Allow device from vlan A to connect over ipsec to device in vlan B
-
Hi,
I'll try to explain myself as best as I can.
We have a S2S in place between two sites (A and B), but we have a networking device that is location bound and can only be used from the first location (A).
Now with covid I'm trying to set up a way to access this device remotely over our S2S to "trick" the device that a new vlan on site B is in the same network. So that our users can access it from the other site or even through openvpn.
Future wise another device will be installed on location B and needs to communicate with the first device on location A.
Is this possible to set this up?
e.g. 192.168.1.1/24 on both site A and B with static routing.
Thanks!
-
@donzalmrol
You can do a sort of NAT in IPSec using PAT-style on site A: NAT with IPsec Phase 2 Networks -
@viragomann Thanks will look into this.
Also forget to add, the device sends out its own DHCP. Can I forward this over the s2s? -
@donzalmrol
DHCP? You mean you want to pull an IP from the other site?
I can't see any sense for doing this at all, and it might end up in routing issues.