Newsroom Update
Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >
Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >
Hi everyone,
I need to setup a site to site VPN beteen my HQ (malaysia) and branch (australia).
http://computer.howstuffworks.com/vpn4.htm
Can I use L2TP VPN for this to work?
I need to make sure it is secure and the connection is always up for connectivity.
I will mostly use it for asterisk phone calls between HQ and Branch. We will communicate within the network via SIP protocol.
Any help? Thanks.
Mac mini, Mac OS X (10.7)
I don't have the answer but I do have a suggestion on VPN in general which may apply when you get further along. Make sure the IP address range at each end of your VPN tunnel is differnt. ie...Location one's range could be 10.11.200.x and location two could be 192.168.200.x but both could not be using the same range of address like....10.0.0.x.
If the ranges are the same on each end you will not be able to browse for computers or servers via IP address or much of anything else either. Having the same IP address range on each end results in a lot of netowrk confustion. The VPN thinks you have a huge network with conflicting address and seems to just shut down all browsing.
Just a thought..
I don't have the answer but I do have a suggestion on VPN in general which may apply when you get further along. Make sure the IP address range at each end of your VPN tunnel is differnt. ie...Location one's range could be 10.11.200.x and location two could be 192.168.200.x but both could not be using the same range of address like....10.0.0.x.
If the ranges are the same on each end you will not be able to browse for computers or servers via IP address or much of anything else either. Having the same IP address range on each end results in a lot of netowrk confustion. The VPN thinks you have a huge network with conflicting address and seems to just shut down all browsing.
Just a thought..
sounds like a limitation, but maybe l2tp is not suitable for site-to-site VPN.
Using Mac OS X Server to make a site-to-site link was theoretically possible with Mac OS X 10.6 Server. It was done via a command-line option called s2svpnadmin
Note: Apple seem to have removed a lot of old (even Lion) documents from their site so I am posting a Google cache URL above, however even the Google Cache will loose it soon.
You could in Lion or Mountain Lion Server run the following command to see if the s2svpnadmin utility is still available
man s2svpnadminUnfortunately Apple have been dumbing down their server software so that while it is becoming simpler to setup it is also becoming far less capable. 😟
Personally, I would consider using a hardware device for doing site-to-site VPN links. Most business class Firewalls have VPN capabilities to do this. Most consumer level routes/firewalls do not.
Thanks, i will better get a hardware to do that then 🙂
L2TP VPN - can this be used for site-to-site VPN?