Re: VPN connection routing

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: "Chris Priede" <priede@xxxxxxxxx>
Date: Sat, 12 Nov 2005 02:03:05 -0500

Hi,

Andy Lai wrote:
> Our network is 192.168.1.x/255.255.255.0 and we need to connet to our
> sister company in VPN that uses 192.168.1.x/255.255.255.255.
> Is it possible to point to the right machine?

Unfortunately, no. One of you needs to renumber. How hard that will be
depends on what you have -- it could range from trivial in a simple
peer-to-peer environment, to quite complicated in a full blown enterprise AD
implementation.

My general advice about that is to never choose the popular / router default
private address blocks for your network (192.168.0.0, 192.168.1.0, 10.0.0.0
and so forth), precisely for this reason. Each of the three private address
ranges is wide enough to allow choosing an uncommon block, relatively
unlikely to conflict with home users and other small organizations:

http://www.cse.ohio-state.edu/cgi-bin/rfc/rfc1918.html

--
Chris Priede

.

Prev by Date: Re: Dial up connection intteruption
Next by Date: Windows firewall and bittorrent
Previous by thread: XP Pro: drive sharing permissions: works with "everyone", not with users
Next by thread: Windows firewall and bittorrent
Index(es):
- Date
- Thread

Relevant Pages

Re: [Full-disclosure] Remote Desktop Command Fixation Attacks
... This set of steps is redundant in many places, and it's also enormously expensive, since you're using no less than three different expensive bits of networking hardware (AP, PIX, VPN Concentrator), in addition to a bunch of x86 server hardware, windows server licenses, and at least one ISA license. ... Your computers necessarily don't have full access to your network infrastructure when they aren't logged on, so GPOs, software updates, etc can't be applied at the times you want them to be applied. ... Turning on, enabling, and implementing every possible security setting and device you think of is not defence in depth, and will probably only have two effects - your users won't use your wireless network, and you'll burn so much cash you won't have any left to spend on *useful* security measures. ...
(Full-Disclosure)
TidBITS#792/15-Aug-05
... We also note the release of Security Update 2005-007, ... Macintosh FTP client, free for educational and charitable use. ... mentioned virtual private network (VPN) technologies. ...
(comp.sys.mac.digest)
RE: VPN Error 800
... The VPN client IP is 10.0.1.40, this is a private IP address. ... server IP address is 81.137.105.244, this is a Internet IP address. ... not test VPN connection from your perimeter network. ... SBS on your switch to make it work. ...
(microsoft.public.windows.server.sbs)
Re: VPN with SBS 2003 (not R2) and DSL.
... Reading property value for VPN returned OK ... Reading VPN Server Name returned OK ... identical network cards. ... it seems doubtful that SBS will work properly with two NICs ...
(microsoft.public.windows.server.sbs)
Re: OT By a mile in parts comments on Viet Nam
... check bank accouts etc etc whilst away but is safe to do so over wireless and using the hotel network.. ... you should regard your connection as insecure and use some ... form of encryption to protect your passwords and privacy. ... My recommendation would be to set up a VPN endpoint in the UK that you ...
(uk.comp.sys.mac)