VPN tunnel - Multiple IP-addresses ranges

Hello,

I have a question.

We have configured ipsec VPN tunnel with our software provider.
The software provider policy will only accept one IP-addresses range.
So the VPN-tunnel route setting configuration will be:
Local: 192.168.1.0/24
Remote: 10.140.0.0/24

Because we have more IP-addresses ranges, I want to allow those ranges through the VPN tunnel.
I have added an extra route
Local: 10.250.0.0/24
Remote: 10.140.0.0/24
1:1 NAT: 192.168.1.0/24

I can only add one NAT!
I possible to allow more NATs?
How I can allow those IP-addresses through the VPN tunnel?
10.250.0.0/24
10.251.0.0/24
10.252.0.0/24
10.253.0.0/24

Regards,

Marco Di Gregorio

Comments

  • Will the provider allow a different subnet mask?
    A /22 instead of a /24 ?
    If so, then you can set up 192.168.0.0/22 with your 4 subnets.
    If not, do you actually have more than 256 IP addr which need to access this remote site ? If not, then you can set up multiple 1-to-1 NAT entries for the IP addrs/ranges to match to the 192.168.1.0/24 IP addrs.

    If you have more than 256 IP addrs which need to access the remote site, and the provider will not allow more than a /24 subnet mask, then there is no why that I see to accomplish your goal.

  • Hello Bruce,

    ok, thanks for your advice.

    Regards,

    Marco

Sign In to comment.