Bridged Layer 2 VPN and DHCP Servers
7 hours ago, Speedbird said:Hello.
I'm building a site-to-site VPN between 2 LANs, and I have a question about how would DHCP work on such a network. I will have 2 DHCP servers on the VPN and I want devices on one network to get an IP address from a DHCP server on the same physical LAN and use the router on the same LAN to connect to the Internet, and not the one on the other LAN. How would this work? Would a newly connected device get an IP from a local DHCP server? Would it even be able to contact a DHCP server on the other site?
This is the main reason why I'm skeptical about layer 2 bridging. I need devices to use the local router to connect to the internet, not the one on the other site. I know I wouldn't have such problems with layer 3 routing, but that seems more difficult to set up with the VPN software I'm using.
I would just create a layer 3 VPN, it will be the easiest and most flexible. If you want a security layer for the VPN just use regular IPsec, by default it doesn't allow multicast/broadcast traffic to pass through. If you want to allow some multicast/broadcast traffic but not others, I'd use GRE, and IPsec if you want the security layer.
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now