PDA

View Full Version : IP routing over VPN connections.


fivefeet8
01-29-09, 01:25 PM
Lets say I have several site to site IPsec VPN connections.

Site A: has a VPN to both Site B and Site C.
Site B: has a VPN to Site D
Site C: has a VPN to Site D

Site A can ping both Site B and C, but can not get to Site D. What's the problem and the solution?

lduguay
01-29-09, 04:35 PM
For VPN routing, and assuming you are using Cisco MPLS, you would need to set the VPN routing and forwarding table (VRF).
Check here:
http://www.cisco.com/en/US/docs/net_mgmt/vpn_solutions_center/1.1/user/guide/VPN_UG1.html#wp1018964

fivefeet8
01-29-09, 04:45 PM
What if you're not using Cisco equipment with MPLS support? Could Site A communicate with Site D assuming Site A and Site D are on different networks.

Assume that Site B is addressed to a subnet of Site D. Site A however is not addressed to the same network, but can communicate with Site B with the VPN.

lduguay
01-29-09, 04:51 PM
It really depends on what equipment/software you are using. Sometimes VPN to VPN route propagation is not allowed