There are two basic ways to address this: (a) Renumber one of the networks. Unless they really *do* each contain thousands of systems, making them 10.0.0.0/16 and 10.1.0.0/16 will do nicely. (Beating up the people who assumed that their internal network would never have more than one segment is optional.) (b) Insert a network device -- router or firewall -- that does NAT, in front of each of the networks, so that they can each be mapped to some non-conflicting range. Note that NAT will need static rules to handle inbound traffic, so this may not be much less work than option (a).... David Gillett On 4 Jun 2001, at 1:47, dark dark wrote: > hi all, > what is I have to networks and I want to connect them > with IPSEC. LAN-to-LAN I mean. > > Network1--router-------------router--Network2 > (10.0.0.0/8) (10.0.0.0/8) > > so they are in the same IP segment. I am in network 1 > and I have 10.0.0.1 and I want to send packet to > 10.0.0.2 (in network2) but there is 10.0.0.2 in my > network too.(I mean in network1) > any way to solve this problem. > thanks. > > __________________________________________________ > Do You Yahoo!? > Get personalized email addresses from Yahoo! Mail - only $35 > a year! http://personal.mail.yahoo.com/ > - > [To unsubscribe, send mail to [EMAIL PROTECTED] with > "unsubscribe firewalls" in the body of the message.] > - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
