.org>" <
> dev@cloudstack.apache.org<mailto:dev@cloudstack.apache.org>>
> Subject: Re: VPC Site to Site VPN CIDR RFC1918
>
> We have no problem getting s2s to connect if the 'other end' from cs point
> of view is within rfc1918.
> Our problem is purely rela
@cloudstack.apache.org<mailto:dev@cloudstack.apache.org>"
mailto:dev@cloudstack.apache.org>>
Subject: Re: VPC Site to Site VPN CIDR RFC1918
We have no problem getting s2s to connect if the 'other end' from cs point
of view is within rfc1918.
Our problem is purely related to the limitati
-Original Message-
> > From: Erik Weber [mailto:terbol...@gmail.com]
> > Sent: Thursday, May 22, 2014 4:23 AM
> > To: dev
> > Subject: Re: VPC Site to Site VPN CIDR RFC1918
> >
> > The documentation says something else, excerpt:
> > " The difference from
> From: Erik Weber [mailto:terbol...@gmail.com]
> Sent: Thursday, May 22, 2014 4:23 AM
> To: dev
> Subject: Re: VPC Site to Site VPN CIDR RFC1918
>
> The documentation says something else, excerpt:
> " The difference from Remote VPN is that Site-to-site VPNs connects entire
In site-to-site vpn both sides need not to be under cloudstack control. Only
one site can be under cs control.
-Original Message-
From: Erik Weber [mailto:terbol...@gmail.com]
Sent: Thursday, May 22, 2014 4:23 AM
To: dev
Subject: Re: VPC Site to Site VPN CIDR RFC1918
The documentation
The documentation says something else, excerpt:
" The difference from Remote VPN is that Site-to-site VPNs connects entire
networks to each other, for example, connecting a branch office network to
a company headquarters network. In a site-to-site VPN, hosts do not have
VPN client software; they se
I guess you shouldn't use the site to site vpn but just a vpn. I am
not sure how to configure that but you should just create an active
(client side) vpn to the external network. I see no reason why it
should't work. the site to site assumes you have both sides in
cloudstack and thus with rfc1918 n
Site to site vpn.
I'm not in control of the 50.0.1 network, but the client is.
Basically the use case is that they want to secure the traffic to their
cloud vms, and are fortunate enough to not have to use rfc1918 on their
network.
I guess we could work around it by terminating the vpn on our e
Are you creating a site to site vpn or connecting to an external network?
On Wed, May 21, 2014 at 5:02 PM, Daan Hoogland wrote:
> Erik, If it doesn't work it is probably been blocked on purpose but I
> don't see why it is. I don't know your use case either and it seems an
> unlikely one. But if t
Erik, If it doesn't work it is probably been blocked on purpose but I
don't see why it is. I don't know your use case either and it seems an
unlikely one. But if the 50.0.1 net is out of your control you maybe
should be able to configure this. So I would say it is a bug/lack of
feature. I'll look i
I understand that, but what my client wants is to connect public ips
instead of rfc1918 on one of the sides.
e.g. one network has 10.0.1.0/24 and ip 1.2.3.4
the other has 50.0.1.0/24 and ip 50.0.0.1
but cloudstack currently does not let you do that, because it expects cidrs
to be rfc1918. see log
Erik,
The vpn let's you connect to all the computers in the network on the
other site on their private adresses. This means that you can give the
cidr of the remote network in the definition on vpn connection.
one network has 10.0.1.0/24 and ip 1.2.3.4
the other has 10.0.2.0/24 and ip 4.3.2.1
on
CK-6667
>
>
> Alex Hitchins | 07788 423 969 | 01892 523 587
>
> -Original Message-
> From: Erik Weber [mailto:terbol...@gmail.com]
> Sent: 21 May 2014 11:14
> To: dev
> Subject: VPC Site to Site VPN CIDR RFC1918
>
>
> http://cloudstack.apache.org/doc
hins | 07788 423 969 | 01892 523 587
-Original Message-
From: Erik Weber [mailto:terbol...@gmail.com]
Sent: 21 May 2014 11:14
To: dev
Subject: VPC Site to Site VPN CIDR RFC1918
http://cloudstack.apache.org/docs/en-US/Apache_CloudStack/4.2.0/html/Installation_Guide/vpn.html#site-to-site-vpn
http://cloudstack.apache.org/docs/en-US/Apache_CloudStack/4.2.0/html/Installation_Guide/vpn.html#site-to-site-vpnstates:
- *CIDR list*: The guest CIDR list of the remote subnets. Enter a CIDR
or a comma-separated list of CIDRs. Ensure that a guest CIDR list is not
overlapped with the VPC
15 matches
Mail list logo
