Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Problems using Gateway to Gateway VPN. No PING etc.

I know, this has been posted a gazillion times, but non of the postings I have read really helps me anyway..

Well, here goes:

I have two RV042 routers with the following settings:

RouterA

LAN IP: 172.16.1.254 / 24

WAN IP: 10.1.0.1 / 24   GW: 10.1.0.2

RouterB

LAN IP: 172.16.2.254 / 24

WAN IP: 10.1.0.2 / 24    GW: 10.1.0.1

The WAN connections are wired to a standard switch, meaning that both routers have a valid external IP in the 10.1.0.X segment

On each router I have one computer. Lets call them C1 and C2

C1 IP: 172.16.1.10 / 24   GW: 172.16.1.254

C2 IP: 172.16.2.12 / 24   GW: 172.16.2.254

The Computers can connect to the coresponding router for configuration and testing.

I have configured the VPN as a GW2GW using the documentation and hers how I have done it:

RouterA:

Tunnel no:      1

Tunnel Name:  Åssiden

Interface          WAN1

Enabled

Local Group Setup:

Local Security Gateway Type:  IP Only

IP Address:                            10.1.0.1 

Local Security Group Type:      Subnet

IP Address:                             172.16.1.0

Subnet mask:                          255.255.255.0

Remote Group Setup:

Remote Security Gateway Type:   IP Only

IP Address:                                  172.1.0.2

Remote Security Group Type:        Subnet

IP Address                                   172.16.2.0

Subnet mask:                              255.255.255.0

On RouterB the exactly settings are entered on the oposite side, as described.  Local Group <=> Remote Group etc...

The IP Sec Setup is like this on both sides:

Keying Mode: IKE with preshared key

Phase1 DH group:   Group 1

Phase 1 Encryption: DES

Phase 1 Auth.          MD5

Phase 1 SA Life time:  28800

Perfect forward sec: Yes

Phase 2 DH group: Grp 1.

Phase 2 Encryption: DES

Phase 2 Authentication_ MD5

Phase 2 SA Life time: 3600

Phrasedkey:    SomeRandomKeyEntered Same on both sides

Now, when I in the VPN Summary page press Connect button I get this:

No.

Name

Status

Phase2
Enc/Auth/Grp


Local Group

Remote Group

Remote Gateway

Tunnel Test

Config.
1ÅssidenConnectedDES/MD5/1172.16.1.0
255.255.255.0
172.16.2.0
255.255.255.0
10.1.0.2

This tells me that the VPN is correct configured and up and running.

problem is that its impossible to ping from C1 to C2 and vs.

What more do I have to do?   Do I nead to add something in the "Advanced Routing" in the SETUP pane ?

Please anyone...  I really nead some assistance here...

Regards

Ole Morten Heien

HD Software

Everyone's tags (3)
4 REPLIES
New Member

Problems using Gateway to Gateway VPN. No PING etc.

Plese - anyone?!?!

Cisco Employee

Problems using Gateway to Gateway VPN. No PING etc.

New Member

Problems using Gateway to Gateway VPN. No PING etc.

Yes, all computers inside the LAN on all sites gets theyr IP from the ROUTERS.

If I connect to one of the routers using PPTP I can reach everything on the inside.  I wil study your links though..

Thanx

New Member

Problems using Gateway to Gateway VPN. No PING etc.

are you trying to ping by name or IP address?

Your VPN settings look ok (except for one typo in the Remote Group setup).  If you are connected, then that is just a typo in your post, not the config.  I use the following Advanced Settings:

Compress

Keep-Alive

NetBIOS Broadcast

Dead Peer Detection

It's possible that you need NAT Traversal checked, but I wouldn't think so based on your description.

Have you created any custom firewall rules that could be blocking this?  The firewall rules will pertain to the VPN connections if the "destination" value is a LAN IP.

1010
Views
10
Helpful
4
Replies
CreatePlease to create content