Dennis,
Both locations are on my wireless internet. At each location is a router
with a 10.0.100.XX IP for the wan side. Thats what I use with my mikrotik
router and I limit the bandwidth with the mikrotik. On the lan side of his
home it is set to dhcp. I do not know for sure what the inside of his office
is. He has never had me work on that network. His network people are the
ones confusing me. I do not want to be jumping thru hoops for them trying to
do things I do not need to so they can do there job(setup his vpn). They
were telling me that he was able to connect one way but not the other or
something like that. So if they know what there doing and they can change
the lan side of each router than I should not have to do anything special
for them to be able to create this vpn link.
Thanks everyone for helping me understand a little better.
Jerry
----- Original Message -----
From: "Dennis Burgess" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 09, 2003 12:17 PM
Subject: Re: [smartBridges] VPN Question.
> Jerry,
>
> Can you give us some info on his networks at both locations. YOu said
both
> loations have networks of 10.0.100.xx. Do they both have a Broadband
> router in place?
>
> The problem that I can see right away is that you can't have two networks
> with the same IPs and try to VPN between them. Check this.
>
> My ip is 10.0.100.1
> my VPN servers ip address at my business is 10.0.100.2
>
> THe prob is that when you hit your VPN software and tell it to connect,
the
> frist thing that it tryes to do is get to the IP of 10.0.100.2. Based on
> your IP, assuming as subnet mask of 255.255.255.0, it is on the same
> network. No routing is required. So the request never even goes out the
> router. This is a known issue with VPN and well, I do belive it is
deisnged
> to work that way.
>
> He would first off need to change his internal network at his home ot
> 10.0.101.xxx. This would allow him to go out his router looking for that
> 10.0.100.2.
>
> My assumption is that he either can't connect, or once connected he can't
do
> anything.
>
> Dennis
>
> ----- Original Message -----
> From: "Jerry Carter" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Wednesday, July 09, 2003 11:55 AM
> Subject: Re: [smartBridges] VPN Question.
>
>
> > well the reason I enabled client to client comm was I thought it would
> just
> > go to his office instead of send the information all the way back to my
> > office and then back out to him. Am I wrong in thinking this? I was
> thinking
> > the one radio does this and saves my bandwidth the rest of the way.
> >
> > ----- Original Message -----
> > From: "Kevin Summers" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Wednesday, July 09, 2003 11:23 AM
> > Subject: RE: [smartBridges] VPN Question.
> >
> >
> > >
> > > You shouldn't have to enable client-to-client communication on
> > > the AP if they are using real world IPs. The traffic will go to
> > > the MikroTik and then route back to the appropriate IP. (which
> > > just happens to be on the same AP) They may indeed need to be
> > > on different subnets though. I've never tested that.
> > >
> > > Kevin Summers
> > > KISTech Internet Services Inc.
> > > www.kistech.com
> > > -----Original Message-----
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED] Behalf Of Jerry Carter
> > > Sent: Tuesday, July 08, 2003 9:33 PM
> > > To: [EMAIL PROTECTED]
> > > Subject: [smartBridges] VPN Question.
> > >
> > >
> > > Ok I have to say I have not set one of these up yet. I do have a
client
> > that
> > > has there own special network guy telling me that they have to have a
> real
> > > world IP that is not routed? I run nat on a mikrotik router and route
> > static
> > > Ip's to there internal IP if they need one. The client is connecting
to
> an
> > > appo about 1 mile away from his office that is also connected to the
> same
> > > appo. They both have 10.0.100.XX IP's(with real world IP's routed to
> > them).
> > > I'm sure the firewalls mike make a difference whether this is possible
> but
> > > do I need to do anything but make sure that client to client
> communication
> > > is allowed on the ap?
> > >
> > > Jerry
> > >
> > > The PART-15.ORG smartBridges Discussion List
> > > To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe
> > smartBridges <yournickname>
> > > To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe
> > smartBridges)
> > > Archives: http://archives.part-15.org
> >
> > The PART-15.ORG smartBridges Discussion List
> > To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe
> smartBridges <yournickname>
> > To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe
> smartBridges)
> > Archives: http://archives.part-15.org
> >
>
>
> The PART-15.ORG smartBridges Discussion List
> To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe
smartBridges <yournickname>
> To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe
smartBridges)
> Archives: http://archives.part-15.org
The PART-15.ORG smartBridges Discussion List
To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe smartBridges
<yournickname>
To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe smartBridges)
Archives: http://archives.part-15.org
