Link to home
Avatar of mancoi
mancoi

asked on

Trouble with a Linksys WRT54G VPN using quickvpn client.

I am having a problem with connecting to my VPN. I try to connect and ger an error message saying.....
The remote gateway is not responding. You will now be disconnected. Please try again.

I have the latest firmware.
I enables port triggering of 500, 443, 1723, 50, 51 and 88.
I used an outside IP address to nat to my VPN.
I disabled DHCP trying to get it too work. I have a DHCP server already. Plus it didn't work when it was enabled.
I am not using any firewalls on my network or on the remote laptop.
I am using quickVPN client.
I made a VPN user on the router.

Got any ideas, does anyone need more info.
Please help.
Avatar of Luc Franken
Luc Franken
Flag of Netherlands image

Hello mancoi,

One thought, as you're using QuickVPN, are by any chance the subnet on both the local and remote network the same? If so, please change one of them.

Appart from this, you might want to take a look at a previously asked question on Experts-Exchange, a lot of common problems are listed there.
https://www.experts-exchange.com/questions/21770682/RV042-and-Quick-VPN.html

- The router on the client side might not support the IPSec pass-through correctly or it's disabled. Check the "security" => "VPN" tab in the userinterface of your WRT54G.
  To make sure, try the connection when the client is directly connected to the modem, the WRT54G on your home site should not cause any troubles, but in case it does; please let us know the version so we might be able to verify what's going on.

- A lot of problems seem to appear when the client is on a 56k or ISDN connection
- Make sure no other VPN clients are installed on the computer

You can find a nice walk-through on linksysinfo.org:
http://www.linksysinfo.org/modules.php?name=Forums&file=viewtopic&t=11664
Although this guide is for the WRV54G, it also applies to the RV042, RV082 and RV016 routers (only the location of several things in the setup menu are different as you will notice)

Best regards,

LucF
Since you mention the WRT54G I assume the VPN router is at the other end. Which model is that?
-Make sure you have the latest firmware and QuickVPN client (ver 1.1.00)
-Enable IPSec pass-through on the WRT54G
-You need no port forwarding or port triggering at either site for the VPN as the router itself is the VPN endpoint.
-It appears you are connecting the QuickVPN client from behind the WRT54G. For some reason the QuickVPN client often does not work from behind that router. Try connecting directly to the modem as a test. Make sure the windows firewall is enabled and Windows and Virus updates are current for security
-Are either of the modems combined modems and routers? If so they need to be put in bridge mode.
Avatar of mancoi
mancoi

ASKER

No Firewalls on either side. I had out T-1 company NAT an external IP address to The Wan IP address of the linksys )10.0.0.115)
I checked the remote computer's router to see if there were settings that would prevent access to the linksys VPN.
I even enabled DMZ and DHCP....Rebooted and still not working...
Please click this link: I uploaded all screen shots to www.youusendit.com
Let me know if you need other screen shots.
Thanks
http://download.yousendit.com/8207AC912E5E238B
To the best of my knowledge Linksys router's WAN interface has to have a public IP won't work with Private IP (10.0.0.115).
Avatar of mancoi

ASKER

but it has NAT from an public IP.
Just a redirection from the public to private.
I am highly doubtful.
What router is the VPN endpoint. I assume you are connecting from the WRT54G.
Avatar of mancoi

ASKER

I am on the actual network.....I need remote clients to access this network....
They try to connect from outside the network to the VPN.
I need more information as to your VPN basic configuration.
 
You mentioned you are using the QuickVPN client. The QuickVPN client connects to a Linksys router that supports VPN connections, such as the RV042, RV082, and WRV54G.
The WRT54G is not a VPN router, unless they changed it. It does support VPN pass-through to a VPN server, but you would have to configure that using Windows or Linux and then you cannot use the QuickVPN client. Therefore, I assumed you were connecting to another site with a different Linksys router.
I think we are missing some basic VPN configuration components.
In case you are not familiar with VPN’s; there are 3 common methods for creating a VPN
1-      Site-to-site
This allows all users from one site to connect to another site. Though this can be done with software using options such as Windows RRAS server, it is usually done with 2 VPN routers. The connection is configured on the routers, usually using IPSec, and the connection is always available
2-      Client-to-site with VPN router
A second method is to install VPN client software on a single user’s computer, and have them establish a connection with a VPN router. Once connected they can authenticate to the network and access all resources. The VPN is configured on the router and client software and again usually using an IPSec client. This method is great for mobile users but in most cases does not allow multiple users at the same physical remote site
3-      Client-to-site with VPN server
This method as far as usability , is much like the one above, but a server on the primary site has to be configured to accept incoming VPN connections. In Windows this is usually done using RRAS, though it can be set up for a single user with XP/2000. If using Windows the client uses the built-in Windows VPN client to connect, and the main office site only requires a router with port forwarding and VPN pass-through capabilities, as all VPN traffic is forwarded to the VPN server, rather than terminating at the router.

The WRT54G is intended for use in scenario 3
The WRV54G, RV042, and RV082 are designed to be used with the QuickVPN client in scenario 2. You can also use two of these routers, as well as others, to build a site-to-site tunnel as in scenario 1.
Avatar of mancoi

ASKER

Thanks for the clarification.
I am using scenario 2. I have a remote user using client VPN software ( quickVPN). I configured the quickVPN to use a public address that is NAT to a private IP address of the WRV54G. I specified a username and password on the WRV54G for the remote users to use.
I want the clients to use the quickVPN to connect to the WRV54G on my internal network to access all resourses on my internal network when they are working out of the office.
Please let me know if you need more info or if I need to detail any parts of my configurations.
Ah, you are using a WRV54G. That should work fine except I doubt you will get it to work with a private IP, 10.x.x.x, I have never seen it work. Linksys router needs to "sit" on the Internet with a public IP.
Avatar of mancoi

ASKER

But if it is using NAT it is like it is sitting outside the internal network. Any traffic that hits that public IP address gets redirected to the VPN router.
I should be more specific, that Linksys, won't work as it does not support NAT-T (NAT -Traversal), unless a recent firmware upgrade has added the option.
Avatar of mancoi

ASKER

ok..Thanks for the info
What VPN hardware would you recommend to use in my situation?
Thanks

ASKER CERTIFIED SOLUTION
Avatar of Rob Williams
Rob Williams
Flag of Canada image

Blurred text
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Thanks mancoi. Good luck with it.
--Rob