I have users that need to be able to work remotely. In their current environment they use workstations with unique software that requires their IP address remain the same. Now that they are working remotely, they are assigned a new DHCP subnet for the VPN remote access and the software no longer works.
I'm considering creating a NAT for the remote users IP address to their former LAN IP so the software would work. However, I'm concerned this would cause a conflict even though the NAT wouldn't be used until the laptop leaves the office and remotes in.
I may be able to reserve IPs based on the remote users login at my VPN/firewall, but this only would help a single office location and not every office has an Internet connection and firewall/VPN.
Those other offices are connected via a private WAN and NATting those LAN subnet IPs at the main office with Internet access would result in duplicate BGP advertisements on the private WAN.
Has anyone run into this before, is it possible to do? I expect I will end up running Citrix, RDP, or Terminal Services. However, I'm curious if there is a simpler way. Thanks.
–ALSO–
Here are some examples of threads in the same 'spirit', although I'm looking to utilize a software VPN client and not a site-to-site VPN configuration:
http://www.aminus.org/blogs/index.php/2005/04/16/site_to_site_bridged_ethernet_using_open_2?blog=2
Best Answer
The only way to properly do this, if their IP HAS to be the same as their desktop, is for them to RDP onto their desktop over the VPN.
Or fix the software that's got this ludicrous requirement