A central services VPN is used when more VPNs need to share a common set of servers. These servers reside in the central services VPN, and all other VPNs have access to this VPN. Those VPNs, however, are not able to see one another. The central services VPN is implemented using two RT extended communities, where one imports networks into the VPN and the other exports networks. The client sites do the opposite. Two RT extended communities are needed to prevent client sites from exchanging routing information. This lesson looks at central services VPN solution topologies and how routing updates within that topology would flow, and discusses the implications of combining a central services VPN with a simple customer VPN.
Was this article helpful?