Cisco Routers :: RV042 VPN - Local / Remote Group
Feb 27, 2013
I recently replaced a Netgear router with a RV042 because I figured out my Netgear was choking my 24MB Uverse connection down to about 6MB. I had VPN setup with my business partner who was already using an RV042 and everyting works fine. However after I setup the RV042 on my side we have not been able to get the VPN up. The settings are as follows
Local Group
Local Security Gateway Type: IP Only
Local Security Group Type : Subnet
IP Address: 192.168.0.0
Subnet: 255.255.255.0
Remote Group
Remote Security Gateway Type: IP Only
remote Security Group Type : Subnet
IP Address: 10.0.0.0
[Code]....
View 1 Replies
ADVERTISEMENT
Sep 10, 2012
I've setup a GroupVPN and connect to the RV042 with the Shrewsoft VPN client, works like a charm as opposed to QuickVPN ;-)The firewall is configured with an explicit deny rule for RDP access to an internal server, also an explicit allow rule is created for certain IP numbers as source. I noticed that I need to create an explicit allow rule for the subnet the Shrewsoft client is using for the virtual adapter or I will not be able to access the internal server via RDP through the GroupVPN tunnel. I would think that setting up a tunnel defies the rules created for direct access on the WAN port.
View 5 Replies
View Related
Jun 27, 2012
I have configured a VPN tunnel between two remote locations using static IP addresses on two RV042 routers. The tunnel seems to work but the problem is that when the two hosts attempt to ping each other only one can successfully ping. One PC with IP address 192.168.1.100 can ping across the network but the second PC with IP address 192.168.2.100 cannot. These are laptops seperate from the intranet used to test the tunnel. Someone had suggested NAT may be the issue so I enabled NAT Transverse on the routers but still no luck. The following is the results from a ping test.
PC 1
ping 192.168.2.1
Pinging 192.168.2.1 with 32 bytes of data:
Reply from 192.168.2.1: bytes=32 time=116ms TTL=63
[Code] ......
View 1 Replies
View Related
Apr 11, 2013
I have a brand new RV042 v3 that I just updated to the latest firmware (v4.2.1.02) and have stumbled across an anomaly... I can only access the router from the WAN port using port 80. I happen to have it set to port 8080, but that doesn't work; I have to use standard port 80.
I have two other RV042 units running older firmware and they work as expected and follow the port that is filled in. This one has me puzzled and wondering if this is a bug in the firmware.
View 2 Replies
View Related
Nov 24, 2011
i was connected to my rv042 via remote management / browser, and tried to add vpn clients. i generated a new certificate and then i clicked on export for clients. by doing this, the remote management disconnected and i cannot access the router anymore.
how can i get the new .pem file from remote? do i have to make somebody turn off and on the unit to get back remote access??
p.s.: after turning off an on i tried the same steps again: everytime i click on "export for admin" or "export for client", this kills the remote management and the unit must be hardreset. now: how do i get the newly created client certificate off that unit ?? otherwise i will have to drive 350 km just to grep that file ?!?!
View 1 Replies
View Related
Sep 30, 2012
I have a 6 month old RV042 with the newest firmware (v4.2.1.02). Over the weekend I configured the DMZ which after a lot of trial and error, was able to get working. Prior to configuring DMZ, I was able to log in with remote management. However now remote management no longer works. I've tried:
- Rebooting the router
- Turning the firewall off/on
- Turning remote management off/on
- Changing the remote management port
The only step I haven't taken is resetting the router back to factory defaults and trying to reconfigure it all again. This router is so finicky I have no faith I'd be able to get my current functionality back again.
View 2 Replies
View Related
Aug 28, 2011
My first try at configuring my RV042 has had unexpected results. I set a WAN and LAN address, but did not enable remote managment and did not configure any port forwarding. I expected to be able to connect to the router on the LAN and I could. The surprise came when I put in my web address. I got a router login page. How do I suppress than on the WAN side. I have a static address with my ISP.
View 1 Replies
View Related
Jan 13, 2013
I have a Cisco ASA 5505 that I've setup with an SSL VPN. This is for personal use, and I therefore don't have need for anything more than local authentication. [code]
I'd like to have one profile/policy where I only encrypt data going to my split-tunnel ACL, and I'd like to have one profile/policy where I encrypt all traffic.
The issue ive been fighting is - it doesn't seem like its possible to associate more than one group policy per user. If it IS possible - can you tell me how I associate both groups to my local account?
View 1 Replies
View Related
Feb 8, 2012
I have Cisco RVS4000 and Linksys Befsx41.I can make a VPN connection when bought are in Static ip-address.RVS in static ip and Linksys in ISP changing ipconnection is not made.
Here is some log:
Feb 9 20:48:17 - [VPN Log]: "xxxxx"[1] xxx.xxx.xxx.185 #4: multiple ipsec.secrets entries with distinct secrets match endpoints: first secret used
Feb 9 20:48:17 - [VPN Log]: "xxxxx"[1] xxx.xxx.xxx.185 #4: multiple ipsec.secrets entries with distinct secrets match endpoints: first secret used
Feb 9 20:48:17 - [VPN Log]: "xxxxx"[1] xxx.xxx.xxx.185 #4: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
[code]....
View 1 Replies
View Related
Nov 20, 2012
I have configured ASA 5510 With IPsec Remote VPN.With local database users(Users are created in ASA).
Internal network has 4 VLANS. Need solution for below.
There are 25 Users created in ASA. where only 5 tp 6 users wants to grant access to Particualr IP and Subnets and rest of the users can access entire lan.
Is it possible to configure Group policy in ASA for IPsec Remote VPN.
View 1 Replies
View Related
Apr 7, 2011
Last time, i´ve implemented a Remote Access VPN to my network with ASA 5510 I´ve allowed to my VPN an acces to all my Internal LAn But i want to configure a group of vpn in the CLI for have different group of user which can access to different server or different network on my LAN.
Example : informatique group------access to 10.70.5.X Network
Consultor group -------- access to 10.70.10.X Network
I need to know how can i do that , and if you can give me some eg script for complete this Here is my configuration :
ASA Version 8.0(2)!hostname ASA-Vidruldomain-name vidrul-ao.comenable password 8Ry2YjIyt7RRXU24 encryptednamesdns-guard!interface Ethernet0/0 nameif outside security-level 0 ip address X.X.X.X 255.255.255.X!interface Ethernet0/1 nameif inside security-level 100 ip address X.X.X.X 255.255.255.X!interface Ethernet0/2 shutdown no nameif no security-level no ip address!interface Ethernet0/3 shutdown no nameif no security-level no ip address!interface Management0/0 description Port_Device_Management nameif Management security-level 99 ip address X.X.X.X 255.255.255.X management-only!passwd 2KFQnbNIdI.2KYOU encryptedftp mode passivedns server-group DefaultDNS domain-name vidrul-ao.comaccess-list 100 extended
[code]....
View 2 Replies
View Related
May 27, 2011
I have 4-5 machines connected to each other in network which are in workgroup. Now I want to change one group policy on remote machine. The name of that policy is " Network access: sharing and security model for the local accounts :- Guest only" . How can I change this policy from remotely?
View 1 Replies
View Related
May 22, 2012
The current setup we have contains two seperate networks, each managed by their own Cisco RV042 (10/100 4-Port VPN Router), and each have their own connection to a Comcast Business Class SMC Modem. (Each has its own static WAN IP provided by Comcast). Both VPN routers have VPN access configured allowing us to connect to our company's corporate intranet and network, and vice versa. Just as a reference point, We will call the first VPN 'GamesNetwork' and the other one 'AdminNetwork'. A problem came up where the computers on AdminNetwork could not access the resources of the GamesNetwork. The problem was resolved by our at-the-time official corporate IT guy but the solution was never explained to me. Recently i got curious and went into the config pages and found that each VPN router was linked to the other the same way corporate links to our VPN's, whch is by using the Internet IP of that vpn... So to me this says we are linking two local vpn networks using their internet connection which is on the same modem.. to me this seems messed up. is this really the way it needs to be done? Now... I have thought of the idea 'make the two networks into 1..' and it could work. but.. i dont have the permission to make this happen.
if you have two vpn routers side by side in the same room, is there a more local means of giving 1 vpn access to the resources of the other and vice versa?
View 1 Replies
View Related
Mar 6, 2011
We have ASA5500's deployed for remote access concentration.We use Cisco IPsec vpn client with a group policy the chacks for Network ICE BlackIce ersonal firewall.The powers-that-be wish to change to McAfee presonal Firewall ok..Now the Group Policy allows you to check for several pre- configured Firewalls, Cisco Integrated, Sygate, Zone Labs etc.So as McAfee are no listed then I am to assume we go for "Custom Firewall" and this is where I am struggling.To configure checking for a Custom Firewall I must have the Vendor ID and the Product ID.McAfee haven't the faintest idea what we're talking about when we ask them for these details.Or is there a way to extract them from the registry of a machine with the McAfee product installed?
View 3 Replies
View Related
Oct 18, 2011
i have a problem with my asa 5505 Remote VPN Connection with local network access , the VPn is working fine and connected , but the problem is i can't reach my inside network connection of 192.168.30.x , here is my configuration
ASA Version 8.2(1)
!
!
interface Vlan1
[Code].....
View 13 Replies
View Related
Aug 3, 2011
keep getting this message from my firewall:A port scan was detected. Local IP:192.168.xxx Remote IP: 192.168.1.xxx. Protocol: UDP.Action Taken: BlockedWhat does this mean?!!? And what effect will it have? Simple question for pro's.
View 2 Replies
View Related
Jun 21, 2011
Currently, my work computer has (obviously) a local desktop. Also, we use a Remote Desktop for our shared network drive (our head office is on the other side of the country). The annoying thing is that if I am looking up a document on the share drive (Remote Desktop) and I want to work on it, the Remote Desktop applications are slow. So I'd rather work on it on my local desktop. However, I have to email it to myself, exit the Remote Desktop, retrieve it from my mail (in local desktop) and then save it
View 2 Replies
View Related
Feb 2, 2011
I have a couple WinXP Pros and Win7s connected to the same router wired and wirelessly. All of them have Remote Desktop enabled (via System settings) and have Windows Firewall exceptions setup. They all have AVG Anti Virus and no other firewalls installed. They all also have static ips assigned.Windows file sharing is working fine between all of them. VNC also works with no problems.But for some reason, I could not get Windows Remote Desktop to work between any of themAnother weird thing that may or may not be related is that they can't ping other computers on the same network.This leads me to believe that this might be a networking issue.I have a DLink router (can't remember model) with a Tomato Firmware.I do not have port forwarding setup for Remote Desktop because I think (although I may be wrong) that they are only used for connecting from the internet, which I don't need. I only want local connections right now.
View 1 Replies
View Related
Feb 10, 2011
I've got an RV042 router at home and am connected from my office via the QuickVPN client ver 1.4.1.1.2. I can ping the RV042 and log into the administration page and make changes. However, I can not see other computers on the remote network. I can not ping them. When I open my Network page, I still see the computers on my local network.
All machines are running Windows 7 Ultimate. ISP is Comcast at both locations. WAN IP's are dynamic, but have not changed in over a year. Local IP's on the remote (home) network are static..[url]....
View 1 Replies
View Related
May 5, 2011
I have a 3845 router (12.4(13r)T10) with ZBF. On my LAN there is a user who need to access a remote IPSEC VPN server. He is able to get the tunnel but afterwards he cannot connect to any service in the remote LAN. As I'm using zbf I think that I should inspect traffic from my LAN zone to EXT zone, There is a document that describe a solution to this? What IP adressess should I use?
View 2 Replies
View Related
Oct 3, 2011
I have a 3845 router (12.4(13r)T10) with ZBF. On my LAN there is a user who need to access a remote IPSEC VPN server. He is able to get the tunnel but afterwards he cannot connect to any service in the remote LAN. As I'm using zbf I think that I should inspect traffic from my LAN zone to EXT zone
View 3 Replies
View Related
Mar 21, 2012
I have configured vpn filtering on all my l2l vpns. I have restricted access from remote to local resources only to specified ports. It works perfectly.But I want to have also full access from local to remote networks (but still preserve restricted access from remote to local). As I now VPN Filter works bi-directional with a single ACL. So is there some way to open all traffic from local to remote and still restrict remote to local traffic? ASA 5520 8.4(3)
View 4 Replies
View Related
Feb 14, 2011
I have a cisco ASA 5510 at the branch here. It terminates about 8 vpn tunnels and also it supports remote access clients. I just have a quick question. Can my remote sub-net group access the other remote access site-site VPN subnet group. If yes then how should i configure it.
View 6 Replies
View Related
Jan 12, 2012
I would like to create a additional user vpn on a 55010 where the user authenticates with the firewall and not the radius server.This user should NOT be able to log on to the firewall, but only be able to authenticates with the vpn client.I'm correct that the command "username abc123 password abc234 privilege 0" ?Also for this remote vpn how to I make sure the user only authencates with this password?
View 3 Replies
View Related
Oct 4, 2012
I am configuring remote access vpn on ASA5505.Everything is working fine so far, except when the client got connected, it still used the local DNS server provided by the ISP. How do I force the client to use the DNS server configured on ASA?
View 7 Replies
View Related
Jan 24, 2013
I have RV042 and E4200 routers . I tried the manual UPnP port forwarding using Rv042 router and was succesful ( by typing 192.168.1.1 in the explorer and logged in using user name and password )
I am using a linux embedded system whose Internal IP ,Internal port are mapped .This system is connected to one of the LAN ports
I want to try auto UPnP port forwarding both for RV042 router and Linksys E4200 routers
After enabling the Upnp option only and logging out ,Can i add a port mapping entry in this router without logging in using a C++ program which runs on linux embedded system .
View 2 Replies
View Related
Aug 22, 2012
I was looking for a small business router that has VPN support and dual WAN support for load balancing. Upon reading reviews, I think RV042/RV042G is a good choice. Now am thinking if it supports intervlan/ router-on-a-stick configuration?
View 5 Replies
View Related
Jan 14, 2013
We have a 5508 controller in main site.Which has two ports connected to local network.Management VLAN 500 is untagged and mapped to Port 1.All other interfaces are including 501 to 507 are mapped to Port 2.We have a SSID that is mapped to VLAN 501 interface , which successfully can be joined in main site.We connect an AP to remote site ;We have a remote site VLAN 115 which can be reached from main site.We connect an AP to access vlan 115 port on the remote site , we had described option 43 , so AP can successfully finds controller in local mode.
AP gets ip from VLAN 115 , can setup connection / ping controller successfully.There is a wide area connection between remote and main site.No trunk setup , the whole remote site is vlan 115.However when the client is trying to connect the test SSID , client cant get connected nor get ip address.Local switching is disabled.For this setup , client comes to AP as a requested , AP tunnels traffic to controller from vlan 500 , controller lets the client get into wired platform from VLAN 501.
View 25 Replies
View Related
Feb 2, 2007
We have a RV042. remote management is set to DISABLE - but even after restarting the router i can access the interface remotely over the internet.even when i enable it and change the port to say 5555 i can connect to the web interface using either port 5555 but ALSO on port 80.what's wrong here?the only way to stop that was to create a rule that blocks port 80 on the WAN interface. (btw. could this rule affect LAN users when browsing the web?)
View 7 Replies
View Related
Oct 28, 2012
I've got a machine on my home network running Windows Server 2012 (Based on Win8).The problem is, my taskbar disappears completely.When I minimize an application rather than minimize to the taskbar it simply closes the window as small as it can as if the taskbar never existed (see photos at bottom).
The problem first presented itself after I accessed the computer from outside my local network I'm using a Linksys router and mapping to the server IP, port 3389.After a restart the problem goes away, I will update when I have more information on how frequently or what may trigger.
View 2 Replies
View Related
May 6, 2012
How to get HTTPS to work for local or remote management? Selecting HTTPS for either local or remote doesn't enable HTTPS for me. It still use HTTP.
View 2 Replies
View Related
May 29, 2012
Is it possible to assign IP addresses to remote site WIFI users from local DHCP server and forward all other traffic to 2504 WLC?
[WIFI Users] >--------<AP (DHCP server) >------ VPN ---------< WLC
View 1 Replies
View Related
Jul 31, 2012
I try to map LDAP Group to ASA Group policy following documentation:
[URL]
This is a config for ASA 8.0. I would have expected it to work on 8.4 as well but I do run into problems. The mapping as shown in LDAP Debug and ASA Log will actually happen but it is overwritten by the "GPnoAccess" Group Policy configured locally in the Tunnel Group. From earlier works with RADIUS I would have expected the user specific Attribute to be "stronger"?
ASA Log:
AAA retrieved user specific group policy (correct Policy) for user = XXX
AAA retrieved default group policy (GPnoAccess) for user = XXX
View 3 Replies
View Related
