Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

SA 520W, QuickVPN connectivity problems

Setup:

I have a SA 520W running firmware version 1.1.65, and a 64-bit Windows 7 machine running the Cisco QuickVPN Client, version 1.4.1.2. The Windows 7 machine is on a separate Internet connection than the SA 520W. Windows Firewall is running with the default configuration. No other software firewalls are in place.

Problem:

I am unable to establish a VPN connection between the QuickVPN client and the SA 520W. When I try to connect using the QuickVPN program, it fails at the "Connecting..." phase.

Configuration:

I have a single IPSec user defined in the SA under VPN > IPSec > IPSec Users, with the "Remote Peer Type" set to "Cisco QuickVPN". I have no IKE Policies or VPN policies defined, as I understand they aren't necessary for QuickVPN access.

Logs:

In the SA IPSec VPN logs, there is one line similar to the following for each individual failed connect attempt with the QuickVPN, and nothing else.

2010-10-21 10:54:20: ERROR:  Failed to load the configuration

In the QuickVPN program folder, the log.txt shows output similar to the following for each individual failed connect attempt.

2010/10/21 10:36:51 [STATUS]OS Version: Windows 7
2010/10/21 10:36:51 [STATUS]Windows Firewall Domain Profile Settings: ON
2010/10/21 10:36:51 [STATUS]Windows Firewall Private Profile Settings: ON
2010/10/21 10:36:51 [STATUS]Windows Firewall Private Profile Settings: ON
2010/10/21 10:36:51 [STATUS]One network interface detected with IP address 192.168.1.100
2010/10/21 10:36:51 [STATUS]Connecting...
2010/10/21 10:36:51 [DEBUG]Input VPN Server Address = xxxxxxxxx.xxxxxx.org
2010/10/21 10:36:52 [STATUS]Connecting to remote gateway with IP address: xx.xxx.xx.x
2010/10/21 10:36:52 [WARNING]Server's certificate doesn't exist on your local computer.
2010/10/21 10:36:54 [STATUS]Remote gateway was reached by https ...
2010/10/21 10:36:54 [WARNING]Remote gateway wasn't reached...
2010/10/21 10:36:54 [WARNING]Failed to connect.
2010/10/21 10:37:04 [WARNING]Remote gateway wasn't reached...
2010/10/21 10:37:04 [WARNING]Failed to connect.
2010/10/21 10:37:04 [WARNING]Failed to connect!

Additional info:

Yesterday, I was able to successfully connect the two using a temporary test IPSec user, and everything worked as expected. I then deleted the test IPSec user before disconnecting it from the VPN and created a "real" IPSec user. I have been unable to connect to the VPN since then. Judging from this and the "Failed to load the configuration" entries in the SA logs, I am wondering if deleting the test user while it was in-use may have permanently corrupted the SA's IPSec VPN configuration?

Thanks in advance for any assistance.

--Adam

2 REPLIES
New Member

Re: SA 520W, QuickVPN connectivity problems

The solution was to discard this unreliable piece of hardware and switch to a Linksys RV082. No more problems!

New Member

Re: SA 520W, QuickVPN connectivity problems

Hi Adam

three things you need to do to get the QuickVPN work with SA520W

1. SA520W has differenet IP address range on the LAN side than the QuickVPN client. for example, 192.168.75.1 on the LAN side of SA520w, 192.168.1.1 on the PC where QuickVPN is installed

2. Remote Management of SA520w has to be enabled with either port 443 or 60443

3. Turn on the Windows firewall

then you need to follow the SA520w document to create the account.

it was painful to configure this box as the document is not clear. I have spent several nights to figure it out. However, it has worked fine for me so far

1225
Views
0
Helpful
2
Replies
CreatePlease to create content