[VPN] NAT-T and private addressing

Walt Reynolds waltr at umich.edu
Fri Jun 6 13:57:05 EDT 2003



You would have problems as there would be 2 routes to the same network
(Local and over the tunnel)  You would be better off staying off the
network range that they are using.

On Fri, 6 Jun 2003, David Newman wrote:

>
> We are contemplating renumbering here (gack) but we also want to maintain
> IPSec connectivity with a customer site that uses net-10 addressing.
>
> Even if two IPSec boxes support NAT-T, is it the case that we cannot use the
> same address space for the two private networks? (eg, a VPN client on our
> private 10.0.0.0/24 cannot reach a box on the customer's 10.0.0.0/24, even
> if the public interface of one gateway is a public address)?
>
> I'm no good at ASCII art but here is the setup:
>
> vpn client on net 10->nat box->net->customer gateway->host on customer
> net-10
>
> many thanks
>
> dn
>
>
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn
>

-- Walt Reynolds
   University of Michigan



More information about the VPN mailing list