Public IPs via L2 (BCP) VPN

moya · October 7, 2010, 5:32am

I need some help getting this to work, hopefully I’ll get that help here.
I have access to a Data Center where I can get all the Public IPs that I may want/need, but the only economical way to access them is via a VPN, so I picked the L2 BCP.
Needles to say that I don’t want to use NAT at all, I want to be able to assign the public IPs via PPPoE. With that said, here is what I have done:

L2 (BCP) VPN is up and running without any problem.
I have properly configured Policy Routing.
I can assign an IP to a computer and be able to traverse the network and ping anything on the Internet.
I have used tracert to confirm that my traffic is indeed following the proper path

The problem that I have is that when I go to sites like “www.whatismyip.com”, the IP that shows up is the one on the WAN port of the router at the Data Center.
Obviously I want the one on my computer.

I’m using a RB750 for the office and a RB434AH at the Data Center
Both router are running 4.11
BCP-Public IP Net.png
You will see three VPNs, namely Watson, Spencer, and Valley. At this point in time I’m testing with Watson.
Routing Table.png
I’m assuming that my problem is at the Data Center so I’m attaching a snapshot of the Routing Table from it.

Any help and or suggestions will be greatly appreciated.

Regards,

-moya

mrz · October 7, 2010, 6:00am

If it shows datacenters IP address then most likely there is a nat rule.

moya · October 7, 2010, 6:41am

MRZ,

You were correct, there was a NAT rule that I missed. I already removed it, but now I don’t have access to the Internet. I can only ping as far as the WAN interface
of the router at the Data Center.

Do you have any suggestions/pointers on how to resolve this issue?

Thanks,

-moya

moya · October 8, 2010, 12:43am

Any takers?

I know I must be making a silly mistake somewhere, but I just can’t find it.

-moya

wifi442 · October 27, 2010, 12:19am

Any updates on this? I was thinking of doing the same thing. My ISP charges too much for additional IPs. A VPN link would be great to a Data Center that has unlimited IPs. Do people do this all the time?

Hope you get it working

moya · October 27, 2010, 2:37am

Yes, I did get it to work.
Just keep in mind that you will end up with additional latency, but other than that it can be done.
I did connect three remote sites without any problems.

Regards,

-moya