Hello everybody,
I need to bridge two different LANs with OpenVPN. According to all I read, both
LAN segments need to share the same subnet. All documentation refers to examples
within a /24 network.
As of now my own LAN is 10.10.1.0/24, the opposite side is 10.10.10.0/24.
To prevent the confusion that is preprogrammed by changing all IP numbers in one
LAN, would it make sense to change the netmask on all clients and both
gateways'' bridges to /16 ? This would put both segmants into the same
subnet, right?
This may be an immense waste of number space, but I doubt that I will run into
IP number scarcity in this private setup :),
Any drawbacks in using such a huge netmask, maybe I miss something obvious here?
Thanks in advance,
Hellmut
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
Hellmut Tümmler wrote:> I need to bridge two different LANs with OpenVPN. According > to all I read, both LAN segments need to share the same subnet. > All documentation refers to examples within a /24 network.> As of now my own LAN is 10.10.1.0/24, the opposite side is 10.10.10.0/24. > To prevent the confusion that is preprogrammed by changing all IP numbers > in one LAN, would it make sense to change the netmask on all clients > and both gateways'' bridges to /16 ? This would put both segmants into the > same subnet, right?Yes -- but so would /20. teastep@ursa:~/Support/Galia/shorewall$ shorewall ipcalc 10.0.0.0/20 CIDR=10.0.0.0/20 NETMASK=255.255.240.0 NETWORK=10.0.0.0 BROADCAST=10.0.15.255 teastep@ursa:~/Support/Galia/shorewall$ But what applications are you running that require the two LANs to be in the same broadcast domain? That''s the only reason that you would want to use a bridged configuration rather than a routed one. -Tom PS -- is there any way to configure your mailer to fold long lines at some nice length (74-80)? Each paragraph in your mail is one long line which makes quoting very inconvenience. -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/