Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".


In IPSec VPN, can we share different subnets to two side of the VPN tunnel


I need to know that when we configure IPSec VPN tunnel, can we share different subnets to the two sides of VPN tunnel?

As a example, I need to configure that,

  1. Any one in LAN of the Head office need an access to the LAN of the Remote office.
  2. But Remote office LAN need the access for Server Zone and specific subnet in the LAN zone.

Can we do that in IPSec configurations?

Or can we do that from Access rules or something?

Category: Mid Range Firewalls

Best Answer

  • Options
    ArkwrightArkwright All-Knowing Sage ✭✭✭✭
    Answer ✓

    Use access rules to control access if it's going to be asymmetric.

    It is better if both sides agree on subnets at either end of tunnel because otherwise you get noise in the logs every time the VPN renegotiates.

Sign In or Register to comment.