On Friday 23 January 2004 8:59 am, Sven Burgener wrote:
> Dear John
>
> John A. Sullivan III wrote:
> > Is there any point at which you could use DNAT/SNAT to change each
> > private address to a public address? Alternately, can you build a VPN
> > tunnel between the two and tunnel the private addresses through the
> > tunnel?
>
> Perhaps a VPN tunnel would be the best solution. How would such a thing
> be established though, given that both A and B have private addresses?
>
> The two connections between A <--> X and X <--> B need to somehow be
> interconnected. Can this be done with VPN?
You can connect anything you like with a VPN, because the whole point about
the P part of a VPN is that you are in charge of what it will route and what
it won't - it is your Private network, not part of the open public Internet.
The only reason you can't route private addresses across the Internet is that
all ISP routers drop packets sent to these address ranges.
You would set up your VPN system to forward these packets, just the same as
you can set up your own firewalls and routers to forward them if you want to.
A VPN with two RFC1918 ranges at each end is a very common setup.
Regards,
Antony.
--
"The joy of X!!?? I've always hated compiling graphical shite. You have a 10
line program, and it ends up depending on the entire known universe."
- Philip Hands
Please reply to the list;
please don't CC me.
