VPN between 2 Firewalla Gold routers on different ISP
We have two buildings. Each has its own ISP and Firewalla Gold router.
Building A internal addresses are 192.168.1.x
Building B internal addresses are 192.168.3.x
All other internal network devices are just switches and hubs.
How can we VPN the two buildings together so the both can internally communicate with each other, keep the subnets and stop DHCP traffic between the subnets?
-
You should be able to enable the vpn server on one of the FWGs and the vpn client on the other FWG. For the details look at this article: https://help.firewalla.com/hc/en-us/articles/5515850433683-Firewalla-Site-to-Site-VPN
-
No, I think they were pointing out that your subnet masks were not correct. The subnet 192.168.1.x is a subnet with 256 IP addresses. The correct subnet mask for it is 255.255.255.0, or the equivalent CIDR spec of 192.168.1.0/24. The mask in your post here, 255.255.255.252 is not correct.
-
Looking in the upper area posts, my posts show 255.255.252.0 not 255.255.255.252
If I understand, when it is 255.255.255.0 then there are only 254 addresses for two different networks
whereas 255.255.252.0 there are 1,024 addresses and in this way each Router could have a different DHCP address zone and there wall be a lower address limit and no crossover. -
You may need to allow B's subnet on A's network. (insert allow rule on A)
See this article https://help.firewalla.com/hc/en-us/articles/5515850433683-Firewalla-Site-to-Site-VPN
Please sign in to leave a comment.
Comments
9 comments