Without fully renumbering one of your networks (certainly not an enviable task), the only method that I can think of would be to use static (one-to-one) NAT. You could use 192.168.y.z addresses and map them to your 10.x.y.z addresses (this would only be a problem if you have a HUGE number of addresses used). If you do have a great number of devices on each network, this idea might not be very feasible. Just my 2 cents... Thanks! Chris Chris Hastings, CCSA, CCSE Brainbench MVP for Internet Security http://www.brainbench.com dark dark <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Sent by: cc: firewalls-owner@List Subject: VPN s.GNAC.NET 06/04/2001 03:47 AM hi all, what is I have to networks and I want to connect them with IPSEC. LAN-to-LAN I mean. Network1--router-------------router--Network2 (10.0.0.0/8) (10.0.0.0/8) so they are in the same IP segment. I am in network 1 and I have 10.0.0.1 and I want to send packet to 10.0.0.2 (in network2) but there is 10.0.0.2 in my network too.(I mean in network1) any way to solve this problem. thanks. __________________________________________________ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.] - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
