When you VPN from the WAN to the router, your Internet client should get
an IP address on the LAN. This should allow your client to hit any
machine in the LAN and any machine on the LAN should be able to hit the
client on the WAN using the address he got from the VPN connection.
On the other hand...
If you want to connect a remote LAN to your LAN, you will have to have
some smart equipment. You either have to pay for firewall/routers that
are sold with the ability to do this or you should go with headless
Linux boxes. The trick is to have separate LAN IP ranges on the two
LANs and have static routes on the two Linux Routers with VPN links to
one another that allow anyone on say 192.168.4.0 to talk to everyone on
192.168.5.0 and the routes on the Linux boxen will take care of routing
through the VPN.
It may be possible to use the same subnet on the two LANs using a bridge
interface but I don't know enough about this configuration to be sure it
can work as expected since I've never done it.
I hope this makes sense...
Larry
On Fri, 2008-09-12 at 19:07 -0400, Chuck Hast wrote:
> On Fri, Sep 12, 2008 at 6:11 PM, Ken Elliott <kelliott11@cfl.rr.com> wrote:
> > Sounds like you need the external router (172.28.13.* <-> internet) that
> > supports VPN. Once you are in via VPN, you should be able to see the
> > internal router (92.168.2.* <-> 172.28.13.*) and VNC via port number into
> > the 92.168.2.* PCs.
> >
> > Am I understanding this correctly?
> >
> > Would a headless Linux box do? Say, Smoothwall?
> > http://www.smoothwall.org/
> >
> Yes that is exactly what I am trying to do, but it appears that the
> router I have though it supports VPN it only does so for the client
> side on the LAN side, the WAN side is peer to peer with another
> router, I am trying to get into the WAN side from a VPN client and
> so far no joy. Just to check and confirm it I move the computer over
> to the LAN side and it linked right up... I found out all of this after I
> had sent the initial note. I need a router that is client agnostic on
> either the LAN or WAN side.
>
> If I had the space I would get a small machine and do it with a head
> less Linux box and be done with it but do not.
>
> I just need to find a router with a VPN that will support client access
> from either side of the router, not just peer to peer on the WAN side.
>
> Thanks for the info, will continue to look.
>
-----------------------------------------------------------------------
This list is provided as an unmoderated internet service by Networked
Knowledge Systems (NKS). Views and opinions expressed in messages
posted are those of the author and do not necessarily reflect the
official policy or position of NKS or any of its employees.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 16:55:14 EDT