cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
548
Views
10
Helpful
1
Replies

Site to Site Connectivity over VPN - Subnet overlapping

Hello experts,

@Rob Ingram  @balaji.bandi  @Nithin Eluvathingal  @Richard Burts  @Joseph W. Doherty 

 

we got HQ- 172.110.10.x/24 , siteA- 172.110.20.x/24  connected over IPSEC VPN and working great.

 

Now we got siteB - 172.110.20.x/24 which is same subnet we got at site A. 

 

I have to connect siteB to HQ over IPSEC VPN tunnel without disturbing its connectivity to siteA. Please suggest how I can accomplish this ?

 

I want to setup connectivity without changing subnet at edge site as it got lot of static IPs.

 

Thanks 

1 Reply 1

@LovejitSingh130013 

Cisco have a guide for this, you'll need to use NAT to translate the traffic. Check out the section of the guide called "Hub and Spoke Topology with Overlapping Spokes"

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-firewalls/211275-Configuration-Example-of-ASA-VPN-with-Ov.html

 

Personally, I'd recommending eventually changing the subnets at one of the remote sites.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: