Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Shaun E on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN to remote site with same IP schema 1

Status
Not open for further replies.
kwilsokl

kwilsokl

MIS
Apr 21, 2005
15
US
We have a Sonic 4060 firewall. I have been tasked with allowing a remote company to connect to our site to run an application via VPN. The problem is that the other company has the same IP schema as us.


How do I setup a VPN tunnel so when they open IE and try to browse to 10.1.1.X the IP of the server they need access to .that it is not intercepted by their network an rerouted to one of their machines with the same IP address.


Would a site to site VPN work?


Any ideas would be great

Thanks
 
Sort by date Sort by votes
Maybe you could have them connect to an optinal port that is using a differnet subnet?
 
Upvote 0 Downvote
That is where I get confused, do you mean a port on their end or mine. It seems like there would need to be a lot of routing to be done on their end. I don’t have access to their routers at their location. I just can seem to picture it on my head how it would work. It doesn’t seem like the packet would even make it to the router since the Ip address they would be going to would not have to be routed.

There server is 10.1.1.62 at their location and ours is 10.1.1.62 at ours.
 
Upvote 0 Downvote
One thing you could do is change one of the subnets if it is not to much trouble. I don't know how many users there are at either of the locations.

If this is not an option maybe you could setup a terminal services server on your network. That way you could create a rule that says any TS connection coming form "other company's external IP address" goes to 10.1.1.62 on your internal network. That way it doesn't really matter what either one of the internal subnets are. This also gives you the ability to lock down TS and restrict the users at the other company to only be able to use that one particular app. You won't have to worry about viruses coming over the VPN, people from another company having access to certain things, etc.
 
Upvote 0 Downvote
joepc
That is a really good idea, I never thought about using TS.looks like I have alittle bit of work to do on the router.

Thanks for the help!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
1K
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
843
Johnkite
Johnkite
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
712
XLNTech1
XLNTech1
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
880
intel233
intel233
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
374
gkittelson
gkittelson

Part and Inventory Search

Sponsor

Back
Top