D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: hanc on June 23, 2010, 01:25:16 PM

Title: routing branch office Internet access through IPsec VPN tunnel
Post by: hanc on June 23, 2010, 01:25:16 PM

Hello all,

I'm not able to solve following case. My customer has main office with DFL-800 router and branch office with DFL-210. We have established Ipsec tunnels between them and everything works perfectly. Now they needs to prevent brach office users from access Internet over branch line and force them use main office Internet connection (for monitoring and restrictions). My question is how to configure routing rules to send Internet traffic through Ipsec tunnel? I'm able to configure it with PPTP tunnels, where are gateway IP's of PPTP interfaces (with routing rules), but not with Ipsec.

Thank you for help
hancik

Title: Re: routing branch office Internet access through IPsec VPN tunnel
Post by: Fatman on June 24, 2010, 09:55:23 AM

It is simply a matter of ensuring you have routing tables and IP rules that work for this.  It might be easier to write a secondary routing table and a routing rule so that your lan traffic gets egressed to the tunnel.

Ensure you have IP rules for all this traffic, that is crucial and easy to overlook.

Title: Re: routing branch office Internet access through IPsec VPN tunnel
Post by: danilovav on June 25, 2010, 03:22:29 AM

Additionally, you need change in IPsec networks - all-nets on main office (DFL-800).