In the past, I have been able to put two Linksys routers in series no problem but this doesn't seem to work with an RV042.
I have a number of customers that need to connect to a private email network via a router based VPN, but since VPN traffic is not filtered in the firewall, I would like to use an older Linksys router to manage the VPN(s) and have it pass data in through the filters of an RV042 on the DMZ port.
I am getting stuck on the very frist part of this. Although I can connect to both the RV042 and LinkSys directly (by adjusting my subnet), I cannot ping the Linksys when it is connected through the DMZ port even if I disable the RV042 Internet port.
I know both the Internet and DMZ ports work on the RV042. I suspected that perhaps the RV won't pass through private IPs and tried known available pubic IPs instead of the 192.168.2.x subnet, but still no ping.
What would be limiting the RV in this case? Is is possible to setup the RV to work in series with another router? Is there any other way to filter VPN traffic?
My first thought is that there MUST be a better way for you to go about this, but I'll let that go for now.
Have you superseded the default DMZ blocking by adding Allow rules to the firewall on the RV042?
Have you disabled the "Block WAN Request" setting on the Firewall-General tab (not sure if this is necessary)
It could be that the 192.168.2.x network doesn't know to go through 192.168.2.2 to access the LAN because it has a gateway address of 192.168.2.1, or possibly no gateway at all. I am not sure what is required here, but have you set up custom routing to handle this?
Maybe you could utilize the multiple LAN subnet or port-based VLAN features on the RV042 and forget the DMZ altogether.
working with another post on this forum may have revealed a solution for you...
It appears that VPN connections to the RV042 (Gateway-to-Gateway) only bypass the default firewall rules, but are filtered by custom rules. Just add the custom rules you need with source interface WAN and destination of (single IP or range) in your LAN, and it should work without the extra router (not to mention the extra headaches!!).
The only gotcha is if you are using port forwarding (Forwarding or UPnP) for the same services you are blocking on the VPN, you would have to only block the VPN subnet ranges or the forwarding would also be blocked.
Article ID:5728 Configure a Teleworker VPN Client on the RV34x Series
Router Objective The Teleworker VPN Client feature minimizes the
configuration requirements at remote locations by allowing the device to
work as a Cisco VPN hardware client. When the T...
Article ID:5708 Configure the LAN and DHCP Settings on the RV34x Series
Router Objective A Local Area Network (LAN) is a network limited to an
area such as a home or small business that is used to interconnect
devices. LAN settings can be configured to li...
Article ID:541 Firmware Upgrade on RV016, RV042, RV042G, and RV082 VPN
Routers Objective To upgrade the firmware, a specific file must be
downloaded from the Internet and uploaded to the device. Firmware
upgrades can fix software bugs, improve features, a...