asked on Error with VPN on CISCO RV016 Router
I have one RV016 Cisco router. I´m configuring VPN. I created the user and export the client certificate.
On my notebook I installed QuickVPN client and copy client certificade on his folder.
But i´m not conneting, I´ve got warning : Server´s certificate doesn´t exists on your computer..... Even if I continue I got another error : Connection failure.
What I´m doing wrong ?
On my notebook I installed QuickVPN client and copy client certificade on his folder.
But i´m not conneting, I´ve got warning : Server´s certificate doesn´t exists on your computer..... Even if I continue I got another error : Connection failure.
What I´m doing wrong ?
RoutersCiscoVPN
Last Comment
John
ASKER
TunnelGroup VPN
Tunnel No. 2
Tunnel Name :
tunnel2
Interface :
Enable :
Local Group Setup
Local Security Gateway Type :
IP Address : 186.228.xxx.xxx
Local Security Group Type :
IP Address :
192.168.0.0
Subnet Mask :
255.255.255.0
Remote Client Setup
Remote Security Gateway Type :
Email Address :
jbredariol
@
yahoo.com
IPSec Setup
Keying Mode :
Phase 1 DH Group : IKE + pre shared key
Phase 1 Encryption : Group2
Phase 1 Authentication : Sha1
Phase 1 SA Life Time : 28800
seconds
Perfect Forward Secrecy : MARKED
Phase 2 DH Group : 2
Phase 2 Encryption : 3DES
Phase 2 Authentication : Sha1
Phase 2 SA Life Time : 3600 seconds
Preshared Key : xyzxyzxyz
Minimum Preshared Key Complexity : Enable
Advanced
aggresive, compress, keep-alive, dead-peer interval 10sec all marked
Tunnel No. 2
Tunnel Name :
tunnel2
Interface :
Enable :
Local Group Setup
Local Security Gateway Type :
IP Address : 186.228.xxx.xxx
Local Security Group Type :
IP Address :
192.168.0.0
Subnet Mask :
255.255.255.0
Remote Client Setup
Remote Security Gateway Type :
Email Address :
jbredariol
@
yahoo.com
IPSec Setup
Keying Mode :
Phase 1 DH Group : IKE + pre shared key
Phase 1 Encryption : Group2
Phase 1 Authentication : Sha1
Phase 1 SA Life Time : 28800
seconds
Perfect Forward Secrecy : MARKED
Phase 2 DH Group : 2
Phase 2 Encryption : 3DES
Phase 2 Authentication : Sha1
Phase 2 SA Life Time : 3600 seconds
Preshared Key : xyzxyzxyz
Minimum Preshared Key Complexity : Enable
Advanced
aggresive, compress, keep-alive, dead-peer interval 10sec all marked
For DH Group 2, try turning PFS OFF. I always disable Perfect Forward Secrecy.
You should also set up 3DES encryption in Phase 1 as well. I do that.
I have this basic setup as well and connect into the RV325 using NCP Secure Entry.
You should also set up 3DES encryption in Phase 1 as well. I do that.
I have this basic setup as well and connect into the RV325 using NCP Secure Entry.
ASKER
I´cant disable PFS. I unmark it, but the page reloads with PFS marked.
That may be a function of Quick Connect and so you may need to try a different VPN client. It has been a few years now (RV016 is old) and Quick Connect never worked.
ASKER
I unmark PFS but nothing.
ASKER
What VPN client do you recommend ?
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Thanks
You are very welcome and I was happy to help.
What are the settings in the router for the VPN client to connect to?