Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Is there a way to "bridge" two distant VPNs together?
New Posts  All Forums:Forum Nav:

Is there a way to "bridge" two distant VPNs together?

post #1 of 4
Thread Starter 
All,

We seem to have a lot of VPN connections at work. Too many ... I can't keep track of what machines can talk to which. For this discussion, we can leave security concerns out the window. What I'd like to evaluate is to is create some sort of "vpn bridge proxy" to connect two sites together, without setting up a direct vpn between them.

Envision this type of network (this is a ridiculous example)

India
|
VPN
|
UK
|
VPN
|
USA


A machine in the UK can talk to India and vice versa. Similarly, USA can talk to the UK. But USA cannot talk to India. Obviously we could go through all the trouble of setting up a direct VPN across both, but i'm wondering if there's any way to "bridge relay proxy" all of the traffic across. smile.gif

Don't worry about dns... pure ip addresses.

10.5.0.0/16 is India
10.6.0.0/16 is UK
10.7.0.0./16 is USA


@ 10.7.2.3 $ ping 10.5.2.3
right now that is dead space. i'd like to have that respond, going through the UK as a middle man

somehow we build a node or a set or rules that cause this to go to some vpn gateway at 10.6.0.1 which then proxies whatever traffic over to the vpn gateway at 10.5.0.1 and all the way back.

make any sense? Any thoughts?
Edited by lloyd mcclendon - 1/7/12 at 4:48pm
stable again
(25 items)
 
  
CPUCPUMotherboardGraphics
E5-2687W E5-2687W ASUS Z9PED8-WS EVGA GTX 570 (Linux host) 
GraphicsRAMHard DriveHard Drive
EVGA GTX 970 FTW (win7 guest) 64GB G.SKILL 2133 2x Crucial M4 256GB raid1 4x 3TB raid 10 
CoolingCoolingCoolingCooling
2x Apogee HD  2x RX 480 2x MCP 655 RP-452x2 rev2 (new) 
CoolingCoolingOSOS
16x Cougar Turbine CFT12SB4 (new) EK FC 580 Gentoo (host) Gentoo (x23 guests) 
OSMonitorMonitorPower
windows 7 (guest w/ vfio-pci) Viewsonic 23" 1080P Viewsonic 19" Antec HCP Platinum 1000 (new) 
CaseOtherOther
Case Labs TH10 (still the best ever) 2x Lamptron FC-5 IOGEAR 2 way DVI KVM Switch 
  hide details  
Reply
stable again
(25 items)
 
  
CPUCPUMotherboardGraphics
E5-2687W E5-2687W ASUS Z9PED8-WS EVGA GTX 570 (Linux host) 
GraphicsRAMHard DriveHard Drive
EVGA GTX 970 FTW (win7 guest) 64GB G.SKILL 2133 2x Crucial M4 256GB raid1 4x 3TB raid 10 
CoolingCoolingCoolingCooling
2x Apogee HD  2x RX 480 2x MCP 655 RP-452x2 rev2 (new) 
CoolingCoolingOSOS
16x Cougar Turbine CFT12SB4 (new) EK FC 580 Gentoo (host) Gentoo (x23 guests) 
OSMonitorMonitorPower
windows 7 (guest w/ vfio-pci) Viewsonic 23" 1080P Viewsonic 19" Antec HCP Platinum 1000 (new) 
CaseOtherOther
Case Labs TH10 (still the best ever) 2x Lamptron FC-5 IOGEAR 2 way DVI KVM Switch 
  hide details  
Reply
post #2 of 4
Well it's very possible. Just about every business that has co-offices or remote locations use this type of connection. I know my office does.

We simply use 2 VPN systems connected to 2 dedicated T1 lines for our connection. I believe they're Cisco units that utilize L2TP, not completely sure on that.
    
CPUMotherboardGraphicsRAM
Intel Overdrive 486DX4 100Mhz Digital Venturis 466 S3 Trio 32 1MB 68MB 72 Pin SIMMs 
Hard DriveOptical DriveOSMonitor
1.2Gb & 270Mb 32X CD-ROM Windows 98 SE LG 23" Flatron 
KeyboardPowerCaseMouse
Microsoft PS/2 Lite-On Digital Venturis 466 Logitech PS/2 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Overdrive 486DX4 100Mhz Digital Venturis 466 S3 Trio 32 1MB 68MB 72 Pin SIMMs 
Hard DriveOptical DriveOSMonitor
1.2Gb & 270Mb 32X CD-ROM Windows 98 SE LG 23" Flatron 
KeyboardPowerCaseMouse
Microsoft PS/2 Lite-On Digital Venturis 466 Logitech PS/2 
  hide details  
Reply
post #3 of 4
Best way is to set the UK up as the DMVPN Hub and the US and India as spokes, that way your Interior routing protocol will be able to route traffic to all three destinations over the tunnels if you so wish.

http://www.cisco.com/en/US/products/ps6658/index.html

Hope this helps
    
CPUMotherboardGraphicsRAM
Intel i7 930 Gigabyte GA-X58A-UD3R EVGA GTX680 4Gb FTW 6Gb Corsair XMS3 Classic 
Hard DriveHard DriveCoolingOS
2 x Kingston 120Gb SSD RAID (Boot) 4 x 1Tb Samsung Spinpoints Corsair H80i Windows 8 Pro 
MonitorKeyboardPowerCase
Samsung 24" LED QPad MK85 (Cherry Red) Corsair TX850 Fractal Design R3 
MouseMouse Pad
Zowie EC1 eVo Zowie Swift 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel i7 930 Gigabyte GA-X58A-UD3R EVGA GTX680 4Gb FTW 6Gb Corsair XMS3 Classic 
Hard DriveHard DriveCoolingOS
2 x Kingston 120Gb SSD RAID (Boot) 4 x 1Tb Samsung Spinpoints Corsair H80i Windows 8 Pro 
MonitorKeyboardPowerCase
Samsung 24" LED QPad MK85 (Cherry Red) Corsair TX850 Fractal Design R3 
MouseMouse Pad
Zowie EC1 eVo Zowie Swift 
  hide details  
Reply
post #4 of 4
Thread Starter 
^ yes very much thank you. now i've got something to google on.
stable again
(25 items)
 
  
CPUCPUMotherboardGraphics
E5-2687W E5-2687W ASUS Z9PED8-WS EVGA GTX 570 (Linux host) 
GraphicsRAMHard DriveHard Drive
EVGA GTX 970 FTW (win7 guest) 64GB G.SKILL 2133 2x Crucial M4 256GB raid1 4x 3TB raid 10 
CoolingCoolingCoolingCooling
2x Apogee HD  2x RX 480 2x MCP 655 RP-452x2 rev2 (new) 
CoolingCoolingOSOS
16x Cougar Turbine CFT12SB4 (new) EK FC 580 Gentoo (host) Gentoo (x23 guests) 
OSMonitorMonitorPower
windows 7 (guest w/ vfio-pci) Viewsonic 23" 1080P Viewsonic 19" Antec HCP Platinum 1000 (new) 
CaseOtherOther
Case Labs TH10 (still the best ever) 2x Lamptron FC-5 IOGEAR 2 way DVI KVM Switch 
  hide details  
Reply
stable again
(25 items)
 
  
CPUCPUMotherboardGraphics
E5-2687W E5-2687W ASUS Z9PED8-WS EVGA GTX 570 (Linux host) 
GraphicsRAMHard DriveHard Drive
EVGA GTX 970 FTW (win7 guest) 64GB G.SKILL 2133 2x Crucial M4 256GB raid1 4x 3TB raid 10 
CoolingCoolingCoolingCooling
2x Apogee HD  2x RX 480 2x MCP 655 RP-452x2 rev2 (new) 
CoolingCoolingOSOS
16x Cougar Turbine CFT12SB4 (new) EK FC 580 Gentoo (host) Gentoo (x23 guests) 
OSMonitorMonitorPower
windows 7 (guest w/ vfio-pci) Viewsonic 23" 1080P Viewsonic 19" Antec HCP Platinum 1000 (new) 
CaseOtherOther
Case Labs TH10 (still the best ever) 2x Lamptron FC-5 IOGEAR 2 way DVI KVM Switch 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Is there a way to "bridge" two distant VPNs together?