Solved

Gateway to Gateway VPN Tunnel. 2 X Cisco RV082

Posted on 2013-02-06
5
1,159 Views
Last Modified: 2013-02-11
Hi Experts

Hoping someone can help me, been struggling for a few days.

Trying to establish a Gateway to Gateway VPN Tunnel with the below hardware

Linksys WAG300g Bridged to Cisco RV082 - HQ
Huawei HG655B Home Gateway Bridged to Cisco RV082 - Branch

HQ

Local Group Setup:
Local Security Gateway Type: IP Only
IP Address: xxx.xxx.xx.xx (WAN IP) - Can ping from remote pc.
Local Security Type: IP (For testing)
IP Address: xxx.xx.1.200

Remote Group setup:
Remote Security Gateway Type: IP Only
IP Address: xxx.xxx.xx.xx (WAN IP) - Can ping from remote pc.
Remote Security Type: IP (For testing)
IP Address: xxx.xx.2.101

IPSec Setup: All Default

Keying Mode: IKE With Pre Shared Key
Phase 1 DH Group: Group 1 - 768 bit
Phase 1 Encryption: DES
Phase 1 Authentication: MD5
Phase 1 SA Life Time: 28800 seconds
Perfect Forward secrecy: Checked

Phase 2 DH Group: Group 1 - 768 bit
Phase 2 Encryption: DES
Phase 2 Authentication: MD5
Phase 2 SA Life Time: 3600 seconds
Preshared Key: xxx
Min Preshared Key Complexity: Checked | Enabled

Aggressive Mode: Checked
NetBIOS Broadcast: Checked and Enabled on NIC
Dead Peer Detection: Checked

Branch is set exactly the same though obviously Local and Remote Groups info switched.

No Antivirus or firewalls enabled on either pc to test. Disabled Firewall on RV082's as well to eliminate any potential issues.

I can get a VPN connection, but cannot ping the LAN IP of the RV082 on either side.
Cannot access any local resources on either end either.

What am I missing here? Driving me mad.

Thanks
0
Comment
Question by:AndreHenn
  • 3
  • 2
5 Comments
 

Author Comment

by:AndreHenn
ID: 38861594
Apologies forgot to add. Both Pc's are Win 7 Pro 64bit if that makes any difference at all.
0
 
LVL 77

Expert Comment

by:Rob Williams
ID: 38862453
Are both RV02's assigned a public IP in their WAN configuration, either static or dynamic?
0
 

Author Comment

by:AndreHenn
ID: 38864032
Hi RobWill

Yes, both have Public Ip's which I can ping.
0
 
LVL 77

Accepted Solution

by:
Rob Williams earned 500 total points
ID: 38870952
I would try changing from Local Security Type: IP to subnet and also uncheck aggressive mode.
0
 

Author Closing Comment

by:AndreHenn
ID: 38878847
Thx RobWill. That did the trick.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
There are two basic ways to configure a static route for Cisco IOS devices. I've written this article to highlight a case study comparing the configuration of a static route using the next-hop IP and the configuration of a static route using an outg…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now