The 3Com documentation is pretty reasonable in describing how the tunnel server assigns addresses to the incoming VPN connections. They take pains to make sure that you don't overlap the VPN tunnel addresses and the DHCP addresses that are served to the local systems. At the client end, packets are directed to the tunnel server end automatically once the tunnel is established. So for example, if I had a local 192.168.1.100 and a remote 192.168.1.100, the tunnel client makes sure the traffic is sent to the distant (tunnel server) connection.
-Alex P.S. One thing the 3Com box doesn't seem to support is showing you the addresses it has assigned to incoming VPN clients. I can easily see them from the client side but not as easily figure them out on the gateway side. The 3Com box does let you see that there are VPN tunnels running and who is logged in but doesn't give their IP addresses. ----- Original Message ----- From: "Ben Boulanger" <[EMAIL PROTECTED]> To: "Hewitt Tech" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Tuesday, April 01, 2003 9:20 AM Subject: Re: Dumb networking question... On Mon, 31 Mar 2003, Hewitt Tech wrote: > My question is "Do I have the gateway addresses set correctly. The only > thing connecting the two hubs is the CAT5 cable. My assumption is that > setting the first device's gateway address to the device 2's static WAN > address and vice-versa should allow the two hubs to communicate properly. You're absolutely correct. Known hosts on the local network will route correctly (and traffic passed to it from the other "network" will route correctly). It shouldn't create a routing loop unless you try to get to an address that's not known on either network.. in which case, the TTL of the packet will eventually expire. For testing, this is fine.. You will need to specify the other box as the default route on the opposing box, as you've described. You may want to instead specify static routes, rather than default routes.. .but it's not a huge deal. Ben -- Without rice, even the cleverest housewife cannot cook. _______________________________________________ gnhlug-discuss mailing list [EMAIL PROTECTED] http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
