advance..

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Gareth Tomlinson
Level 1
Level 1

‎01-14-2011 09:27 AM

On current showing, don't touch the srp with a bargepole.

Adding access to additional subnets via a VPN tunnel is fairly standard, routing will be automatic if the VPN has been established, but you must ensure that

1. the VPN policy AT BOTH ENDS permits your local subnet to access these networks

2. Your subnet does not conflict with other subnets or routes that may be in use on those remote networks

3. Assuming you are OK so far, the remote subnets will need to have a route added on their default gateway to point to your subnet via the intermediate network(s)

Good luck!

View solution in original post

0 Helpful

Go to solution
Gareth Tomlinson
Level 1
Level 1
In response to rburrows69

‎01-14-2011 10:40 AM

No experience with them I'm afraid. I'm considering going back

to the 800 series routers, which I know at least work correctly.

Best of luck

Gareth

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Gareth Tomlinson
Level 1
Level 1

‎01-14-2011 09:27 AM

On current showing, don't touch the srp with a bargepole.

Adding access to additional subnets via a VPN tunnel is fairly standard, routing will be automatic if the VPN has been established, but you must ensure that

1. the VPN policy AT BOTH ENDS permits your local subnet to access these networks

2. Your subnet does not conflict with other subnets or routes that may be in use on those remote networks

3. Assuming you are OK so far, the remote subnets will need to have a route added on their default gateway to point to your subnet via the intermediate network(s)

Good luck!

0 Helpful

Go to solution
rburrows69
Level 1
Level 1
In response to Gareth Tomlinson

‎01-14-2011 10:37 AM

Thanks Gareth.

Any better feelings about the RVxx series?  I'm consider the RVS4000 to be the public facing connection and handle the VPN scenario I described.

My only other option is DD-WRT on some lower-grade router, and that seems to be a bit hit and miss...

Thanks again

0 Helpful

Go to solution
Gareth Tomlinson
Level 1
Level 1
In response to rburrows69

‎01-14-2011 10:40 AM

No experience with them I'm afraid. I'm considering going back

to the 800 series routers, which I know at least work correctly.

Best of luck

Gareth

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents