Hi, I'm trying to help out with sharing internet over a private WAN installed between two sites, unfortunately the routers are controlled by a company that won't respond to support requests, but they have provided some very basic documentation.
HEAD OFFICE:
�PROVIDER EQUIPMENT:
-Internet comes in via Juniper SRX100 (provider equipment)�Port 6 Juniper: Public IP Internet (IP Block, no NAT)�Port 7 Juniper: Private WAN, SUBNET �IP segment 192.168.1.2 - 192.168.1.5 (192.168.1.6 is used by a voip phone intercom)�Mask: 255.255.255.248�Gateway: 192.168.1.1 (Details as provided)
Head office customer Equipment:
-Meraki MX60 router, currently serving internet through port 6 juniper (Public IP) to local office.�
�FIELD OFFICE:�
PROVIDER EQUIPMENT:
-No Public internet connection�Juniper SRX100 (Provider equipment)�IP Segment: 192.168.2.3 - 192.168.2.6 (192.168.2.2 is used by voip phone intercom)�Mask: 255.255.255.248�Gateway: 192.168.2.1�
Field office customer equipment (Not configured on in use):�
-Draytek Vigor2830n wifi router (Has ethernet WAN port) ,��As you can see, the field office does not have public internet, only a private WAN over a small subnet. �
Question?
I'm looking for some help to configure the correct routing rules/setup for the Meraki and Draytek to share the head office internet over the private WAN. I assume the routing rules are in place on the Junipers as they have provided these details.
�I Think I need to do something along the lines of this?:��
Head office:�
1. Connect Port 7 of Juniper head office to Meraki MX60 as a new VLAN 20
2. Set subnet of VLAN 20 as 192.168.1.0/29 (Set VLAN 20 Meraki Appliance IP 192.168.1.2)
Field Office:
Setup Draytek Vigor2830n as �Internet: WAN IP 192.168.2.3 mask 255.255.25.248 gateway 192.168.1.2 (or 192.168.2.1 as provider says?), DNS: 192.168.1.2 (Meraki VLAN 20 in head office)
-Enable DHCP & NAT on Draytek (NAT to share internet of 192.168.2.3, configure as normal modem, e.g. 172.30.0.0 subnet)�
This is where I'm confused… the Meraki MX60 has gateway IP on VLAN 20 of 192.168.1.2 … but the provider details say Gateway IP is 192.168.2.1 .. Does that imply there is a route in the Junipers as such I should set the Draytek to gateway 192.168.1.2 so it knows to talk to the Meraki MX60 for internet?
Is is possible to share the internet with the current setup??��Many thanks in advance!