Page 1 of 1

ip address routing

Posted: Tue Sep 19, 2017 8:39 am
by althaf
please find the the my diagram
this diagram is one location

vpn client can connected the server is getting ip address 192.168.30.10, vpn client need access the other network (10.10.10.X / 10.10.20.X)

how can route the ip address

Re: ip address routing

Posted: Tue Sep 19, 2017 10:09 am
by cedar
Please add routing entry to the classless static routes in DHCP setting.

Re: ip address routing

Posted: Wed Sep 20, 2017 4:29 am
by althaf
i need the dhcp ip address this location its correct ?

Re: ip address routing

Posted: Wed Sep 20, 2017 4:35 am
by cedar
If you need to add entries of routing table in client, yes.

Re: ip address routing

Posted: Wed Sep 20, 2017 4:37 am
by althaf
thanks for knowledge sharing
i will try ok

Re: ip address routing

Posted: Wed Sep 20, 2017 9:30 am
by cedar
Ketnel-mode and RawIP-mode virtual NAT can't recognize router which isn't connected to internet.
Please disable these mode.
(Route pushing may not be needed.

Re: ip address routing

Posted: Sun Sep 24, 2017 7:49 am
by althaf
Hi both

i done both way this not ping ip address

client ip address 192.168.30.10/24
client need to access ip address 10.10.32.0/24

same diagram

please advice to me

Re: ip address routing

Posted: Mon Sep 25, 2017 8:26 am
by althaf
hi there!
i enter the static routing table to push

10.10.10.0/255.255.255.0/192.168.30.1

but still not pinging

vpn client can access the 10.70.116.10

but other network ip address can't access

please can any once help me

Re: ip address routing

Posted: Mon Sep 25, 2017 9:06 am
by cedar
Does the OS which VPN Server runs on know the route to 10.10.10.x?

Re: ip address routing

Posted: Mon Sep 25, 2017 9:26 am
by althaf
Hi

10.10.10.X is a separate network in the location OS is windows 7

One virtual server manager

two nic card
1. 192.168.3.3/24 WAN
2. 10.70.116.10 /24 LOCAL

i can access the remote local ip address, i need access separate network into is address 10.10.10.X

eg
one network
116 vlan server
10 vlan sale dep
20 vlan support dep

please advice to me

Re: ip address routing

Posted: Mon Sep 25, 2017 9:34 am
by cedar
Is the S/W in the picture a L3SW?
Does the S/W have a gateway IP address in segment 10.70.116.x?

Re: ip address routing

Posted: Mon Sep 25, 2017 9:55 am
by althaf
Hi

Yes cisco Layer3 switch management ip 10.10.2.250

NIC 1 GW 192.168.3.1

NIC 2 10.70.116.1 GW only one server windows

VALN10 GW 10.10.10.1
VALN20 GW 10.10.20.1

Re: ip address routing

Posted: Mon Sep 25, 2017 10:00 am
by althaf
HI

I try to normal switch also

Re: ip address routing

Posted: Mon Sep 25, 2017 10:10 am
by cedar
In User mode SecureNAT, the VPN server process act as transparent proxy for the virtual NAT.
Therefore, the VPN server process should be able to access to the destination network.

If your network policy allows, you can use localbridge to NIC2 instead of virtual NAT. It may have good performance.

Re: ip address routing

Posted: Mon Sep 25, 2017 10:11 am
by althaf
please advice to me normal switch

NIC 1 192.168.3.3/24 GW 192.168.3.1
NIC 2 10.70.116.10/24 GW10.70.116.1

SALE DEP 10.10.10.x/24 GW 10.10.10.1
SUPPORT 10.10.20.X/24 GW 10.10.20.1

I CAN REMOTE ACCESS IP ADDRESS 10.70.112.10/24 THIS THOUGTH ACCESS THE SALE 10.10.10.x AND SUPPORT 10.10.20.x

Re: ip address routing

Posted: Mon Sep 25, 2017 10:19 am
by cedar
If you localbridged to NIC2, please disable virtual NAT and enable only virtual DHCP server.

The DHCP server should assign 10.70.116.X and provide the route information as following.

10.10.10.0/255.255.255.0/10.70.116.1
10.10.20.0/255.255.255.0/10.70.116.1

Re: ip address routing

Posted: Mon Sep 25, 2017 1:09 pm
by althaf
hi

DHCP server then assign 10.70.116.X then client are getting ip address this range its correct ?

if need client ip address different range what can do ?

Re: ip address routing

Posted: Mon Sep 25, 2017 7:51 pm
by cedar
How the clients with different IP range can acccess to the cisco?

Re: ip address routing

Posted: Tue Sep 26, 2017 7:05 am
by althaf
HI

i try still not working

please find the attachment

disable virtual NAT client getting ip address 169.

noted

i need nc 2 ip address server only 10.70.116.10

Re: ip address routing

Posted: Tue Sep 26, 2017 8:35 am
by althaf
Hi there

i need to softether server like a router

any idea

please help me

Re: ip address routing

Posted: Tue Sep 26, 2017 9:43 am
by cedar
You can use virtual L3 switch.

Create 2 virtual hubs and bridge one to NIC2 and make virtual interfaces of virtual L3SW on each hubs.
Push routes to 10.10.10-20.X via virtual L3SW to clients.
Add routes to 10.10.10-20.X via 10.70.116.1 into virtual L3SW.

Re: ip address routing

Posted: Wed Sep 27, 2017 7:50 am
by althaf
hi

done in order but 10.10.10.X its ping plug cable also other ip address
not ping 10.10.20.X and 10.70.116 its ping can remote access alos


note

local bridge created by virtual main hub (VPN)

please find the attachment

Re: ip address routing

Posted: Wed Sep 27, 2017 7:50 am
by althaf
cont..

Re: ip address routing

Posted: Wed Sep 27, 2017 8:12 am
by althaf
hi there
sorry
done in order but 10.10.10.X its ping unplug cable

Re: ip address routing

Posted: Wed Sep 27, 2017 8:16 am
by cedar
Why L3SW is isolated?

I would like to try to figure it out.
VPN clients(192.168.30.X) - hub"VPN" - (192.168.30.250)L3SW(10.70.116.250) - hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN

Re: ip address routing

Posted: Wed Sep 27, 2017 8:29 am
by althaf
hi there

hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN


please correct to me
1. need to create the hub for LocalBridge ?

2. already
NIC 2 10.70.116.10/24 GW10.70.116.1

3. What is
(10.70.116.1)Cisco(10.10.10.1) - SaleLAN

please advice to me

Re: ip address routing

Posted: Wed Sep 27, 2017 8:30 am
by althaf
cont..

Re: ip address routing

Posted: Wed Sep 27, 2017 8:37 am
by cedar
> althaf

> 1. need to create the hub for LocalBridge ?

If you want "i need to softether server like a router", it's necessary to separate client and NIC2.

If VPN client access the Cisco router directly, the VPN server doesn't need to do routing.

> 3. What is
> (10.70.116.1)Cisco(10.10.10.1) - SaleLAN

It figures existing router and network.(not VPN setting)

Re: ip address routing

Posted: Wed Sep 27, 2017 8:58 am
by althaf
hi

not allowed directly VPN client access the Cisco router.

i need softether server like a router

softether server two NIC

1. WAN 192.168.3.3/24
2. LAN 10.70.116.10/24 GW 10.70.116.1

TWO Dep
Sale / support

* WAN connected direct ADSL
* SW connected the softhether server 10.70.116.10/24 / Sale pc 10.10.10. x /24 Support 10.10.20.x/24

VPN client 192.168.30.11/24 , now client access the softether server

i need to softher server like a router

VPN client 192.168.30.11/24 need to access the sale and support

please advice to me

Re: ip address routing

Posted: Wed Sep 27, 2017 9:13 am
by cedar
Please try like this.
> VPN clients(192.168.30.X) - hub"VPN" - (192.168.30.250)L3SW(10.70.116.250) - hub"LocalBridge" -localbridge(NIC2:10.70.116.1) -
(10.70.116.1)Cisco(10.10.10.1) - SaleLAN

Re: ip address routing

Posted: Wed Sep 27, 2017 9:26 am
by althaf
Please advice to me

hub"LocalBridge" -localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN

i need to create hub called LocalBridge ?

i not get this

localbridge(NIC2:10.70.116.1) - (10.70.116.1)Cisco(10.10.10.1) - SaleLAN

Re: ip address routing

Posted: Wed Sep 27, 2017 9:34 am
by cedar
You can use any virtual hub name as long as it is different from the hub to which the clients connect to.

Re: ip address routing

Posted: Wed Sep 27, 2017 9:51 am
by althaf
hi

hub sale need to connect into vpn client

i already created the this hub and virtual interface

Re: ip address routing

Posted: Wed Sep 27, 2017 9:59 am
by cedar
Why the hub sales is needed?

client passes packets to L3SW.
L3SW passes it to cisco router.
hub sales is not related

Re: ip address routing

Posted: Wed Sep 27, 2017 10:11 am
by althaf
vpn client ----------> softether server -----------> Sale /Support
192.168.30.11 10.70.116.10 10.10.10 x 10.10.20.x
need act the router

now vpn client access 10.70.116.10

with out cisco router

please advice to me step

Re: ip address routing

Posted: Wed Sep 27, 2017 10:20 am
by cedar
The vpn server isn't connected to the sales segment directly.
client can't access the segment without cisco router

Re: ip address routing

Posted: Wed Sep 27, 2017 10:37 am
by althaf
hi

i try cisco router working fine , but same segment using the normal netgear switch

because i need to softether like a router, two nic using for server nic 1 connected switch and nic1 ISP

one uplink into other netgear switch (Sale dep 1st floor) another uplink into other netgear switch (support dep 2nd floor)

which department connect two pcs and 4 pcs

softether server like a router !

Re: ip address routing

Posted: Wed Sep 27, 2017 10:56 am
by cedar
I'm confused.
You add additional 2 NICs to the vpn server for connecting sales/support segment?
Could you draw a fugure?

Re: ip address routing

Posted: Wed Oct 04, 2017 6:09 am
by althaf
Hi

This new diagram and questions

All are Cisco switches all can communicated which other without VPN client

question

1. How to communicated VPN client in servers 10.70.112.X/24
2. How to communicated VPN client in Vlan 40 10.10.40./24

how many hub need create ?
we need many layers 3 switch setting ?

Please advice to me step ?

Re: ip address routing

Posted: Wed Oct 04, 2017 6:10 am
by althaf
--cont...

we need to route route ip address

Re: ip address routing

Posted: Wed Oct 04, 2017 7:07 am
by althaf
HI
i create the Hub and Virtual interface

how router l3 layer setting routes ip address and which hub create local Bridget

please find the attachments

please idea to me

Re: ip address routing

Posted: Thu Oct 05, 2017 4:22 am
by althaf
hi cedar

can you help me flow setp