Site to site with same subnet
-
Hi,
I have a question that i think i know the answer to, but need confirmation….
I have 2 sites both with PFsense 2.0
Site A network is 10.0.0.0/8 and Site B is also 10.0.0.0/8
but
Site A uses IP range 10.0.0.x / 10.1.0.x / 10.0.1.x and Site B uses 10.1.105.x
Is an IPSec tunnel impossible ?I know it worked when Site A used 10.0.0.0/24 and Site B used 10.1.105.0/24....
but i had to extend Site A's iprange....Any help will be appreciated.
Thanks
Riaan -
How big mask you determined to site A? If i shake from the sleeve "right" mask it would be /15 or something like that and site B is summarized in there. –> so my first quess would be, it doesn't work unless you change site A's subnetting more continously like so /22 /21 /20 masks would work and then site B could be contacted with VPN again
-
Hi Metu69salemi,
Thanks for the quick response.
Maybe it'd just cause it after 1am, but im not making much sense of your reply…
Could you put it in "lay-mans-terms" please :)Thanks
-
I admit i might've been overlooked something badly, but this is what i mean
In binary form: SITE A 10.1.0.0 : 00001010.00000001.00000000.00000000 10.0.1.0 : 00001010.00000000.00000001.00000000 10.0.0.0 : 00001010.00000000.00000000.00000000 Site A SM: 11111111.11111110.00000000.00000000 = /15 == 255.254.0.0 and that means, that Site A covers anything between 10.0.0.0 -- 10.1.255.255 as local lan In binary form: SITE B 10.1.105.0: 00001010.00000001.01101001.00000000 Site B SM: 11111111.11111111.11111111.00000000 = /24 == 255.255.255.0Is it possible to set Site A like 10.0.0.0: 00001010.00000000.00000000.00000000 10.0.1.0: 00001010.00000000.00000001.00000000 10.0.2.0: 00001010.00000000.00000010.00000000 SiteA SM: 11111111.11111111.11111100.00000000 = /22 == 255.255.252.0And if something is local network, why to send it via vpn..
-
Aaahhhhh…..now it makes sense :)
I will try in about 8 hrs and see what happens :)
Thank you very much.