Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

static route on WM6 (routing clash between VPN + 3G provider)

static route on WM6 (routing clash between VPN + 3G provider)

static route on WM6 (routing clash between VPN + 3G provider)

I have visio'd this as it is a bit difficult to type

The Mobile device has a Vodafone 3G address of 10.57.x.x/8 etc on a Class A

You run a VPN connection to the client Firebox at 62.yyy.yyy.yyy, and get connected with an internal Class B address of 10.148.129.x/16

They have a Core switch with 2 LANs on 10.148.x.x/16 and 100.148.x.x/16

Everyone LAN or remote PC based on 10.148.x.x can access 100.148.x.x and visa versa

If you ping or tracert their 100.148.x.x range from a windows mobile client you hop across their LAN seemingly bypassing the Vodafone over the core switch on to the LAN and get a reply, but I suspect because Vodafone wouldn't know

If you ping or tracert their 10.148.x.x range you get no reply, despite the fact that you are on it (seemingly)

We think it is a NAT/Routing issue as Vodafone is on, which encompasses the clients range, as you'd expect but NOT want, when you try the ping to the it hops via the very switch you would 'expect' but when you try the ping to it drops to vodafone

why does the vodafone IPs on 10.252.x.x/8 take preference for a ping but seems to go via the VPN Gateway
I suspect that as the range is unknown to the Vodafone system the mobile device forwards it to its PPTP Default Gateway (the Firebox) whereas the Vodafone system picks up requests on its default gateway and drops them.

Can anyone think of a way around this?  We don't know how or if you can add static routes to a Windows Mobile device.

I saw years ago a Masquerade NAT/ACL on a cisco switch, whereas a 192.168.50.x range was translated from requests to 172.10.x.x, for example, there were two 192.168.50.x LANs on the same Leased Line WAN network, but one masqueraded as 172.10.x.x 'in front' of the router, if some knows if a firebox can do this, we could do, say, translated to for the Mobile users only?  

but a 1:1 or dynamic NAT doesn't do it for VPN users on the firebox trusted interface, but does translate for LAN based machines

Or does anyone know if we can add a route to the mobile?  

say ROUTE ADD mask

A Laptop using the mobile as a Modem doesn't have this issue, despite being on the same Vodafone range, a windows laptop, using the same 3G mobile as a modem with 10.57.x.x on Vodafone, can route across to the clients range ok

any hints or suggestions would be really cool (hopefully the link should be ok)



Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close