Basic VPN Configuration for Linksys RV042 Router and Windows XP

We need to setup VPN with the RV042 and remote Windows XP clients, but Linksys provides no documentation on this.  :(

I have placed a screenshot of the RV042's VPN tunnel setup interface on our web server here: http://www.newlands.cc/temp/vpnsetup.gif
I'm not sure if we should use "Tunnel" or "Group VPN" mode either.  I can post screenshots of the Group mode if that will help.

Our LAN is running Windows XP Pro workstations and Windows 2000 Server in workgroup mode.  Our subnet is 192.168.111.1.

We want to be able to connect remote users running Windows XP with the Windows VPN client.    

Our security needs are very simple -- we want the simplest, most flexible authentication possible: hopefully, just  passphrase.

What I want are instructions on which values we need to set and how.

Thanks!
Donald Newlnads
donaldnewlandsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

donaldnewlandsAuthor Commented:
Is this question too hard for 500 points?

-Donald Newlands
0
Tim HolmanCommented:
So this link didn't help then ?  ;)

http://www.linksys.com/support/support.asp?spid=86
0
donaldnewlandsAuthor Commented:
Nope.

We tried it, but the router configuration screen they show is different than the RV042.  We can't find any documentation on this that is specific to the RV042 -- that's why I posted a link screen shot of the configuration page above.

Also, I've found mention of someone making the RV042 work with clients setup using the XP new connection wizard -- much, much simpler than the procedure on the Linksys page.

The configuration described on the linksys link also seems to assume that the client is not using NAT...   I have a feeling that NAT is the nub of my problem.   My cable router has VPN passthrough, but it doesn't offer any configuration.   I think that I've got all ports on the router open to this workstation.

If it makes it any easier, I can also use SSHSentinel 1.3.  

Would it be much simpler if I just bought a second RV042?

-Donald

0
Hey MSSPs! What's your total cost of ownership?

WEBINAR: Managed security service providers often deploy & manage products from a variety of solution vendors. But is this really the best approach when it comes to saving time AND money? Join us on Aug. 15th to learn how you can improve your total cost of ownership today!

Tim HolmanCommented:
So things look like this:

Office network
|
Linksys (VPN hub)
|
Internet
|
Cable router
|
Home
|
Windows XP

?

Try adjusting the MTU on the client:

http://www.dslreports.com/faq/695

Also, instead of IP only, select 'Dynamic IP + email..' and somewhere there should be a setting under VPN saying 'Client to Gateway'.

NAT shouldn't be a problem - all modern equipment supports VPN passthrough.

Also, try Group 2, 3DES and SHA-1 for authentication.  I'm not too sure that the XP client will allow plain DES ?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
donaldnewlandsAuthor Commented:
No luck so far with any of these tricks. :(

I'm thinking now that our problem is the Actiontec DSL modem from Qwest we're using.  I wonder if, even in bridge mode it might be preventing IPsec data from coming in.  

-Donald
0
Tim HolmanCommented:
Does it work if you use a standard dial-up connection instead ?
0
Tim HolmanCommented:
PS - was the diagram I put up correct ?
0
donaldnewlandsAuthor Commented:
Tim,
Yes your diagram was correct.  

We're now having OK luck with a second Linksys here with the same setup as the one at the office.  

Getting it going involves repeatedly submitting "connect" at either router and it will drop the connection if nothing uses it for a few hours :(, but it works -- almost.  

I'm about to post a new question about why we can't see our Linux server across the VPN at all...

Thanks for your help!

0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.