So this one has me stumped and its probably just a lack of knowledge issue. We have three XG firewalls across three geographical locations. We are using a 10. addressing scheme with each location being 10.1.*, 10.2.*, and 10.3.*. Cisco routers are used between locations with private ethernet lines. So our routing is pretty simple, anything thats 10.1 is local, anything 10.2.* goes to one router and anything that's 10.3 goes to the other.
We currently have two B2B VPNs with customers. The first customer is using a 172. internally...no issues there. The second is using 10.9.* which doesn't match exactly so that's fine too. However a third customer is using a 10.2.* scheme. We need to access three machines on their network which for example is 10.2.56.2, .3, and .4. How do I go about setting this up? In my head I will have to create three fake hosts that then get mapped to the hosts on their side but I'm just not understanding it.
-Allan
Hi Allen,
In such scenario you may need to configure NAT travesaland for example if you are accessing 10.2.X on the remote location , you would need to map it with another subnet .e.g 10.10.X.X so if you access using the Mapped address it will be Natted with the remote Location.
https://community.sophos.com/kb/en-us/123358
In your case The NATTED Subnet will be your actual subnet and remote location will be a Fake or Mapped Subnet
Regards,
Aditya Patel
Global Escalation Support Engineer | Sophos Technical Support
Knowledge Base | @SophosSupport | Sign up for SMS Alerts
If a post solves your question use the 'This helped me' link.
Quote