<div dir="ltr"><div dir="ltr"><div class="gmail_default" style="font-family:monospace,monospace"><span style="font-family:Arial,Helvetica,sans-serif">On Mon, Mar 6, 2023 at 7:45 AM Barry Martin <<a href="mailto:barry3martin@gmail.com">barry3martin@gmail.com</a>> wrote:</span><br></div></div><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<div>
<p><br>
</p>
<p><br>
</p>
<blockquote type="cite">
<pre>I have two properties in different geo's with an IPSEC tunnel between
them. I want to setup an HDHOMERUN in location B and have the backend
at location A use it.
Location A is 192.168.0.x addressed. Location B is 10.0.0.x addressed.</pre>
</blockquote>
<p>As the others have said, a computer on one network will not see a
computer on another, BUT one can tell a computer to have a second
IP address. I have only tried it with a different subnet (?) --
whatever the third set in the dotted quad is called. My original
was 192.168.4.x, wanting to look at 192.168.0.x. I haven't tried
with the 10.x.x.x group but seems like it should work.<br>
</p>
<p>On a computer with a static address of 192.168.4.22 I entered:<br>
</p>
<p> </p>
<p style="line-height:100%;margin-bottom:0in">
sudo ip addr add <a href="http://192.168.0.199/24" target="_blank">192.168.0.199/24</a> broadcast 192.168.0.255 dev
enp1s0 <br>
</p>
<p style="line-height:100%;margin-bottom:0in"><br>
</p>
<p style="line-height:100%;margin-bottom:0in">Now the machine has
both 192.168.4.22 and 192.168.0.199 and can communicate with
machines on both networks. Good news is on reboot the added
address goes away so if a mistake is made it is not permanent. <br>
</p>
<p style="line-height:100%;margin-bottom:0in">The 'enp1s0' at the
end is the NIC device (can be determined from the ifconfig
output).</p>
<p style="line-height:100%;margin-bottom:0in">Good Luck! Hope
this either solves your problem or leads you to a solution!</p>
<p style="line-height:100%;margin-bottom:0in">Barry</p></div></blockquote><div><br></div><div class="gmail_default" style="font-family:monospace,monospace">So, the easiest way to do this is use a TAP or VXLAN interface so multicast and broadcast packets will traverse the link. With IPSec, you are SoL. I use OpenVPN for this exact thing, but VxLAN seems to be gaining more home raction rather than it's data center centric model.</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">Anyhow - OpenVPN with TAP interfaces will allow you to see the HDHomeRuns broadcast packets on both sides assuming you add a secondary IP address on both sides that matches. I do this for our work VPNs today.</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">If you want some configs, let me know - </div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">-Greg </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div><p style="line-height:100%;margin-bottom:0in"> </p></div></blockquote></div></div>