Solved

RV042 and PTP tunnel

Posted on 2011-02-18
5
760 Views
Last Modified: 2012-05-11
When you set up a PTP tunnel in the RV042 and are configuring the Local IP and Outside IP (peer)on one side and the remote Peer and IP on other side, doesn't the router automatically NAT the Local IP's traffic to the Peer IP when you are sending through the tunnel?  Or do I have to NAT an IP range separately in order to transmit traffic to the other side?  
I have established PTP tunnels with various router and have not had to specifically NAT any inside IPs to the Peer.  Why am I having trouble with the remote location, and why is there IT asking me to NAT?
Help please.
0
Comment
Question by:neumonicmike
  • 3
  • 2
5 Comments
 
LVL 90

Expert Comment

by:John Hurst
ID: 34930678
When you set up a tunnel in an RV042 (under the VPN tab when you log into the RV042), you assign the remote IP and the remote subnet as well as the local IP and the local subnet. Then you set up the VPN security and the RV042 will look after everything else. You need to select Gateway <--> Gateway when setting up the tunnel initially because the RV042 can also do Gateway <--> Client. You may have to (down in Advanced Settings in the tunnel setup) select NAT Traversal. The default for NAT traversal is off (not set)

... Thinkpads_User
0
 

Author Comment

by:neumonicmike
ID: 34930888
So you have to turn NAT traversal on in order for it to NAT the traffic from the local subnet to the local router address or what I refer to as the outside IP address assigned to the RV042?

Which means the Gateway to Gateway VPN does handle the Natting for you?  Meaning you don't have to use another assigned IP to NAT to the subnet and then configure the tunnel?
0
 
LVL 90

Accepted Solution

by:
John Hurst earned 500 total points
ID: 34932871
>>> So you have to turn NAT traversal on in order for it to NAT the traffic from

(a) It depends on the situation, so it is something you try.
(b) It allows traffic to flow in varying phyiscal circumstances.

I make no effort to NAT any traffic. The concept does not even exist as a setup in the RV042, at least in the standard way I use it.

>>> Which means the Gateway to Gateway VPN does handle the Natting for you?  Meaning you don't have to use another assigned IP to NAT to the subnet and then configure the tunnel?

I encourage you to look at the setup and study it. You must do the following:

(a) Define whether your RV042 is talking to another router (Gateway <--> Gateway) or whether your RV042 is talking to a PC client application (Gateway <--> Client)
(b) Establish the local end (external IP and internal IP)
(c) Establish the remote end (external IP and internal IP)
(d) Establish the security and advanced settings.

To say again (and I am looking at the setup right now), the concept of doing your owning NAT setup does not even exist in this router.

... Thinkpads_User
0
 

Author Comment

by:neumonicmike
ID: 34934775
Actually under advance configuration there is a place to configure one to one NAT but it only seems to apply to incoming access and not outgoing.   The RV042 is a very basic VPN appliance and not as configurable as the Netgear ProSafe series which we prefer for small businesses that don't require Cisco.  I just wanted to know if I was correct in my assumption that the PTP VPN would take care of Natting.
 When you are talking to people who are used to building tunnels through script they don't want to believe in names like Linksys and Netgear and can't accept a gui interface as being comprehensive.

just a footnote: as fate would have it the RV042 which had been in place for about 6 or 7 years took its last command today and then froze and refused to reset. It has gone to that router heaven and was replace with a ProSafe.  
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 34934796
Thank you and thanks for the update. I was pleased to provide the assistance I could.  ... Thinkpads_User
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now