Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 23 November 2024, 04:44:30 pm

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14258 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  [SOLVED] Join 2 subnet with OpenVPN
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: [SOLVED] Join 2 subnet with OpenVPN  (Read 15233 times)
zeddo
Full Member
***
Offline Offline

Posts: 11


« on: Wednesday 20 July 2011, 11:23:36 pm »

Hello,

first, sorry for my poor english, i hope you will understand my question.

We have today a subnet in 172.16.0.0/19, with en Endian firewall.
There is an other subnet in the society, in 192.168.40.x/24, linked to the first one by our Cisco, so we can have Internet on this subnet.

By VPN, we can access to the subnet172.16.x.x. When we use a VPN connexion, we get an IP in 172.16.2.X, declared in the Globals settings oh the Open VPN's config section.
172.16.2.x is also the DHCP zone of the subnet

I'd like to join in VPN the subnet 192.168.40.x/24. (we connect in 172.16.2.x, and then we should be abble to open UltraVNC on 192.168.40.x)
Inside the society, i can ping, share documents, use UltraVNC, etc...
When i connect in VPN (and so i get an IP in 172.16.2.x), it's not possible to ping 192.168.40.x.

Here are my questions :

1-Is this some configuration i have miss somewhere ? (if yes, what ? Smiley )
2-do you think i should reconfigure the Dynamic IP pool in Endian (in the Globals settings oh the Open VPN's config section) with another subnet (for exemple 10.0.0.x/24) and make a route from 10.0.0.x to 172.16.x.x ?

Zedd
Logged
zeddo
Full Member
***
Offline Offline

Posts: 11


« Reply #1 on: Friday 22 July 2011, 05:16:29 pm »

[SOLVE]

When you configure Network cards on the firewall, you have to put an IP address on green card, orange card, blue card and red card.
You can also put additionnal IP address in this configuration page.
We have put here for the green card the main address : 172.16.31.253/19, and a "secondary address", 192.168.40.253/24.

After that, for people who need to go on this VLAN by VPN, whe have modified their VPN account, with a static address in 192.168.40.x/24 instead off a dynamic address in 172.16.x.x/19.

Finaly, on our Cisco we had to make a trunk on the port used by green card, to allow the 2 VLAN 172.16.x.x and 192.168.40.x.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com