Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
478
Views
0
Helpful
1
Replies

Problem with VPN-Tunnel between RV082 and ASA5520

Ballone_Andrea
Level 1
Level 1

‎03-20-2014 01:39 AM

TOPOLOGY:
RV082 --> (VPN tunnel) --> ASA (used for my VPNs)
 
(ASA and RV082 connectivity ok)
 
I configured on Cisco RV082 VPN Client, Gateway To gateway VPN, whith the parameters below:
---------------------------------------------------------------------
Tunnel Name : (name of vpn - the same name created in the ASA)
Interface : WAN1
Enable : (checked)
 
Local Group Setup
Local Security Gateway Type : IP Only
IP Address :  192.168.45.127  (correct IP that use the Cisco VPN RV082)
Local Security Group Type :  Subnet
IP Address :   192.168.1.0
Subnet Mask :  255.255.255.0
 
Remote Group Setup
Remote Security Gateway Type :  IP Only 
IP Address: (ASA IP Global)
Remote Security Group Type :  Subnet
IP Address :   10.100.7.192 (subnet created for the vpn in the ASA)
Subnet Mask :   255.255.255.192
 
IPSec Setup
Keying Mode :  IKE with Preshared key (the same created for vpn in the ASA)
Phase 1 DH Group :  Group 2 - 1024 bit
Phase 1 Encryption : 3DES 
Phase 1 Authentication :  MD5
Phase 1 SA Life Time :  28800 seconds 
 
Perfect Forward Secrecy :  (checked) 
Phase 2 DH Group :  Group 1 - 768 bit
Phase 2 Encryption :  3DES 
Phase 2 Authentication :  MD5
Phase 2 SA Life Time :  3600 seconds 
Preshared Key :   (the same for the vpn in the ASA)
Minimum Preshared Key Complexity :  (not checked)
 
No Advanced features configured.
------------------------------------------------------------------
 
The status of tunnel connections is "waiting for connections".
I don't know why the RV082 can't establishes VPN tunnel with ASA.
 
There is someone that can help me with this issue?
Labels:
0 Helpful
1 Reply 1

Kremena Ivanova
Cisco Employee
Cisco Employee

‎03-20-2014 08:50 AM

Hello,

Local Group Setup
Local Security Gateway Type : IP Only
IP Address :  192.168.45.127  (correct IP that use the Cisco VPN RV082)
 
As I understand from your configuration, you have private IP on the WAN port. That means RV082 is behind NAT and you need to unable the option NAT Traversal in the Advanced features of the VPN configuration. You have to enable NAT-T on ASA as well.
 
Regards,
Kremena
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents