Discussion in 'Cisco Small Business Routers and VPN Solutions' started by neppers, Aug 22, 2006.

  1. neppers

    neppers LI Guru Member

    At work I have 2 subnets: and These are setup with 2 different routers/firewalls but are on the same switch, so there are no security between them. I have setup static routes on both routers so the subnets can reach each other from behind both routers. The ...1.0 network goes out trough a BEFVP41 and the ...2.0 trough a Smoothwall.

    Problem: When I VPN from home to the BEFVP41 with a BEFSX41 I can only reach the subnet that is on the BEFVP41. My network at home is Do I need to setup more static routing to reach the "third" subnet at work? Perhaps at the home BEFSX41?

    Hope I gave enough info.
  2. Toxic

    Toxic Administrator Staff Member

    if a route is unknown to your PC which I guess it is, it defaults to the WAN. which your WAN wont know where 192..168.2.0 is.

    when your connected run "route print" from the command prompt and you'll see your route table on the PC.

    I have not done this type of routing before over VPN but i would guess if you add a route entry in your home router.

    Another way of sorting out routing between routers is using RIP. the routers both then communicate to each other and show their routing tables. However i dont know if RIP or Advanced Routing is be supported though WAN VPN Tunnel to the other VPN Endpoint.
  3. neppers

    neppers LI Guru Member

    Tried to set up the route entry in the home router(, but could not ping anything in the Tried set it to both wan and lan interface. Other suggestions please?
  4. Toxic

    Toxic Administrator Staff Member

    try enabling RIP on all 3 routers RIP2 if possible. I dont know if it will work over VPN but you could always try.
  5. neppers

    neppers LI Guru Member

    Enabled RIP2 on both linksys, on smoothwall I coul not find it, so I kept the static route. Did not make any difference. Still cant ping the
  6. pablito

    pablito Network Guru Member

    I don't know these routers or if it uses IPSEC but for IPSEC you usually create multiple VPNs between the routers to get to the desired subnets. The VPNs only allow traffic that fits the specified subnet. Or you can define the VPN similar to:>

  7. neppers

    neppers LI Guru Member

    Could not get 2 vpn connections at the same time to work, but I got it to work by doing VPN2:>, then I reached the other subnet, and if I change the tunnel to VPN2:> I reach the other one. Good enough for me.. Thanks! :)
