Re: Home Office VPN with Dynamic IP

AKorb Wed, 19 Sep 2001 04:56:02 -0700

Well Andy,

First of all, you need to check with your cable and adsl  services suplier
how they�re implemmenting dhcp, because as far as i know each equipement
may do it�s registration  with the central (cmts and dslam) with its MAC
addreses, and the central can have associated with the equipement (cable
modem or adsl modem) MAC address just one IP address, so no matter if it�s
using DHCP you will allways receive the same IP address.

If not, that is, if they have implemented dhcp to give you dinamic IP
addresses you must check two things: 1) if the dhcp is using a refresh
mechanism.  What this mean: you turn on your cable modem and he gets the IP
from the dhcp server and start to work. If the service supplier is not
using dhcp refresh, meanwhile you don�t turn off the modem you will use the
same ip address so you can configure your VPN smoothly

2) if your modem are always getting different addresses you must check
another things: what kind of tunnels you can do using watch guard: using
the public IPs or your private IP addresses (10.10.10.x or 172.168.x.y). I
have done this with sonicwall or nexland (ISB2lan) boxes and it works fine.

Don�t forget that the best thing to do is contatc watchguard support to see
what they recommend .

Alexei.








                                                                                       
                       
                      "Andy Jonkers"                                                   
                       
                      <a.jonkers@wanadoo     Para:   "Firewall Users List" 
<[EMAIL PROTECTED]>         
                      .be>                   cc:                                       
                       
                      Enviado Por:           Assunto:      Home Office VPN with 
Dynamic IP                    
                      firewalls-admin@li                                               
                       
                      sts.gnac.net                                                     
                       
                                                                                       
                       
                                                                                       
                       
                      18/09/01 17:08                                                   
                       
                                                                                       
                       
                                                                                       
                       




Hey,

We want to connect Home Offices with more than one PC to our Local Network
using IPSec VPNs. All our home offices have or a (A)DSL or a Cable Modem
connection. Those Internet connection for our home offices receive one
official IP dynamically. This means those addresses can change frequently
depending on the lease period.
But, as mentioned before, those home offices has more than one PC. So I
need Site to Site VPN connections, with dynamic addresses at the home
office site.

I can supply a solution for this using WatchGuard SOHO boxes connected to a
WatchGuard Firebox II, using a protocol called DVCP.

What I like to know, are there other vendors who can supply me a likely
solution, and how they implement it ?

Regards,
Andy



_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
Re: Home Office VPN with Dynamic IP

Reply via email to
