Archived from groups: comp.security.firewalls (
More info?)
"Don Kelloway" <dkelloway@commodon.com> wrote in message
news:S8aAc.14415$Y3.8822@newsread2.news.atl.earthlink.net...
> "Don Kelloway" <dkelloway@commodon.com> wrote in message
> news:ES9Ac.14406$Y3.1679@newsread2.news.atl.earthlink.net...
> > "Alec" <alec@nospam.com> wrote in message
> > news:FL9Ac.1255$zj1.730@newssvr23.news.prodigy.com...
> > >
> > > "Don Kelloway" <dkelloway@commodon.com> wrote in message
> > > news:Rz9Ac.14395$Y3.9435@newsread2.news.atl.earthlink.net...
> > > > "Hatzigiannakis Nikos" <nikos@ypai.gr> wrote in message
> > > > news:cap83i$aol$1@aiolos.aegean.gr...
> > > > > Is it possible to have a VPN connection between two internal
> > networks
> > > > with
> > > > > the same local IP range?
> > > > > e.g
> > > > >
> > > >
> > > > If two networks are using Network Address Translation (NAT) and
> the
> > > > private IP addresses in use are within the same subnet on either
> > side,
> > > > then no. Neither network will be able to establish a VPN to the
> > other.
> > > >
> > >
> > > Umm, yes, they can. That is the exact situation the link I provided
> in
> > my
> > > response above covers. That is, they show precisely how two private
> > subnets
> > > both utilizing the 192.168.1.x/24 subnet can communicate together.
> The
> > > answer is, in fact, NAT (to be precise, Mapped IPs or MIPs, which
> are
> > a
> > > one-to-one mapping of translated addressing). Basically, on your
> side
> > of the
> > > tunnel you map the other side's network to a different subnet. It
> > involves
> > > some contortions, but is doable.
> > >
> > > Alec
> > >
> >
> > That's odd... I just refreshed the NG and 'lo and behold there's your
> > post. Time to do some reading to see how this is being accomplished.
> > Thanks for the info.
> >
> >
>
> Though there are some specifics to making this work, that was
> interesting to read.
>
> --
> Best regards, from Don Kelloway of Commodon Communications
> Visit
http://www.commodon.com to learn about the "Threats to Your
> Security on the Internet".
>
I hope it is useful sometime. Hey, btw, sorry about earlier. I re-read my
post later and thought it came off a bit rude. I didn't mean it to be. It's
just I thought that you had seen my prior link.
Alec