Can anybody advise me? We've got two SRX5308 on different sites (A+B). The sites are currently connected using VPN but this is unstable. The provider of the fibre connection has made a direct connection on port 4 of the modems. This direct connection works, when plugging in my laptop on site B it recieves an IP from site A. VLAN's are used, one site A a corp VLAN of 192.168.178.x, on site B a corp VLAN of 192.168.225.x range. We want to disable VPN and configure the SRX5308's to send traffic to the new connection that the modem's have. So modem port 4 on site A is connected to the switch (wich is connected to LAN port 1 on the SRX. On site B the modem port 4 is connected to LAN port 2 on the SRX (port 1 is currenctly connected to the switch on site B and has al the VLAN's). How do we configure the SRX on site A and B? Only a connection of VLAN corp is needed. VLAN's are ste on the ports (switch and SRX) and static route was configured but we arn't able to get traffic back. Can somebody tell me what must be configured or if the setup is ok? Again, the connection of the modems port 4 between the sites is ok... WAN port 1 on both SRX's are connected to port 1 of the modems, providing internet. Please any help would be great!

Hi King-Marqy, Welcome to our community! :) It would be better if you can share your network topology to better understand your issue. Regards, JohnCarloV NETGEAR Community Team

Ok, thanks. Here's a drawing: Site A is connected to B using port 1 and VPN tunnel. New situation must be, no VPN tunnel, direct connection trogh port 4 on modem site A and B (this works, when connecting to port 2 of modem on site B an IP 192.168.178.x is given to my Macbook Pro. Thing is, i've tried to connect port 4 of the modem (patch) to LAN port 2 at site B and configure the SRX for translation... This didn't work, but there is a chance that some VPN tunnel configuration is conflicting with this.. But any config suggestions would be very appreciated. Port LAN2 at Site B has a static IP in the 178 range (192.168.178.253).

King-Marqy, As per my understanding, you now have 2 ISPs per site and it was connected to the port 4 of the modem going to port 28 of the M4100 switch. What you wanted now is to move your connections to this modem and remove the VPN from the SRX5308. It means that you wanted the fiber connection to be your main line. Is that correct? Regards, JohnCarloV NETGEAR Community Team

Well we have fiber as main and cable as backup line. The fiber modem is using port 1 for internet and port 4 for the direct lan connection. Currently VPN tunnel over fiber and if fiber failes over cable. The direct lan connection is however configured by the fiber provider on their modems port 4, so yes we want fiber to be the main line and we also know that if this failes the lan2lan connection won’t work over cable. Thanks for the repelt!

Situation is going to be different. On site b internet connection is going away, only the lan 2 lan via fiber is going to stay (from a to b).

Lan 2 Lan connection setup | NETGEAR Communities

12 Replies

JohnC_V
NETGEAR Moderator
Apr 04, 2019
Hi King-Marqy,

Welcome to our community! :)

It would be better if you can share your network topology to better understand your issue.

Regards,

JohnCarloV

NETGEAR Community Team
- King-Marqy
  Aspirant
  Apr 08, 2019
  Ok, thanks. Here's a drawing:
  
  Site A is connected to B using port 1 and VPN tunnel. New situation must be, no VPN tunnel, direct connection trogh port 4 on modem site A and B (this works, when connecting to port 2 of modem on site B an IP 192.168.178.x is given to my Macbook Pro. Thing is, i've tried to connect port 4 of the modem (patch) to LAN port 2 at site B and configure the SRX for translation... This didn't work, but there is a chance that some VPN tunnel configuration is conflicting with this.. But any config suggestions would be very appreciated. Port LAN2 at Site B has a static IP in the 178 range (192.168.178.253).
  - JohnC_V
    NETGEAR Moderator
    Apr 09, 2019
    King-Marqy,
    
    As per my understanding, you now have 2 ISPs per site and it was connected to the port 4 of the modem going to port 28 of the M4100 switch. What you wanted now is to move your connections to this modem and remove the VPN from the SRX5308. It means that you wanted the fiber connection to be your main line. Is that correct?
    
    Regards,
    
    JohnCarloV
    
    NETGEAR Community Team
SamirD
Prodigy
Apr 12, 2019
There's no reason the vpn should be unstable unless there's other routing issues, which I think there are possibly a lot (network loops and more) with the current layout.

What are you trying to accomplish because I think there's a much, much simpler way to do this as there are a lot of 'just not right' connections in that diagram.
- King-Marqy
  Aspirant
  Apr 12, 2019
  Currently the connection between A and B are active over port 4 of the fibre modem. Discard Site-B's backup ISP (Ziggo), it's not there (mistake). We want to have site A and B connected over the lan2lan connection. Site B will use Site A gateway to the internet. That's all. It would be great if the corp VLAN's could be intact, that means that we don't have to renumber (IP) Site B.
  - SamirD
    Prodigy
    Apr 12, 2019
    By lan2lan connection, are you referring to a vpn tunnel over the fibre connections?
    
    So basically you're just wanting all traffic from site B to go out via site A's connection, correct? Vlans intact if possible?

Forum Discussion

Lan 2 Lan connection setup

12 Replies

Related Content

RBR850 - Wired LAN connections slow

LAN Connection takes a long time

Network Setup with Multiple Routers on LAN as well as Orbi on LAN

CAX30 Lan IP

Nighthawk RAX43 LAN setup issues

NETGEAR Academy

ProSupport for Business