ScreenOS Firewalls (NOT SRX)
ScreenOS Firewalls (NOT SRX)

Policy Based VPN in the VR - IP conflict bypass

03.30.11   |  
‎03-30-2011 06:33 AM

Hi,

I want to make sure the following setup is doable.

 

We have 2 customers

Corp1 with the following IP range 192.168.0.0/24 [ from 192.168.0.1 to 192.168.0.100 ]

Corp2 have the same above range

 

connectivity as follows

 

Router1 <--> FW1 <--> Internet

 

For Corp1 we have the following traffic flow

Corp1 Client <-->Corp1 VRF [Router1] <--> Corp1 VR [ FW ] <--> ISP VR [ FW ] <--VPN via Internet--> Corp1 Server

 

For Corp2 we have the following traffic flow

Corp2 Client <-->Corp2 VRF [Router2] <--> Corp2 VR [ FW ] <--> ISP VR [ FW ] <--VPN via Internet--> Corp2 Server

 

The ISP VR is a common VR for both Corp customers. Can I bypass IP conflict in this VR by having a policy based VPN ?

 

Also, attached a diagram

 

Regards,

Mubarak

Attachments