|
Title: [SOLVED] Join 2 subnet with OpenVPN Post by: zeddo on Wednesday 20 July 2011, 11:23:36 pm Hello,
first, sorry for my poor english, i hope you will understand my question. We have today a subnet in 172.16.0.0/19, with en Endian firewall. There is an other subnet in the society, in 192.168.40.x/24, linked to the first one by our Cisco, so we can have Internet on this subnet. By VPN, we can access to the subnet172.16.x.x. When we use a VPN connexion, we get an IP in 172.16.2.X, declared in the Globals settings oh the Open VPN's config section. 172.16.2.x is also the DHCP zone of the subnet I'd like to join in VPN the subnet 192.168.40.x/24. (we connect in 172.16.2.x, and then we should be abble to open UltraVNC on 192.168.40.x) Inside the society, i can ping, share documents, use UltraVNC, etc... When i connect in VPN (and so i get an IP in 172.16.2.x), it's not possible to ping 192.168.40.x. Here are my questions : 1-Is this some configuration i have miss somewhere ? (if yes, what ? :) ) 2-do you think i should reconfigure the Dynamic IP pool in Endian (in the Globals settings oh the Open VPN's config section) with another subnet (for exemple 10.0.0.x/24) and make a route from 10.0.0.x to 172.16.x.x ? Zedd Title: Re: Join 2 subnet with OpenVPN Post by: zeddo on Friday 22 July 2011, 05:16:29 pm [SOLVE]
When you configure Network cards on the firewall, you have to put an IP address on green card, orange card, blue card and red card. You can also put additionnal IP address in this configuration page. We have put here for the green card the main address : 172.16.31.253/19, and a "secondary address", 192.168.40.253/24. After that, for people who need to go on this VLAN by VPN, whe have modified their VPN account, with a static address in 192.168.40.x/24 instead off a dynamic address in 172.16.x.x/19. Finaly, on our Cisco we had to make a trunk on the port used by green card, to allow the 2 VLAN 172.16.x.x and 192.168.40.x. |