Page 1 of 1
ip address routing
Posted: Tue Sep 19, 2017 8:39 am
by althaf
please find the the my diagram
this diagram is one location
vpn client can connected the server is getting ip address 192.168.30.10, vpn client need access the other network (10.10.10.X / 10.10.20.X)
how can route the ip address
Re: ip address routing
Posted: Tue Sep 19, 2017 10:09 am
by cedar
Please add routing entry to the classless static routes in DHCP setting.
Re: ip address routing
Posted: Wed Sep 20, 2017 4:29 am
by althaf
i need the dhcp ip address this location its correct ?
Re: ip address routing
Posted: Wed Sep 20, 2017 4:35 am
by cedar
If you need to add entries of routing table in client, yes.
Re: ip address routing
Posted: Wed Sep 20, 2017 4:37 am
by althaf
thanks for knowledge sharing
i will try ok
Re: ip address routing
Posted: Wed Sep 20, 2017 9:30 am
by cedar
Ketnel-mode and RawIP-mode virtual NAT can't recognize router which isn't connected to internet.
Please disable these mode.
(Route pushing may not be needed.
Re: ip address routing
Posted: Sun Sep 24, 2017 7:49 am
by althaf
Hi both
i done both way this not ping ip address
client ip address 192.168.30.10/24
client need to access ip address 10.10.32.0/24
same diagram
please advice to me
Re: ip address routing
Posted: Mon Sep 25, 2017 8:26 am
by althaf
hi there!
i enter the static routing table to push
10.10.10.0/255.255.255.0/192.168.30.1
but still not pinging
vpn client can access the 10.70.116.10
but other network ip address can't access
please can any once help me
Re: ip address routing
Posted: Mon Sep 25, 2017 9:06 am
by cedar
Does the OS which VPN Server runs on know the route to 10.10.10.x?
Re: ip address routing
Posted: Mon Sep 25, 2017 9:26 am
by althaf
Hi
10.10.10.X is a separate network in the location OS is windows 7
One virtual server manager
two nic card
1. 192.168.3.3/24 WAN
2. 10.70.116.10 /24 LOCAL
i can access the remote local ip address, i need access separate network into is address 10.10.10.X
eg
one network
116 vlan server
10 vlan sale dep
20 vlan support dep
please advice to me
Re: ip address routing
Posted: Mon Sep 25, 2017 9:34 am
by cedar
Is the S/W in the picture a L3SW?
Does the S/W have a gateway IP address in segment 10.70.116.x?
Re: ip address routing
Posted: Mon Sep 25, 2017 9:55 am
by althaf
Hi
Yes cisco Layer3 switch management ip 10.10.2.250
NIC 1 GW 192.168.3.1
NIC 2 10.70.116.1 GW only one server windows
VALN10 GW 10.10.10.1
VALN20 GW 10.10.20.1
Re: ip address routing
Posted: Mon Sep 25, 2017 10:00 am
by althaf
HI
I try to normal switch also
Re: ip address routing
Posted: Mon Sep 25, 2017 10:10 am
by cedar
In User mode SecureNAT, the VPN server process act as transparent proxy for the virtual NAT.
Therefore, the VPN server process should be able to access to the destination network.
If your network policy allows, you can use localbridge to NIC2 instead of virtual NAT. It may have good performance.
Re: ip address routing
Posted: Mon Sep 25, 2017 10:11 am
by althaf
please advice to me normal switch
NIC 1 192.168.3.3/24 GW 192.168.3.1
NIC 2 10.70.116.10/24 GW10.70.116.1
SALE DEP 10.10.10.x/24 GW 10.10.10.1
SUPPORT 10.10.20.X/24 GW 10.10.20.1
I CAN REMOTE ACCESS IP ADDRESS 10.70.112.10/24 THIS THOUGTH ACCESS THE SALE 10.10.10.x AND SUPPORT 10.10.20.x
Re: ip address routing
Posted: Mon Sep 25, 2017 10:19 am
by cedar
If you localbridged to NIC2, please disable virtual NAT and enable only virtual DHCP server.
The DHCP server should assign 10.70.116.X and provide the route information as following.
10.10.10.0/255.255.255.0/10.70.116.1
10.10.20.0/255.255.255.0/10.70.116.1
Re: ip address routing
Posted: Mon Sep 25, 2017 1:09 pm
by althaf
hi
DHCP server then assign 10.70.116.X then client are getting ip address this range its correct ?
if need client ip address different range what can do ?
Re: ip address routing
Posted: Mon Sep 25, 2017 7:51 pm
by cedar
How the clients with different IP range can acccess to the cisco?
Re: ip address routing
Posted: Tue Sep 26, 2017 7:05 am
by althaf
HI
i try still not working
please find the attachment
disable virtual NAT client getting ip address 169.
noted
i need nc 2 ip address server only 10.70.116.10
Re: ip address routing
Posted: Tue Sep 26, 2017 8:35 am
by althaf
Hi there
i need to softether server like a router
any idea
please help me
Re: ip address routing
Posted: Tue Sep 26, 2017 9:43 am
by cedar
You can use virtual L3 switch.
Create 2 virtual hubs and bridge one to NIC2 and make virtual interfaces of virtual L3SW on each hubs.
Push routes to 10.10.10-20.X via virtual L3SW to clients.
Add routes to 10.10.10-20.X via 10.70.116.1 into virtual L3SW.
Re: ip address routing
Posted: Wed Sep 27, 2017 7:50 am
by althaf
hi
done in order but 10.10.10.X its ping plug cable also other ip address
not ping 10.10.20.X and 10.70.116 its ping can remote access alos
note
local bridge created by virtual main hub (VPN)
please find the attachment
Re: ip address routing
Posted: Wed Sep 27, 2017 7:50 am
by althaf
cont..
Re: ip address routing
Posted: Wed Sep 27, 2017 8:12 am
by althaf
hi there
sorry
done in order but 10.10.10.X its ping unplug cable
Re: ip address routing
Posted: Wed Sep 27, 2017 8:16 am
by cedar
Why L3SW is isolated?
I would like to try to figure it out.
VPN clients(192.168.30.X) - hub"VPN" - (192.168.30.250)L3SW(10.70.116.250) - hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN
Re: ip address routing
Posted: Wed Sep 27, 2017 8:29 am
by althaf
hi there
hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN
please correct to me
1. need to create the hub for LocalBridge ?
2. already
NIC 2 10.70.116.10/24 GW10.70.116.1
3. What is
(10.70.116.1)Cisco(10.10.10.1) - SaleLAN
please advice to me
Re: ip address routing
Posted: Wed Sep 27, 2017 8:30 am
by althaf
cont..
Re: ip address routing
Posted: Wed Sep 27, 2017 8:37 am
by cedar
> althaf
> 1. need to create the hub for LocalBridge ?
If you want "i need to softether server like a router", it's necessary to separate client and NIC2.
If VPN client access the Cisco router directly, the VPN server doesn't need to do routing.
> 3. What is
> (10.70.116.1)Cisco(10.10.10.1) - SaleLAN
It figures existing router and network.(not VPN setting)
Re: ip address routing
Posted: Wed Sep 27, 2017 8:58 am
by althaf
hi
not allowed directly VPN client access the Cisco router.
i need softether server like a router
softether server two NIC
1. WAN 192.168.3.3/24
2. LAN 10.70.116.10/24 GW 10.70.116.1
TWO Dep
Sale / support
* WAN connected direct ADSL
* SW connected the softhether server 10.70.116.10/24 / Sale pc 10.10.10. x /24 Support 10.10.20.x/24
VPN client 192.168.30.11/24 , now client access the softether server
i need to softher server like a router
VPN client 192.168.30.11/24 need to access the sale and support
please advice to me
Re: ip address routing
Posted: Wed Sep 27, 2017 9:13 am
by cedar
Please try like this.
> VPN clients(192.168.30.X) - hub"VPN" - (192.168.30.250)L3SW(10.70.116.250) - hub"LocalBridge" -localbridge(NIC2:10.70.116.1) -
(10.70.116.1)Cisco(10.10.10.1) - SaleLAN
Re: ip address routing
Posted: Wed Sep 27, 2017 9:26 am
by althaf
Please advice to me
hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN
i need to create hub called LocalBridge ?
i not get this
localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN
Re: ip address routing
Posted: Wed Sep 27, 2017 9:34 am
by cedar
You can use any virtual hub name as long as it is different from the hub to which the clients connect to.
Re: ip address routing
Posted: Wed Sep 27, 2017 9:51 am
by althaf
hi
hub sale need to connect into vpn client
i already created the this hub and virtual interface
Re: ip address routing
Posted: Wed Sep 27, 2017 9:59 am
by cedar
Why the hub sales is needed?
client passes packets to L3SW.
L3SW passes it to cisco router.
hub sales is not related
Re: ip address routing
Posted: Wed Sep 27, 2017 10:11 am
by althaf
vpn client ----------> softether server -----------> Sale /Support
192.168.30.11 10.70.116.10 10.10.10 x 10.10.20.x
need act the router
now vpn client access 10.70.116.10
with out cisco router
please advice to me step
Re: ip address routing
Posted: Wed Sep 27, 2017 10:20 am
by cedar
The vpn server isn't connected to the sales segment directly.
client can't access the segment without cisco router
Re: ip address routing
Posted: Wed Sep 27, 2017 10:37 am
by althaf
hi
i try cisco router working fine , but same segment using the normal netgear switch
because i need to softether like a router, two nic using for server nic 1 connected switch and nic1 ISP
one uplink into other netgear switch (Sale dep 1st floor) another uplink into other netgear switch (support dep 2nd floor)
which department connect two pcs and 4 pcs
softether server like a router !
Re: ip address routing
Posted: Wed Sep 27, 2017 10:56 am
by cedar
I'm confused.
You add additional 2 NICs to the vpn server for connecting sales/support segment?
Could you draw a fugure?
Re: ip address routing
Posted: Wed Oct 04, 2017 6:09 am
by althaf
Hi
This new diagram and questions
All are Cisco switches all can communicated which other without VPN client
question
1. How to communicated VPN client in servers 10.70.112.X/24
2. How to communicated VPN client in Vlan 40 10.10.40./24
how many hub need create ?
we need many layers 3 switch setting ?
Please advice to me step ?
Re: ip address routing
Posted: Wed Oct 04, 2017 6:10 am
by althaf
--cont...
we need to route route ip address
Re: ip address routing
Posted: Wed Oct 04, 2017 7:07 am
by althaf
HI
i create the Hub and Virtual interface
how router l3 layer setting routes ip address and which hub create local Bridget
please find the attachments
please idea to me
Re: ip address routing
Posted: Thu Oct 05, 2017 4:22 am
by althaf
hi cedar
can you help me flow setp