cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
622
Views
0
Helpful
5
Replies

A Basic VPN question that I couldn’t find an answer to

Tarekeid1_2
Level 1
Level 1

I came across this network and I’m interested to know how the VPN is functioning, I googled a lot a couldn’t find an answer so I would really appreciate your feedback

------------ Corrected --------------

I came across this network and I’m interested to know how the VPN is functioning, I googled a lot and couldn’t find an answer so I would really appreciate your feedback:

  • Well I have 3 sites the HQ router (Cisco 1841 Integrated Services Router) is connected to two branch routers (Cisco 871 Integrated Services Router) through VPN in which VoIP and Data access is provided by the HQ to the other sites.
  • What is baffling me is that both of the branch sites have regular SOHO ADSL with a non public IP assigned by the ISP that is NAT is implemented and no static IPs are assigned to the branch routers or DSL modems .

My question is how can site-to-site VPN operate with only one Public static IP being in-use?

Or are the connected routers, actually acting as VPN clients, in this case how this is possible? That is can a router connect to another router, the same way a mobile user connects through the Cisco VPN Client software.

PS: the HQ is an IT services company that provided the VPN service to the 2 sites (A small business) I will need to replicate the scenario since the 2 sites no longer want to use a third party for the service and are not expecting to get real IPs since the prior solution was working fine with the only real IP being assigned to the HQ router, the third site would be eliminated so the new topology would be point-to-point. 

1 Accepted Solution

Accepted Solutions

Hi,

I don't understand what you're asking. Please explain.

Federico.

View solution in original post

5 Replies 5

Hi,

I don't understand what you're asking. Please explain.

Federico.

I'm sorry but I'm having issues with the forum maybe its because I'm using Firefox 4 beta 7 since the browser already crashed several times when posting, Ill repost from another browser:

I came across this network and I’m interested to know how the VPN is functioning, I googled a lot a couldn’t find an answer so I would really appreciate your feedback:

Well I have 3 sites the HQ router (Cisco 1841 Integrated Services Router) is connected to two branch routers (Cisco 871 Integrated Services Router) through VPN in which VoIP and Data access is provided by the HQ to the other sites.

What is baffling me is that both of the branch sites have regular SOHO ADSL with a non public IP assigned by the ISP that is NAT is implemented and no static IPs are assigned to the branch routers or DSL modems .

My question is how can site-to-site VPN operate with only one Public static IP being in-use?

Or are the connected routers, actually acting as VPN clients, in this case how this is possible? That is can a router connect to another router, the same way a mobile user connects through the Cisco VPN Client software.

PS: the HQ is an IT services company that provided the VPN service to the 2 sites (A small business) I will need to replicate the scenario since the 2 sites no longer want to use a third party for the service and are not expecting to get real IPs since the prior solution was working fine with the only real IP being assigned to the HQ router, the third site would be eliminated so the new topology would be point-to-point. 

There are three ways I'm aware to do this:

1. Configure a static-to-dynamic IPsec VPN L2L tunnel (one side has a dynamic IP).

2. Configure EzVPN where one device accepts the VPN and the dynamic side acts as a client

3. Configure DDNS to set up the tunnels.

Federico.

Thanks a lot Federico, at least I have something to start from now

Best regards and I’m sorry for my n00biness 

No problem.

If you encounter any problem let us know.

Federico.