Community discussions

MUM Europe 2020
 
User avatar
matiaszon
Member
Member
Topic Author
Posts: 305
Joined: Mon Jul 09, 2012 9:26 am

Tunnel between 2 MT where on one there is no public IP

Sun Oct 28, 2018 7:37 pm

Hi,

I need to connect two LANs with tunnel and give access to all devices. In each LAN there is MT router on the edge. Unfortunatelly, one of these Internet accesses is without public IP. I used to use IPSec to connect both LANs, but since there is no public IP, and it is changing from time to time, I am pretty sure it won't work this way. What would be the best way to securely enough connect these LANs?
 
User avatar
CZFan
Forum Guru
Forum Guru
Posts: 1459
Joined: Sun Oct 09, 2016 8:25 pm
Location: South Africa, Randburg
Contact:

Re: Tunnel between 2 MT where on one there is no public IP

Sun Oct 28, 2018 7:58 pm

Do you need routed access between sites or must the be on same layer 2 network?

If routed, look at SSTP tunnel with one side that does not have public IP as a client and dial into the other site.

If you need layer 2, then look at bridge control protocol over SSTP
MTCNA, MTCTCE, MTCRE & MTCINE
 
User avatar
matiaszon
Member
Member
Topic Author
Posts: 305
Joined: Mon Jul 09, 2012 9:26 am

Re: Tunnel between 2 MT where on one there is no public IP

Sun Oct 28, 2018 8:20 pm

Do you need routed access between sites or must the be on same layer 2 network?

If routed, look at SSTP tunnel with one side that does not have public IP as a client and dial into the other site.

If you need layer 2, then look at bridge control protocol over SSTP
I don't think I need any routing. These are simple home LANson both ends, but I want all devices to see each other from LAN1 to LAN2 and back. I guess SSTP bridge will be enough.
Thanks for the hint.
 
frontdist
newbie
Posts: 38
Joined: Mon Sep 24, 2018 3:28 am

Re: Tunnel between 2 MT where on one there is no public IP

Sun Oct 28, 2018 11:44 pm

If you're using anything with HW encryption do a initiator-responder setup with IPSec IKEv2...

It's not the MOST straightforward setup in the world, but will likely produce better throughput than any other solution on these devices.

See my thread here and ask if you have any questions:

viewtopic.php?f=2&t=140087

Who is online

Users browsing this forum: No registered users and 90 guests