I'm taking for granted that you are using nat to go out and have something
like this (along with the ipsec config)
router A
ip nat inside source route-map nonat pool branch overload
access-list 130 deny ip xx.xx.xx (local ethernet) xx.xx.xx (wildcard)
xx.xx.xx.xx (remote lan) xx.xx.xx.xx (wildcard)
access-list 130 permit ip xx.xx.xx (local ethernet) xx.xx.xx (wildcard) any
route-map nonat permit 10
match ip address 130
Router B would be the hub
router c would be similar to router a
add static routes on each router for the remote local lan pointing to the
external ip of router b
add to acl 130 to deny the remote lan
""Jacek Malinowski"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have the Ipsec connection between 2 LAN's:
> A LAN 10.10.10.0 /24
> |
> router A 1750 195.111.111.1 /30
> |
> Internet
> |
> router B 1750 200.230.20.1 /30
> |
> B LAN 10.10.50.0
>
> My access-list are:
> Router A
> access-list 110 permit ip 10.10.10.0 0.0.0.255 10.10.50.0 0.0.0.255
> Router B
> access-list 110 permit ip 10.10.50.0 0.0.0.255 10.10.10.0 0.0.0.255
> Configuration Ipsec is ok, both LAN can ping other side.
> But I have another LAN C and another router C :
> |
> router B 1750
> |
> B LAN 10.10.50.0
> |
> | 10.10.50.1
> router C 3640
> | 10.10.30.1
> |
> LAN C 10.10.30.0/24
>
> I want to reach LAN C from LAN A.
> What should I do to reach this LAN C from LAN A ?
> Help me to resolve this problem !!!
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=2037&t=1622
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
