?
Solved

Need help on VPN RV042 to WRV54G site-to-site setup

Posted on 2006-05-06
7
Medium Priority
?
1,180 Views
Last Modified: 2012-06-21
I have a DSL router from SBC (2wire) which doesn't support VPN passthrough.  So I set
DMZ to linksys RV042 (there is no separate DMZ port on this 2wire). 2Wire then assigns
its external IP 71.xxx.xxx.216 to this linksys RV042.  At this point, I guess RV042 WAN1
is equivalent to 2wire WAN interface.  2Wire is setup to provide DHCP for 10.0.0.xxx
and RV042 is 192.168.1.xxx.

Basically, I want to setup so that 192.168.5.x can VPN tunnel to 192.168.1.x but
not 10.0.0.xxx.

1. Is it possible with these devices or should I setup differently ?
2. 10.0.0.xxx and 192.168.5.x can connect to Internet fine but not 192.168.1.x.
3. 192.168.1.x cannot talk to anyone except RV042. BTW, RV042 is setup as gateway
    and not a router.
4. Tunnel between RV042 and WRV54G doesn't work.
5. Should I use port forwarding instead of DMZ from 2wire to RV042?

Here is a setup.
                                                                                  |----- 10.0.0.xxx
                                                            SBC DSL          |
192.168.5.x---WRV54G---- Internet ---- 2wire reouter----+-----RV042-------------192.168.1.x
                                                       (71.132.10.216)        (71.132.10.216)
                                                                                       DMZ assigned by
                                                                                        2Wire router

Thanks,
Adisorn.
0
Comment
Question by:aermongk
  • 4
  • 3
7 Comments
 
LVL 78

Accepted Solution

by:
Rob Williams earned 375 total points
ID: 16621588
What you really want to do is put the SBC (2wire) DSL router in Bridge mode, assuming it is an option. Then all local clients on the same subnet 192.168.1.0 or any similar, on the LAN side of the router, and then using the VPN configuration only allow a specific block/range of IP's to connect to the remote site.
0
 

Author Comment

by:aermongk
ID: 16626999
Hi Rob,

Thanks for suggestion.  I like your suggestion better because I can remove 2wire out of the picture
completely after creating bridge.  But I ended up making my configuration to work.  Here is the story.

I did what you'd  suggested by creating a bridge (2wire does has that feature) but it still didn't work.
I was really frustrated. I believe I did everything right.  Finally, I reverted to my old configuration but
then I couldn't login to my RV042 so I had to do a hard reset (button pressed on the back of the RV042)
to reset all configuration to default.  Then I put my configuration back together and walla!!! it works.
I think RV042 was stucked in strange state or configuration, soft restart or power recycle will not reset it.
BTW, I've got RV042 from somewhere else (not new) but the WRV54G is new.

So I don't want to touch it once it works therefore I didn't put it back to bridge mode, which I agree
with you is a preferred mode.  I am afraid it won't come up again.  I spend too many days on this already.
When I have more free time, I will revisit this and set it to bridge mode.

BTW, just a curiousity, after VPN is connected. I found that connection is not too stable.  It works
for few minutes and then down.   Did you have experience that?

Thanks,
Adisorn.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16627309
I too have noticed on occasion some of the Linksys routers can lock up and need to be powered off to reset properly. You also might want to consider updating the firmware for both routers. Linksys keeps adding features and resolving "issues". As for stability, I have found the RV042's to be very stable. There is a "Keep alive" option in the VPN configuration. Have you enabled that?

and thank you Adisorn, for the points.
--Rob
0
What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

 

Author Comment

by:aermongk
ID: 16627774
Since VPN is up, I have to reset WRV54G three times already but not RV042.  I agree,
it seems that RV042 is more stable. I will try enabling Keep Alive.  And thanks for your help.

Adisorn.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16627814
Does the WRV54G loose it's Internet connection, or just the VPN connection? I would check if there is more recent firmware, or re-install the current firmware if no newer version is available. It should not loose the connection like that.
0
 

Author Comment

by:aermongk
ID: 16632455
The WRV54G loses its Intenet connection and has to be power recycled for those 3 times.

The morning I check the VPN connection and it was lost so I have to disconnect and reconnect
and everything is fine (no internet connection lost here).

I do have the latest firmware.  I remember one the action I did to cause it to lose internet connection
is when I try to access linux nfs mount from remote site (BTW, I am using Linux FC-4).   But I try
this same action again and it works now.  I now have keep-alive enabled as well.

Anyway, today it hasn't lost connection yet since this morning.

Thanks,
Adisorn.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16632478
If it should continue to fail, you might want to talk to the service provider. Might be their problem or the modem.
Good luck Adisorn.
--Rob
0

Featured Post

What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question