Re: Setting routing to link 2 sites by VPN

From: "Bill Grant" <not.available@online>
Date: Sat, 22 Dec 2007 11:14:26 +1100

This should mainly happen automatically. The only traffic using the tunnel would be traffic addressed to the private IPs of machines at the "other" site. http traffic would only use it if the http server was actually located at this site. Traffic addressed to any other IP address will still go out to the Internet unencrypted. Only the private traffic for the "other" site will be tunnelled (ir encrypted and encapsulated).

"Fred Bloggs" <fredb@xxxxxxxxxxxx> wrote in message news:D466CF4E-6C4A-4297-9842-370E110253FC@xxxxxxxxxxxxxxxx

Alas the router in the initial stages is not able to support this,
so all the routing etc needs to be done via windows...until that is i get a 2nd line in with bigger and better cisco hardware

"Lanwench [MVP - Exchange]" <lanwench@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:OEjrsbBRIHA.1188@xxxxxxxxxxxxxxxxxxxxxxx
Fred Bloggs <fredb@xxxxxxxxxxxx> wrote:
I'm looking to join 2 sites via a vpn, however the vpm link will not
be used for www traffic at the 2nd location.
The 2nd office will have it's own dedicated www link to keep traffic
to a minimum on the VPN.
Both sites are on seperate subnets.

E mail & RDP traffic will be sent / recieved over the vpn.
My question is what is the best way to seperate www traffic from vpn
site to site traffic, at the 2nd location

This should be easy enough to control at your router....I'd set up VPN between two compatible routers/firewalls and not involveWindows in it at all. My usual preference is Sonicwall appliances.

Follow-Ups:
- Re: Setting routing to link 2 sites by VPN
  - From: Fred Bloggs

References:
- Setting routing to link 2 sites by VPN
  - From: Fred Bloggs
- Re: Setting routing to link 2 sites by VPN
  - From: Lanwench [MVP - Exchange]

Prev by Date: Re: RRAS and VS 2005
Next by Date: Shiva Netmodem Driver Missing
Previous by thread: Re: Setting routing to link 2 sites by VPN
Next by thread: Re: Setting routing to link 2 sites by VPN
Index(es):
- Date
- Thread

Relevant Pages

Re: VPN versus Terminal Server for remote workers
... If one wants to cross the river and gets into a secure tunnel, ... this does not really help me understand why the hardware will allow ... By default and intention 'split tunneling' of VPN connections is not ... as far as using Term Server, the question really is: ...
(microsoft.public.windows.server.sbs)
Re: RV042 - Does anyone understand it? Documentation?
... if one is using an RV042 for VPN, then what affect does the routing table have on the VPN packets? ... When the packet is received at the other end of the tunnel, it will still be destined for a "foreign" private subnet. ... In other words the range of IP's you are trying to reach and the range of IP's the traffic is coming from MUST be included in the subnets for the encrypted tunnel. ...
(comp.dcom.vpn)
Re: [fw-wiz] Secure access to LAN resources (WAS: terminal services)
... > encrypted tunnel. ... VPN devices are designed to do strong authentication. ... It's always a trade-off between risk and protection. ...
(Firewall-Wizards)
Re: IPSEC routing ?
... the Tunnel only see the "outside" of the Tunnel,...nothing sees the inside ... Site-to-Site VPN and Remote Access VPN act totally different..... ... This means the VPN Router behaves just like a regular LAN ...
(microsoft.public.windows.server.networking)
Re: VPN versus Terminal Server for remote workers
... call a 'cell phone' we call a 'mobile', ... about Windows VPN client, Windows Mobile VPN client, or a 3rd party VPN ... It is tunnel to the appliance or nothing. ...
(microsoft.public.windows.server.sbs)