Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
265
Views
4
Helpful
1
Replies

IPSec and multiple subnets

gcumarasamy
Beginner
Beginner

‎10-04-2002 07:29 AM - edited ‎02-21-2020 12:06 PM

Hi:

I have a LAN environment with 2 different IP subnets (172.16.0.0/16 and 172.170.0.0/16). My IPSec tunnel is configured for 172.16.0.0 subnet. If a remote users connects to subnet 172.16.0.0/16 through IPSec tunnel they can not access the 172.17.0.0/16 subnet. My understanding is only one subnet can be configured for an IKE tunnel. Is there any other way of allowing the remote users to access the 172.17.0.0 subnet, when they connect using the IPSec tunnel for 172.16.0.0 subnet??

Thanks in advance for your help.

Labels:
0 Helpful
1 Reply 1

afakhan
Enthusiast
Enthusiast

‎10-05-2002 12:34 PM

Hi,

You can have your remote users to be able to access multiple subnets behind your Router/PIX/VPN3K, just make sure that if you have split tunneling configured they are included in that, in case of ALL tunneling its not an issue at all, offcourse make sure that users on 172.16/16 and 172.17/16, can route traffic back to pool of IPs that you are assigning to your remote access VPN users!

Let me know, if you have any further Qs.

Thanks,

Afaq