|
||||||||
The Secure VPN Firewalls of www.apliware.ch can do this by applying NAT before the packets enter an IPSec VPN tunnel. This way the remote subnets can all be 10.1.0.0/16 but each VPN Gateway must be configured to make it seem that each remote subnet is different... For example one side will be virtually known as 10.2.0.0/16 and another would be 10.3.0.0/16 while in reality they both have the same subnet. The firewalls also have their own DNS servers for name resolution but otherwise you could set up your own name servers. Shawn -----Original Message----- From: Mark Gilbert [mailto:mgilbert at marinhd dot com] Sent: Wednesday, July 12, 2006 9:33 AM To: m0n0wall at lists dot m0n0 dot ch Subject: RE: [m0n0wall] multiple VPN tunnels with identicle subnets at other end. The feature is called: LAN-to-LAN NAT -----Original Message----- From: Mark Gilbert [mailto:mgilbert at marinhd dot com] Sent: Wednesday, July 12, 2006 12:29 AM To: m0n0wall at lists dot m0n0 dot ch Subject: Re: [m0n0wall] multiple VPN tunnels with identicle subnets at other end. I understand that M0n0wall cannot do this. I hope this is only a limitation due to the feature not being built in. I have posted a message on pfSense which shows how a Cisco VPN concentrator allows this to happen. I understand that the m0n0wall cannot do this but if someone knows of any other device which can because the Cisco vpn concentrator costs thousands of dollars. Any help would be much appreciated. http://forum.pfsense.org/index.php?topic=1598.0 Thanks, Mark --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch |