Site to site with same subnet
I have a question that i think i know the answer to, but need confirmation….
I have 2 sites both with PFsense 2.0
Site A network is 10.0.0.0/8 and Site B is also 10.0.0.0/8
Site A uses IP range 10.0.0.x / 10.1.0.x / 10.0.1.x and Site B uses 10.1.105.x
Is an IPSec tunnel impossible ?
I know it worked when Site A used 10.0.0.0/24 and Site B used 10.1.105.0/24....
but i had to extend Site A's iprange....
Any help will be appreciated.
How big mask you determined to site A? If i shake from the sleeve "right" mask it would be /15 or something like that and site B is summarized in there. –> so my first quess would be, it doesn't work unless you change site A's subnetting more continously like so /22 /21 /20 masks would work and then site B could be contacted with VPN again
Thanks for the quick response.
Maybe it'd just cause it after 1am, but im not making much sense of your reply…
Could you put it in "lay-mans-terms" please :)
I admit i might've been overlooked something badly, but this is what i mean
In binary form: SITE A 10.1.0.0 : 00001010.00000001.00000000.00000000 10.0.1.0 : 00001010.00000000.00000001.00000000 10.0.0.0 : 00001010.00000000.00000000.00000000 Site A SM: 11111111.11111110.00000000.00000000 = /15 == 255.254.0.0 and that means, that Site A covers anything between 10.0.0.0 -- 10.1.255.255 as local lan In binary form: SITE B 10.1.105.0: 00001010.00000001.01101001.00000000 Site B SM: 11111111.11111111.11111111.00000000 = /24 == 255.255.255.0
Is it possible to set Site A like 10.0.0.0: 00001010.00000000.00000000.00000000 10.0.1.0: 00001010.00000000.00000001.00000000 10.0.2.0: 00001010.00000000.00000010.00000000 SiteA SM: 11111111.11111111.11111100.00000000 = /22 == 255.255.252.0
And if something is local network, why to send it via vpn..
Aaahhhhh…..now it makes sense :)
I will try in about 8 hrs and see what happens :)
Thank you very much.