• ramble81
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    4 months ago

    That’s doable too. A lot of people don’t realize you can route all of those together. It’s even more fun as technically you can route private addresses across public links if you own both ends of the link. Used to see that done at a large ISP to route their internal network and it’d pop new networking admins minds.

    ETA: I would use 192.x IPs for unrouted subnets like heartbeats or iSCSI.

    • Natanael@slrpnk.net
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      4 months ago

      Common to see big businesses with multiple locations using P2P VPN binding together all sites like one big LAN. Perhaps not ideal from a security standpoint to have the client network so flat, but eh 🤷

      Usually a handful of extra important servers are behind an extra layer of firewall rules and/or on a different VLAN with limits on what devices can connect to them.