Cisco Routers :: RV220W - Dropping Parts Of Traffic
May 14, 2013
I have following issue with RV220W - the router seems to be dropping parts of traffic coming through it. The unit is brand new, the firewall is turned off, there are about 20 computers and 15 VOIP phones connected to it via Zyxel GS1910-48; all IPs are set to static DHCP records, in the last 3 hours the router rebooted about 3 times, then I turned on the log in. The router is producing insane number of warnings, as you may see from the log attached. I found this thread [URL] but no answer regarding this issue.
Wed May 15 13:03:10 2013(GMT) [rv220w][Kernel][KERNEL] cvm_ipfwd_cache_flow: Failed to allocate flow info buffer
Wed May 15 13:03:10 2013(GMT) [rv220w][Kernel][KERNEL] WARNING:cvmx_ptr_to_phys() passed a NULL pointer
Wed May 15 13:03:10 2013(GMT) [rv220w][Kernel][KERNEL] cvm_ipfwd_cache_flow: Failed to allocate flow info buffer
[Code]....
View 5 Replies
ADVERTISEMENT
Nov 21, 2012
Just setup two RV220Ws with a IPsec VPN connection. All working well. However, I have a question regarding how to force ALL traffic from a VLAN to go thru the VPN.IPsec from site A (EU) to site B (USA) working good. On Site A I have a dedicated VLAN that needs to have ALL traffic (internet included) be sent thru the VPN tunnel. The main purpose of this is to have internet presence as if in the USA. This is necessary to access some sites available only in USA specially for the kids -their web sites will not display content because they're not in the USA at the moment. How do I accomplish this? I tried to setup a Static Route for the VLAN but you cannot setup a 0.0.0.0 destination route.
View 2 Replies
View Related
May 9, 2011
I just received my rv220w and perhaps I haven't got enough experience with cisco routers. How can I restrict traffic between different VLANs?
For example: Hosts in one VLAN shall only be allowed to access a web server in another VLAN. All other traffic should be blocked. I've created two VLAN with Inter VLAN Routing enabled. But it seems there's no way to install a firewall rule between VLANs.
View 12 Replies
View Related
Aug 22, 2011
I have a RV220W (running fw version 1.0.2.4) that i am trying to configure for a client. They are set up on Comcast with 13 available IP's. I should note that this netowrk is now currently running without issue using a Cisco Pix 506e. Unfortunately, the Pix is almost impossible to configure using the GUI now as I have to load a 4-year old version of Java now just to get the PDM to load. But I digress.I've set up the RV using the identical settings as the Pix on bth the LAN and WAN side. When I do, computers on the LAN side can all reach the Internet ok. However, once I enable one-to-one NAT for an internal server, that machine can't send or receive ANY traffic to the WAN side. I've even tried setting access rules enabling ANY traffic in both directions, and that has no effect. Either I'm missing something, or this is just one more bug in this product.
Even though it was a bit of a step down going from the Pix to the RV220W, it was done for the ease of setting up VPN's as I was ready to purchase a second one for a new satellite office opening in a few weeks. It looks like we will be switching vendors on the router side as my faith in Cisco is waning at this point.
View 1 Replies
View Related
Apr 7, 2012
i'm using an rv220W and i whant to know if is it possible to assign vpn traffic to a vlan when i setup an ipsec tunnel?
example:
Im using different vlans on my rv220W.
Vlan 10: engineers (ex: 192.168.1.0/27) no intervlan routing
Vlan20: sales (ex: 10.0.123.0/24) no intervlan routing
This is what i need: - An engineer is on the road and when he makes a ipsec vpn connection => assignd to the vlan "engineers" so he can access the server/pc's in that vlan.and when someone from the sales group starts a vpn connection he needs to be in the vlan "sales" so he can access his pc/data,...
View 15 Replies
View Related
Dec 29, 2012
I can't connect to the wireless modem from most parts of my bedroom. I can connect to the modem from the hall next to my bedroom. Can't from my brothers bedroom, but can from my parents' bedroom. All using the same laptop. Once I connect to the modem, and move into one of the rooms where I can't connect, I do stay connected. I can ping the modem, but I get very high results (800-1500 ms), while I get 1-5 ms in other parts of the house. I only get extremes, good connection or very bad connection, haven't found anything in-between.I've tried changing the network channel (I've tried 1, 6 and 11), but that didn't work at all. I've been away from home a few days and these issues started while I was away. Nothing obvious changed in our house while I was away. Just that my sis got a new phone (but can a phone honestly be responsible for this?). And my laptop has found a new modem in the neighborhood. Previously everything worked fine. I had great internet all over the house. Something is just blocking the signal.
View 1 Replies
View Related
Jun 28, 2011
I have a cisco 7609 running IOS version c7600rsp72043-advipservicesk9-mz.122-33.SRE0a.bin with the following modules..
sh mod
Mod Ports Card Type Model Serial No.
--- ----- -------------------------------------- ------------------ -----------
3 20 7600 ES+ 7600-ES+20G3CXL
[Code]....
The circuit has been tested as clean , so for the moment we have to assume that it is not a circuit issue We also have another idential 7600 in another POP with similar config that does not display the same problem
View 3 Replies
View Related
Sep 3, 2012
I have an issue where my customer is only using the ASA as their firewall. When their internal users try to connect to a partner's site using a 3rd party IPSec solution it seems as if the return NAT-T traffic is being dropped. However when looking at the traffic the udp500 communication goes through, but the 4500 traffic hits the outside interface and then gets dropped.
I used the packet tracer command and the output is set to Allow. Also after initiating the vpn connection I see two udp connections (one for 500 and the other for 4500.
I cleared the asp table drop, and didnt see to see anything, I am waiting on the running config, and the customer is running ASA 8.4.
I used the capture tool on both interfaces (inside using the client ip, outside using the interface ip, both destined to the 3rd party vpn Headend). Here are the screeshots for this.
I went ahead and color coded the ip address. Green is the pre-nat inside Red is the destination for the VPN headend, and Blue is the PAT ip going out.
View 10 Replies
View Related
Jul 21, 2012
We have a Cisco ASA 5505 (v7.2(3)) with a "fairly" normal configuration yet we have a problem where it appears UDP/53 traffic is denied on our inside network.
here is output from our sys log:
SyslogID Source IP Dest IP Description
305006 172.18.22.3 portmap translation creation failed for udp src inside:172.18.22.156/42013 dst inside:172.18.22.3/53
To give some clarification:
172.18.22.3 is one of our DNS servers
172.18.22.156 is a device we're experimenting with.
We've bypassed the Cisco by using a 4G wireless router with this same device - and it works flawlessly.Here is a [scrubbed] copy of our config. It is what I inherited from the previous admin - I'm not sure of all its finer points (I'm not Cisco certified -- perhaps I'm just certifiable.)
: Saved
:
ASA Version 7.2(3)
!
hostname [redacted]
[code].....
View 5 Replies
View Related
May 10, 2012
Networking is not my gig, but it has to be at this very moment. We have an ASA 5505. Let me explain what's going on.
On Tuesday I wanted to be able to use the ASDM since there is less room for error. But we only had a console set up. So I ran the following commands...
in ($config)
http of course didn't do anything incomplete command
http 192.168.1.2 255.255.255.255 didn't anything incomplete command
http 192.168.200.254 255.255.255.255 inside
[Code]....
Everything started working after that. Everything worked fine all of wednesday and thursday. Then this morning it stopped processing again. When I traceroute it gets to the machine that is hooked up to the console and stops. So I'm guessing its actually getting to the ASA router and being swallowed up again...
View 23 Replies
View Related
Aug 21, 2011
A recently added outbound rule has left my SMTP communications broken. I have since removed the rule, and had Cisco do some damage control, but it's still dropping some of the SMTP traffic. I get a number of NDR messages each day like the one below:Your message did not reach some or all of the intended recipients. Subject: RE: Christopher, Curt Sent: 8/19/2011 9:38 AM The following recipient(s) could not be reached:
[URL]
on 8/21/2011 9:49 AM
Could not deliver the message in the time limit specified. Please retry or contact your administrator.
<630.SM.Local #4.4.7>
Your message did not reach some or all of the intended recipients. Subject: RE: Christopher Curd Sent: 8/19/2011 9:38 AM The following recipient(s) could not be reached: JWillar@email.com on 8/21/2011 9:49 AM Could not deliver the message in the time limit specified. Please retry or contact your administrator. <630.SM.Local #4.4.7>
I've attached an image of my configuration (ASDM GUI). The part of the image highlighted in green are the SMTP rules. The part highlighted in yellow is another rule that I added about a month ago to block a SYN attack. This rule may be part of the problem because of the order it is in the list. Not sure, though.
I have had two Cisco techs Putty into my ASA to check things out. I think they've done all they can. I wonder at this point if it be wise to just reload the last good running-config I have prior to the Outbound rule being added.
View 13 Replies
View Related
Jan 10, 2013
we have a Cisco 2901 as a router on a stick for several vlans. Everything on the segment routes fine and accesses the internet just as they should. The 2901 connects to an ASA5505 on port 0/1. Any host connected to the ASA5505 can access the internet, but can not ping into any of the vlans off of the 2901. The strange thing is on either segement of the network I can ping all of the gateways. What is even more strange is when I run wireshark from behind the firewall going into the 2901 I can not see the packet on another wireshark instance behind the 2901. However if I start a ping for a host host behind the asa I can see the packet in wireshark on the host, which I am trying to ping, hit the gateway.
View 15 Replies
View Related
Apr 2, 2012
what exactly is QuickVPN?Is it a IPSec VPN?Is it a PPTP?Is it a SSLVPN?can I resolve my local hostnames? That means, can I configure a lokal DNS Server?
View 3 Replies
View Related
Aug 24, 2012
I am trying to setup and configure a VPN on the RV220W that uses IPSEC so I can use the Cisco VPN Client I use at work, I have gone through the user manual 11 or 12 times now but still cannot work it out. I cannot find where on the Rv200W iset up the phase 1 authentication username and password which will then lead me onto the phase 2 stage of asking for a username password to allow me access.
View 8 Replies
View Related
Jul 3, 2012
Picked up a pair of RV220W's for a project I'm working on. I have several IP's available, 4 of which are assigned to/in use by a server behind the RV220W. All 4 of these IP's are static external IPs. How I can configure the RV220W so that requests to those 4 IP's get routed to the server.
Prior to purchasing this, I was under the impression what I was trying to do was called one-to-one NAT, but after reading the 'Help' document on the one-to-one NAT page, I don't think this is right. Emphasis added below: Cisco RV220W Wireless-N Network Security Firewall Help FirewallOne-to-One NATOne-to-one NAT is a way to make systems behind a firewall and configured with private IP addresses appear to have public IP addresses.One-to-One-NAT Rule TableThis table lists the list of available One-To-One NAT rules configured by the user. Private Range Begin: start ip address in private (LAN) ip addressPublic Range Begin: start ip address in the public ip address (WAN IP), Public IP Subnet Mask: The Subnet Mask of the public IPRange Length: Range length maps one to one private address to public address up to the given range.Service: This column shows service to be accepted by LAN Host.The actions that can be taken on One-to-One-NAT rules are:(Check Box At First Column Header): Selects all the entries in the table.Add: Opens the One-To-One NAT Configuration page, to add a new entry. Edit: Opens the One-To-One NAT Configuration page, to edit the selected entry.Delete: Deletes the selected entries.
So according to their documentation, the server in question would need to be configured with a private IP. Unfortunately, one of the applications I use is licensed via IP address and my understanding is that I cannot use the software with private/non-routable IP addresses.
Is the RV220W capable of not only securing the line (firewall, access rules, content filtering, port trigering & forwarding etc) but also doing what I was hoping to do (keeping the external IP's on the server, and routing appropriately)?
View 9 Replies
View Related
May 15, 2012
I'm using a RV220W router, and recently got shifted to a dynamic IP solution.Now, I've got a no-ip.org address, but the update service seems to be on no-ip.com. So, I try to enter mydomain.no-ip.org OR mydomain.no-ip.com in the dynamic dns settings, under Host and Domain Name, but when saving the settings it says
'The hostname specified does not exist in this user account' ,which seems to indicate that it manages to login to the update service but gets a negative reply.Is it possible to use the RV220W with no-ip.org/com?
View 5 Replies
View Related
Dec 12, 2012
We have 2 sites connected thru 2 RV220W routers via VPN and most things are working fine. I have noticed however, that any device that has a web interface, i.e. our Sharp Copier and our Freenas server, is inaccessible. The page tries to come up but then I get the Cisco "server is down" page generated by the RV220W.
I can pull up the web interface pages if I use a machine on the local LAN but not on any machine across the VPN. The only commonality I can think of is the RV220W blocking that traffic for some reason..
View 8 Replies
View Related
Sep 28, 2011
Cisco support write down manual (workaround), how to setup IPsec VPN connection on Mac OS 1.7?
View 5 Replies
View Related
Nov 27, 2011
Is there anyway to associate a name to an IP in the RV220W? I am coming from a WRVS4400N v2. Folks are complaining that they can't connect, for example via Real VNC, via the PC name any longer. They have to use the IP address. In the past I put the names of the PCs in the WRVS4400N when I reserved IPs via MAC addresses (some call this assigning static IPs). There isn't any place in the RV220W to put the name. Even when I look at the DHCP list a lot of them show up as "unknown". I am sure this is a NETBIOS thing but I'd rather fix this in the router as I have always done in the past.
View 4 Replies
View Related
Jul 22, 2011
i have a RV220W and absolutely nothings functional on this stupid Router, no NAT , no Port Forwarding and I cant access my Network from Outside. Any firmware link for downloading. This address works, its handling special webrequest.
View 1 Replies
View Related
Jul 19, 2012
I set up a PPTP VPN with an RV220W recently. It was working flawlessly until a recent power outage and now users are getting the 807 error when attempting to connect. I have PPTP passthrough enabled and TCP/UDP 1723 open. As far as I can tell GRE 47 is open as well. Why it was working and is not working after a power outage?
View 2 Replies
View Related
Jun 23, 2012
Having a strange problem that just started this week and got worse this evening. I have a RV220W that is feeding my network. The RV220W sits behind a broadband modem and acts as the DHCP for the network and those computers access the internet that way. Anyway, tonight started an issue where the the RV220W just disappears. Becomes unpingable. I recycle power, and within anywhere from 5 to 10 minutes, it's gone. No longer pingable. Even if I plug a latop directly into it.If I power cycle the RV220W it comes back and I can ping it and access it and its settings. 5 to 10 mins later, I again lose it. Nothing was done. Its been working fine for a few weeks. Had a similar outage last Tuesday, but a recycle of everything brought everything back into line. After I lose connection to it, the lights I expect to be lit remain lit.
View 1 Replies
View Related
Jan 26, 2012
I am unable to make UPnP to work on the RV220W. I am forced to use port forwarding.
View 10 Replies
View Related
Nov 20, 2012
Nothing happens when clicking the SAVE button after making changes on the VLAN Membership screen when using IE9, but it work fine with IE8. Any problems using IE9 during configuration?
View 4 Replies
View Related
Jan 31, 2013
When someone downloads a file, or similar, there seems to be no, or very little, room for other requests. I've even tried to be the only one on the network, start a download (from ex. Intel) and then tries to access a simple website, almost only text, and its extreemly slow. I hav ethe latest firmware, a windows domain network and the routers is not acting as dhcp server.
View 4 Replies
View Related
Sep 26, 2011
Where I can find the MIB files for RV220W router?
View 2 Replies
View Related
Aug 5, 2011
I'm an IT professional with more than 10 years experience. I have spent last 5 days trying to figure out why the wifi connection to this router is so slow, but still no luck. I'm getting only 13Mbps even if my laptop is next to the router! (wired connection worked ok)
I have tried all sort of setting combinations, 2.4GHz/5GHz; N only/ G,N Mixed; Auto/20MHz bandwidth; different channels; WPA2 encrypted vs open; disable firewall; wmm enabled/disabled; 1.0.0.26/1.0.1.0 firmware... no matter what I try, I always get only 10 - 15Mbps speed.
Once I replace this router with my old router, it worked perfectly --- getting 70 - 80Mbps with exactly the same testing environment and configuration.
I really expect this router to offer much faster wireless speed according to this review: [URL]
View 12 Replies
View Related
Apr 30, 2013
I'm using a RV220W in my home office. Before this router I was. using a Sitecom router which did not cause any problems. I have setup a home network. The RV220W connects to the provider modem. The client components connect to the RV220W. Which acts as DHCP gateway. The DHCP features of the modem are disabled. I have assigned all network client devices to the same workgroup. I have to windows 7 PC's. one of them acts as fileserver. when trying to acces it from the other fixed PC or via a laptop the fileserver is visible but not accessable. I can not open it and access the shared folders.It has worked for a brief moment, but without changing any settings it stop working. I have never had accessability problems with the sitecom router. I have installed the latest firmware and tried rebooting the router several times. I have also started again with the factory defaults.
View 3 Replies
View Related
Jan 8, 2012
I have a cisco RV220W router used in a home environment. Recently I purchased a Siemens Gigaset A 580 IP phone. It works OK so far but I would like to optimize the configuration for VoIP traffic and apply QoS for VoIP on this router. Any guide with the recommended configuration and preferred settings of the same? I have not used QoS previously
View 1 Replies
View Related
Jul 18, 2011
I have an Cisco RV220W and I can’t connect to web interface. The router is new, I receive the error in Mozilla: Cannot communicate securely with peer: no common encryption algorithm(s). I used also Internet Explorer, Chrome , I tried to disable SSL 3.0, TLS 1.0 but the problem persist. The PC obtained IP address from the router, I have ping on it ,also the SSID is up with open network I reset to factory default but the problem persist.
View 2 Replies
View Related
Mar 23, 2012
I recently installed a new 220W with the sole intention of setting up the PPTP server. I got the router installed and working but cannot get the PPTP server working. Also when i configure a block of IP address from my lan for the server it tells me i cannot use that subnet? i have set it up this way with other routers ( RV042 ) with no issues.
firmware is 1.0.0.26
View 3 Replies
View Related
Aug 29, 2011
I do you not think the RV220W needs to have better E-mail support that the feature it supports at present?No SSL support at all. The only setting for authentication is: Login Plain or CRAM-MD5. Every mail server I use now, supports SSL as the default authentication and not CRAM or Plain, this makes the E-mail feature useless. [code]
View 1 Replies
View Related
Nov 8, 2012
I'm trying to setup this router with my IP range 192.168.100.1 to 192.168.101.254 but if I try to enter a subnet mask other than 255.255.255.0 I get the error - Invalid subnet mask. It should be 255 for given class of IP address at 255.255.xxx.0.
Every other device on my network allows that subnet mask, why not this router, it's stopping access from my 192.168.101.x devices.
View 5 Replies
View Related
