Date: Wed, 4 May 2011 16:19:10 +0100 From: krad <kraduk@gmail.com> To: Kevin Wilcox <kevin.wilcox@gmail.com> Cc: Free BSD Questions list <freebsd-questions@freebsd.org>, geoff@apro.com.au Subject: Re: Can I bridge the same subnet across a VPN? Message-ID: <BANLkTi=BfGDvym1GyBmvooMn1dbhT4UcTA@mail.gmail.com> In-Reply-To: <BANLkTimCMBvCQqOE=8Xfd9_ZF-aQeWBGEA@mail.gmail.com> References: <201105040519.56695.geoff@apro.com.au> <BANLkTimCMBvCQqOE=8Xfd9_ZF-aQeWBGEA@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 3 May 2011 20:44, Kevin Wilcox <kevin.wilcox@gmail.com> wrote: > On Tue, May 3, 2011 at 15:19, Geoff Roberts <geoff@apro.com.au> wrote: > > > Is it possible to join two sites with the same subnet across a VPN? > > Yes. > > > I have two sites that have the same subnet/mask. > > > > I need these two separated networks to behave as one across a VPN. > > That's understandable. You may want to consider breaking the /24 into > two /25s, one at each site, and routing the connection instead but > that's not necessary and you can indeed use a bridge with few issues. > > > Happy to use either IPSec or OpenVPN to actually encrypt the traffic. > > We've done it as a demo of what you can do with OpenVPN, it's trivial > once you get some configuration issues straight in your head (or > that's how it worked for me). > > To bridge in OpenVPN, take a look at: > > > http://openvpn.net/index.php/open-source/documentation/miscellaneous/76-ethernet-bridging.html > > kmw > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > you can do this with a combination of openvpn (using tap, not tun) and if_bridge both ends. However I have found it to be flakey and not really worth the effort. Better to go with a routed solution.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BANLkTi=BfGDvym1GyBmvooMn1dbhT4UcTA>