Chris Bullock wrote: > Background: > We are using Metro Ethernet to connect several sites to our main office. In > order to save money the telco has a couple of sites riding the same vlan > coming into us. One of these sites is one of our remote offices and the > other is a competing office. > > Problem: > Since we are on the vlan there is no way I can route without the possibility > of someone running a sniffer and sniffing my packets, so my goal is I want > all my traffic from my remote office to come through my main office even > Internet. To map this tunnel using isakmpd would I just create a tunnel to > 0.0.0.0? > Regards, > Chris >
Setup VPN between the remote offices and your main site. Aggregate all the traffic to your main site where you have internet connectivity using an IGP or static routes. Should solve your ethernet snooping-problem. /Jonas
