As long as the Mumbai network equipment (at minimum the Mumbai vpn
gateway) has been given the route to 172.16.12.0 as through the Mumbai
vpn gateway, and the Mumbai vpn gateway is properly configured to send
packets going to 172.16.12.0 by tunneling them to the New York vpn
gateway, you don't need public addresses and NATing to the private
ones. The only public addresses needed are the two external/public
interfaces of the vpn gateways, and those two addresses are only needed
by the vpn gateways to set up the tunnels.
Michael
> Swamy Patil wrote:
>
> Hi everybody,
>
> I am having a little doubt about Gateway-to-gateway VPN :
> ------------------------------------------------------------------
> Consider the case of a two offices one in Mumbai and the one in
> Newyork:
>
> The IP addressing for the Mumbai Office is 192.168.61.0
>
> Thre IP addressing for the Newyork Office is 172.16.12.0
>
>
> Consider 2 gateways protecting the respective offices at Mumbai and
> Newyork are configured for gateway to gateway VPN.
>
> Consider an FTP server at the newyork with the IP address
> 172.16.12.200 (FTP server not meant for public access and is only for
> Newyork and Mumbai Offices).
>
>
> Now with the VPN between the two Offices ,is it possible for the
> desktop machine(192.168.61.40) at the mumbai office have the FTP to
> the Newyork FTP server without NAT or redirection at the Newyork
> gateway.
>
>
> i.e., if the client at mumbai types" FTP 172.16.12.200" and presses
> Enter will he be able to get the access to the FTP server assuming he
> has the full access permission to the FTP Server.
>
>
> Conclusion:
>
> Does the FTP server at the Newyork has to be NATted to the Valid IP
> or not required.
>
>
> Please give some suggestions on this
>
>
> Thanks in advance
>
> Swamy Patil
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
