I have setup a VPN connection between the routers as follows On RV042 Local Group Setup Local Security Gateway Type: IP Only IP Address: rv042 external ip address Local Security Group Type: Subnet IP Address: 192.168.10.1 Subnet Mask: 255.255.255.0
Remote Group Setup
Remote Security Gateway Type: IP Only IP Address: ASA5510 external IP address Remote Security Group Type: Sbnet IP address: 192.168.60.0 Subnet Mask: 255.255.252.0
On the ASA5510 I have setup the vpn allowing access to the subnet 192.168.60.0/22 to 192.168.10.0/24
The VPN gets established and traffic from the rv042 10.0 subnet works fine with the 61.0 and 62.0 subnet of the ASA5510.
For some reason traffic on the 60.0 subnet refuses to work.
Using tcpdump on a machine on the 60.0 subnet I can see that a ping sent from 10.x is successfully received on the 60.x machine across the VPN and a reply sent but the reply is not received on the 10.x machine
I have checked using the packet tracer of the ASA and the packet shows as being allowed across the ASA.
I have checked the access control lists on the ASA and that seems to be fine.
I have also viewed the logs on the ASA and can see that the ping is received and the teardown message also being logged successfully.
The Rv042 unfortunately doesnt show any signs of the packets.
I enabled the syslog of the Rv042 and installed the wallwatcher program to view the syslogs.
I enabled all checkboxes on the Log page of the Rv042 to enable logging of all traffic.
The Rv042 doesnt seem to log VPN traffic at all !!
That makes it really diffcult to figure out if the problem is local to the Rv042 or is on the ASA5510 side.
The fact that the VPN gets established successfully and I am able to ping the 61.0 and 62.0 subnets from 10.0 makes it even more strange why the 60.0 subnet refuses to work.
I also tried setting up 3 seperate VPN links from the (RV042) 192.168.10.0/24 subnet to (ASA) 192.168.60.0/24, 192.168.61.0/24, 192.168.62.0/24.
I get the exact same symptoms. Only the 60.0 subnet refuses to work!!!
I have been breaking my head on this for the last few days and would appreciate any advice or hints on debugging this further.
Re: Help Rv042 to ASA5510 VPN with multiple subnets
I don't know, are the settings the same as from the other subnets to the rv042 that are working. It seems something within that subnet on the ASA, since the tunnels between the other two subnets are working perfectly. I would look into that.
Configure DHCP WAN Settings on the RV34x Router
A Wide Area Network (WAN) is a network that covers a broad area. A user or network of users can connect to the Internet through an Internet Service Provider (ISP) who offer...
Configure Static IP WAN Settings on the RV34x Router
A Wide Area Network (WAN) is a network that covers a broad area. A user or network of users can connect to the Internet through an Internet Service Provider (ISP) who ...