Page 1 of 1

Tunnel between 2 MT where on one there is no public IP

Posted: Sun Oct 28, 2018 7:37 pm
by matiaszon
Hi,

I need to connect two LANs with tunnel and give access to all devices. In each LAN there is MT router on the edge. Unfortunatelly, one of these Internet accesses is without public IP. I used to use IPSec to connect both LANs, but since there is no public IP, and it is changing from time to time, I am pretty sure it won't work this way. What would be the best way to securely enough connect these LANs?

Re: Tunnel between 2 MT where on one there is no public IP

Posted: Sun Oct 28, 2018 7:58 pm
by CZFan
Do you need routed access between sites or must the be on same layer 2 network?

If routed, look at SSTP tunnel with one side that does not have public IP as a client and dial into the other site.

If you need layer 2, then look at bridge control protocol over SSTP

Re: Tunnel between 2 MT where on one there is no public IP

Posted: Sun Oct 28, 2018 8:20 pm
by matiaszon
Do you need routed access between sites or must the be on same layer 2 network?

If routed, look at SSTP tunnel with one side that does not have public IP as a client and dial into the other site.

If you need layer 2, then look at bridge control protocol over SSTP
I don't think I need any routing. These are simple home LANson both ends, but I want all devices to see each other from LAN1 to LAN2 and back. I guess SSTP bridge will be enough.
Thanks for the hint.

Re: Tunnel between 2 MT where on one there is no public IP

Posted: Sun Oct 28, 2018 11:44 pm
by frontdist
If you're using anything with HW encryption do a initiator-responder setup with IPSec IKEv2...

It's not the MOST straightforward setup in the world, but will likely produce better throughput than any other solution on these devices.

See my thread here and ask if you have any questions:

viewtopic.php?f=2&t=140087