Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

creating a tunnel using comcast modem and rv042

I am having an issue with creating a vpn tunnel with comcast modems.  even though both are setup as DHCP ip addresses through comcast just to setup the tunnel initially that shouldn't make a difference.  for example purposes say my outside ip is site 1:200.200.200.111 and site 2: 200.200.200.222

I have on site 1

local group setup

IP only

subnet

192.168.2.1

255.255.255.0

remote group setup

ip only

200.200.200.222

subnet

192.168.3.1

255.255.255.0

preshared key abcdefg1234

at site 2

local group setup

IP only

subnet

192.168.2.1

255.255.255.0

remote group setup

ip only

200.200.200.111

subnet

192.168.3.1

255.255.255.0

preshared key abcdefg1234

one issue that I do see is in the local group on both routers the automatic IP that it is receiving is a dhcp address from the comcast modem of 10.1.10.100  I have set up port forwarding AND port triggering on both comcast modems for ports 40-2000 (yes I know it is a broad range but this is just to test the connection)  I go to make the connection in the gateway to gateway screen and all it does is stay at waiting for a connection.  I cannot get the VPN tunnels to connect

what am I doing wrong!!!! ?????????

1 REPLY
Bronze

creating a tunnel using comcast modem and rv042

So the biggest problem with the rv-series when it comes to site-to-site vpn is that the local IP address in the profiles must also match the IP address of the other side when it tries to connect.  In other words, you have to have the public IP address in the router on both sides.  You can't get this any other way other than disabling the router built into the Comcast modem/routers.  (There might be a way if you have NAT Traversal as an option on the rv042, but I've never had any real success with this.)

Once you disable the Comcast routers built into the modems, the routers will get the true public IP address and should connect instantly.

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com
541
Views
0
Helpful
1
Replies
CreatePlease login to create content