How to configure Speedfusion on this architect


#1

hello

i want to implement the speedfusion i have one peplink on the HQ and pepwave on A1.

on HQ i have tree connection one LL with public ip.
the second DSL on R1 on nated router.
the last one DSL on R2 on nated router and used for smtp trafic.

On the A1 i have two router DSL in front of peplink on nat.

i want to configure speedfusion between HQ and A1.

otherwise i have an ipsec between HQ and B1 on the firewall.

Could you please give me your proposition to implement this use case.


#2

Hi @semmour,

It appears that you have the same network segment at the HQ site on WAN R1 and the LAN of the Peplink, you may want to correct this. At the HQ site, it would be preferable to have the R1 & R2 modem/routers in bridged mode to pass on the public IPs to the Peplink. You can utilize the built in DDNS or Find My Peplink functionality built into the WAN links to keep an associated hostname updated with the current IP.

With public IPs on the WAN links at the HQ site you can then build the tunnel(s) from the remote sites to the associated IPs or hostnames of the WAN links at HQ. When NATing to the WAN you cannot build a tunnel to that link without port forwarding setup, just unnecessarily complicates things.

As a general rule of thumb, the HQ site should have public IPs on the WAN(s) to facilitate peers building tunnels to the site from behind NATed devices ie. ISP modem/routers or a cellular link, etc.

I hope this helps.


#3

Hi

Thanks for reply, good thing to use bridge on router.

Outherwise, for the same subnet used on the R1, i used the drop-in mode.

Also i recieve email via R2, how can i keep this working behind peplink ?

Best regards