Folks, I would like to get some clarification on a setup I need. Basically I have a server1 in one physical location and bmu in a remote location. The bmu is basically a linux server configured as a router which controls access to/from our network. So very basically in production mode looks like this without the tunnel hardware: Server1(eth0)----LAN-----BMU----Edge.
I need server1 to appear on the same subnet as the WAN side of the BMU. My thought was to build a pptp/eoip tunnel using eth1 on server1 (need to keep eth0 as is) to a mtk there then through the lan to a mtk at the bmu location with eth2 of the mtk LAN side of the bmu and eth1 on the wan side of the bmu. I have built pptp servers on mtk and use those to access lans setting the IP addresses in pptp the same subnet as the network I am wanting access to. I have read through the manual on eoip but I have not used eoip and have some questions mainly about ip addressing and traffic. I assume this will operate like a normal pptp client to server connection that I have used i.e. laptop to mtk pptp server except the tunnel is established between routers. Traffic from server1 meant for the remote subnet will travel via the pptp tunnel (out eth1 of the server and visa versa)? Any other traffic from server1 will travel the normal routes (out eth0 of the server)? The example I have seen bridges the pptp interfaces with the eoip. Will this then not allow the above normal routing (I wouldn't think so since it is pptp)? I ask this because the bmu end is set up in a test config so that my normal internet traffic can continue: LAN | switch---------------edge LAN WAN | | BMU--mtk In this test config I would build the tunnel between between the mtk router off eth1 of server1 and the WAN interface of the mtk at the bmu changing that later to fit the production config shown above. Since the eoip interfaces are bridged to the pptp interfaces and the ip addresses of the pptp are in the same subnet of the wan side of the bmu, I would put a bmu wan side subnet ip address on eth1 of the server? Sounds right to me but right hasn't always been the way I thought it should be. Thanks for the help, Terri Kelley Network Engineer 254-697-6710 This email message is intended only for the named recipient(s) above, and may contain, together with any attachment(s), confidential information that is privileged. If you are not the intended recipient, be advised that you have received this email in error and that any use, dissemination, forwarding, printing, copying or distribution of this message and any attachment(s) is strictly prohibited. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.butchevans.com/pipermail/mikrotik/attachments/20080521/bee48e2b/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: LogoHzlsigtest.jpg Type: image/jpeg Size: 2158 bytes Desc: not available Url : http://www.butchevans.com/pipermail/mikrotik/attachments/20080521/bee48e2b/attachment.jpg
