Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Problem with VPN-Tunnel between RV082 and ASA5520

TOPOLOGY:
RV082 --> (VPN tunnel) --> ASA (used for my VPNs)
 
(ASA and RV082 connectivity ok)
 
I configured on Cisco RV082 VPN Client, Gateway To gateway VPN, whith the parameters below:
---------------------------------------------------------------------
Tunnel Name : (name of vpn - the same name created in the ASA)
Interface : WAN1
Enable : (checked)
 
Local Group Setup
Local Security Gateway Type : IP Only
IP Address :  192.168.45.127  (correct IP that use the Cisco VPN RV082)
Local Security Group Type :  Subnet
IP Address :   192.168.1.0
Subnet Mask :  255.255.255.0
 
Remote Group Setup
Remote Security Gateway Type :  IP Only 
IP Address: (ASA IP Global)
Remote Security Group Type :  Subnet
IP Address :   10.100.7.192 (subnet created for the vpn in the ASA)
Subnet Mask :   255.255.255.192
 
IPSec Setup
Keying Mode :  IKE with Preshared key (the same created for vpn in the ASA)
Phase 1 DH Group :  Group 2 - 1024 bit
Phase 1 Encryption : 3DES 
Phase 1 Authentication :  MD5
Phase 1 SA Life Time :  28800 seconds 
 
Perfect Forward Secrecy :  (checked) 
Phase 2 DH Group :  Group 1 - 768 bit
Phase 2 Encryption :  3DES 
Phase 2 Authentication :  MD5
Phase 2 SA Life Time :  3600 seconds 
Preshared Key :   (the same for the vpn in the ASA)
Minimum Preshared Key Complexity :  (not checked)
 
No Advanced features configured.
------------------------------------------------------------------
 
The status of tunnel connections is "waiting for connections".
I don't know why the RV082 can't establishes VPN tunnel with ASA.
 
There is someone that can help me with this issue?
1 REPLY

Hello,Local Group SetupLocal

Hello,

Local Group Setup
Local Security Gateway Type : IP Only
IP Address :  192.168.45.127  (correct IP that use the Cisco VPN RV082)
 
As I understand from your configuration, you have private IP on the WAN port. That means RV082 is behind NAT and you need to unable the option NAT Traversal in the Advanced features of the VPN configuration. You have to enable NAT-T on ASA as well.
 
Regards,
Kremena
132
Views
0
Helpful
1
Replies