We just added a second router with hardware vpn to our network for our managed services provider for our cisco phones, and after getting the VPN tunnel to work properly they cant reach our UC560 device internally.
They'd like us to add a static route to our Sonicwall router/firewall to redirect all traffic to/from their servers through their router with its own external IP instead of the regular WAN port on the sonicwall.
Both routers are currently connected to the bridged device from our ISP. The WAN port on the sonicwall has an external IP of xxx.xxx.176.50. The external IP of the VPN router is at xxx.xxx.176.51. The internal connection of the VPN router is then connected to the sonicwall on X3 with a static IP address of 10.2.12.50. The X3 interface has a static IP address of 10.2.12.51.
As it stands, nothing on the internal network can ping 10.2.12.50 or 51, but I can ping the 10.3.12.1 interface on the sonicwall just fine, and if I change the X3 IP to something off of the 10.2.12.xx network I can ping it just fine as well. Im guessing because our regular PC vlan is using the same 10.2.12.0 network. Until this works, I can't get the static route to work to send their traffic through the VPN.
The internal interface on the VPN device is set up with that 10.2.12.50 static IP and I dont have access to the device to change it. Is there an easy trick to make these play nice, or do I have to change the whole VLAN IP address scheme to be able to use that 10.2.12.50 address? attached is a rough sketch of the network
They'd like us to add a static route to our Sonicwall router/firewall to redirect all traffic to/from their servers through their router with its own external IP instead of the regular WAN port on the sonicwall.
Both routers are currently connected to the bridged device from our ISP. The WAN port on the sonicwall has an external IP of xxx.xxx.176.50. The external IP of the VPN router is at xxx.xxx.176.51. The internal connection of the VPN router is then connected to the sonicwall on X3 with a static IP address of 10.2.12.50. The X3 interface has a static IP address of 10.2.12.51.
As it stands, nothing on the internal network can ping 10.2.12.50 or 51, but I can ping the 10.3.12.1 interface on the sonicwall just fine, and if I change the X3 IP to something off of the 10.2.12.xx network I can ping it just fine as well. Im guessing because our regular PC vlan is using the same 10.2.12.0 network. Until this works, I can't get the static route to work to send their traffic through the VPN.
The internal interface on the VPN device is set up with that 10.2.12.50 static IP and I dont have access to the device to change it. Is there an easy trick to make these play nice, or do I have to change the whole VLAN IP address scheme to be able to use that 10.2.12.50 address? attached is a rough sketch of the network
Facebook
Twitter