11341 questions

13515 answers

21177 comments

31673 members

0 votes
98 views 7 comments
by
Hello,

I have the following issue:

I have two sites with fibre cable between, this cable has been damaged and the connection is now lost.

Site A need to have connection with site B in order to operate. So I configured a RUT955 at site B and established a IPsec VPN to site A (Sonicwall is installed on Site A). Site A: 192.168.10.0/24  Site B: 192.168.20.0/24

But then i ran into another problem, the communication between the sites is Profinet, which doesnt support subnetting. So i need Site A and Site B to be on the same Subnet. Is there anyway to do this?

1 Answer

0 votes
by

Good afternoon.

Thank you for your question.

In this situation, you could use an OpenVPN in tap(bridged) mode. However, this would require you to have the same Ip subnet at both ends. I believe it might be more convenient to change your Site B(RUT955) Subnet to 192.168.10.0/24 so it would match Site A network subnet.

This way you would create a network bridge between these two locations and would avoid the need for subnetting.

OpenVPN TAP/Bridge mode configuration example:

https://wiki.teltonika-networks.com/view/OpenVPN_configuration_examples_RUT_R_00.07#TAP_.28bridged.29_OpenVPN

Please review OpenVPN TAP/ Bridge mode configuration and feel free to ask questions regarding it.

Best Regards,

Anton F.

by

Thank you for your answer I will look into this solution, tomorrow when I am back at the office and give feedback.

I came across another option with IP sec that might be possible here: 

https://community.teltonika-networks.com/39454/rut950-ipsec-vpn-overlapping-subnets

Do you have a recomendation on what would be the "best" solution?

by
Unfortunatly the Sonicwall in the other end doesnt support OpenVPN so I didnt get i to work.
by

Hello.

Ok, what's VPN type support you Sonicwall.

Thank you.

by
The sonic wall supports IPsec
by
IPSec with overlapping subnets won't work as Profinet requires L2 data being passed while IPsec works in L3.

If OpenVPN is not available then L2TPv3 can be used:

https://wiki.teltonika-networks.com/view/RUTX11_VPN#L2TPv3
by
Yes, that was our conclusion as well unfortunatly.