Cisco Routers :: RV220W Not Working With PPTP Server On One VLAN Only
May 5, 2012
I possess a RV220W (firmware 1.0.3.5) but I can't seem to work with the PPTP server on one VLAN only.
My default VLAN is in 192.168.1.1/24. I created a VLAN ID 10 in 192.168.50.1/24 inter-vlan routing : disabled and Device Management : disabled. (Menu Networking > LAN > VLAN Membership and Multiple VLAN Subnets).
Then I configured a PPTP server on the IP range 192.168.50.200 to 192.168.50.210.
To finish I created my user. (Menu VPN > IPSEC > VPN Users).
The PPTP tunnel is working, but on all my local network and not only the VLAN ID 10.
I recently installed a new 220W with the sole intention of setting up the PPTP server. I got the router installed and working but cannot get the PPTP server working. Also when i configure a block of IP address from my lan for the server it tells me i cannot use that subnet? i have set it up this way with other routers ( RV042 ) with no issues.
I set up a PPTP VPN with an RV220W recently. It was working flawlessly until a recent power outage and now users are getting the 807 error when attempting to connect. I have PPTP passthrough enabled and TCP/UDP 1723 open. As far as I can tell GRE 47 is open as well. Why it was working and is not working after a power outage?
I Have RV220W Rev 1.0.3.5/I want to create 5 users adn connect remotely to the office network using a PPTP connection.
I have enabled the PPTP server and created users.From a remote location (WAN) on Windows 7, I have created a PPTP connection and I can connect however I can not ping or map to the office network.
I have the RV220W and we are mainly using PPTP for VPN access. I can not add more than 9 PPTP VPN user acounts. When I go to add a tenth account the interface just hangs and stops responding. I can delete a user and then add another user and this works fine. I can also add other types of VPN users.
I've got trouble using PPTP connections with the RV220W small business router.When trying to connect to the router of a branch office with the Windows PPTP client (i.e. on Windows 7) from outside the companies network first everything seems to be in working order (user name and password are checked, the device is registered in the remote subnet) but then a window pops up saying there has been an error connecting.
Here is some information on my setup:RV220W with firmware 1.0.3.5It connects to the Internet using PPPoE dialindyndns account configured and workingAnother router working in "Act as a DSL modem" mode is used as a modem (AVM FRITZ!Box 7170)The RV220W is maintaining a IPSec tunnel to a main office, which is working finethere are 2 local VLANs (one with access to VPN tunnel, one without), each with a own subnet (192.168.201.0/24 and 192.168.202.0/24)PPTP users are on a seperate subnet (192.168.203.101 - 192.168.203.111) My first guess was, that the intermediate router acting as the modem could be a problem, but i verified all settings on that router and it should not filter anything. After all port forwardings, the IPSec tunnel and so on are working.
I currently have a RV220W connected over PPTP to the internet. I want to connect with an RV042 with a fixed IP Address.The connection is working, but I always have to add a static route to the remote IP-Adress that I can transmit data.Since my own IP Adress is a dynamic one that changes every day I have to enter every day in the static route as gateway adress the new WAN IP Address.
i'm having problems connecting to my RV220W using PPTP. The first time I set up PPTP on the box, everything worked just fine. Now, however, PPTP just won't work. No matter how I try to tweak various settings on the router, the connection fails. I have tried connecting with Windows 7, Android and OSX with no success.The router came with version 1.0.1.0, and I have tried downgrading to 1.0.0.26 and upgrading to 1.0.3.5, but alas, I can't seem to make PPTP work again.
I have two offices connected with an IPSEC VPN tunnel using RV220W routers. The Tunnel works fine for local users between the two sites(Site 1:10.0.0.x; site 2 is 10.0.2.x). I have also set up PPTP users for remote access. PPTP users that connect to site 1 cannot access site 2 and vice versa. The PPTP users have no trouble accessing the resources on the site that they connect to. I have tried activating RIP and adding various static routes with no success. If I PPTP connect to site 1 and I tracert to an IP address on site 2 the route goes to the site 1 router and then goes to the internet(connected to the site 1 router) where it stops.
Can I configure a PIX (515), as PPTP client to establish a tunnel with non-Cisco PPTP server ? Can my PIX initiate this type of connection ?Today, I use a PC with PPTP client to establish this and I want replace this with a PIX and I don´t want depends of a PC.
For the past week, I have tried to setup the PPTP VPN server on the RV180. The setup was straight forward, but I could not log-on no matter what I tried. I decided to call Cisco small business support, and as I was talking to the engineer, it mysteriously started to work. I was puzzled and somewhat embarrassed because I'd hate to admit it was an id10t problem on my part. As I tried a few different configurations, I began to realize there might be a limitation in the RV180 PPTP VPN server with the current firmware (1.0.1.9).
In short, the RV180 PPTP only works with 192.168.xxx.xxx/24 subnet. My setup has 3 vlans: vlan1 in 172.xxx.xxx.xxx/24 subnet, vlan2 192.168.0.xxx/24, and vlan3 10.xxx.xxx.xxx/24. My originally plan was to keep vlan3 isolated by disabling inter-vlan routing, but I needed a way to manage a couple of devices on vlan3 remotely, thus I wanted to setup a VPN in the 10.xxx.xxx.xxx/24 subnet. This turned out to be the reason why it never worked before. Today when I called Cisco support, I assigned the PPTP VPN server a 192.168.0.xxx ip range, and it worked. Later, I tried assigning 172.xxx or 10.xxx ip addresses to the PPTP VPN server, and they both failed to work. I created another test vlan4 with 192.168.2.xxx/24 subnet, and assigned the PPTP VPN server to that vlan, and it worked again.
I'd like to mention that I already configured the 10.xxx.xxx.xxx/24 subnet with a few devices before I replaced my router with RV180, and I don't want to have to change and test the setup of all the devices. Another reason I want to have my VPN server outside the 192.168.xxx.xxx range is that it's way too commonly used by wifi hotspots that it increases the chance of wifi and vpn in the same subnet.
I can test a few more configurations, but I think the results will be the same. Perhaps Cisco should test the RV180 in the lab to confirm what I found.
My ISP sends various services through VLAN. Internet, TV and Telephone.Now I wonder, is it possible to use this router to distribute these VLANs through the wan port to eg my IPTV box?
I have a Cisco RV220W router (firmware version 1.0.4.17).
I would like to have two separate networks with the following specifications:
Netwrork1: address range for the network is 192.168.0.1-254. All devices should be able to reach eachother within this network and connect to the internet either on LAN or through Wifi. From this network I should also be able to reach the device management page of the router. Also the devices should get the ip addresses throgh DHCP.
Network2: address range for the network is 192.168.5.1-254. All devices within this network should not be able to reach the devices in network1. All devices on this network should reach the internet through Wifi only. Device management page should not be available on this network. I have configured the router as shown in the attached screenshots but the problem is that in Network2, devices get IPs from the 192.168.0.1-254 range and not from the 192.168.5.1-254 range. Also there is no internet on these either.
So if the PPTP server is enabled, and "Block MAC address not on the list" is enabled under the DHCP settings, will the PPTP client get an IP address?Similarly, if the PPTP server is enabled and the range of IP addresses configured on the PPTP server screen is outside the IP range of the router due to a subnet mask (like 255.255.225.248 for example), will the IP still be assigned to the PPTP client? If assigned, will that IP have any connectivity to the LAN?
Just setup two RV220Ws with a IPsec VPN connection. All working well. However, I have a question regarding how to force ALL traffic from a VLAN to go thru the VPN.IPsec from site A (EU) to site B (USA) working good. On Site A I have a dedicated VLAN that needs to have ALL traffic (internet included) be sent thru the VPN tunnel. The main purpose of this is to have internet presence as if in the USA. This is necessary to access some sites available only in USA specially for the kids -their web sites will not display content because they're not in the USA at the moment. How do I accomplish this? I tried to setup a Static Route for the VLAN but you cannot setup a 0.0.0.0 destination route.
We have a new optical fiber connection from a new ISP (only for Internet) and we found that our Cisco router RV220w won't work with this new connection because is not possible to add the V LAN ID 20 for the WAN traffic, as required by our ISP/connection. Now we would like to know what Cisco routers can support this feature and that can be "similar" to the RV220w or if there is another way to solve this problem and maintain our actual RV220w, because the features on this particular router (apart of the V LAN ID on Wan) are more than enough for us -
We would like to have a “simple” router and with firewall and VPN features as RV220w, because the one that our provider says that works seems to be too much for us Cisco 2951-SEC K9 – We are a small company with a network of around 10 computers and we only need some VPN connections for our sales companies in Europe and workers when traveling (3-5 VPN connections are OK).
We have just acquired a Cisco RV120W Firewall Router and we are experiencing issues with this router. I've read some threads related to port forward issue with RV120W before writing this new topic.
We have 2 locations (site A and site B) connected with a Site to Site VPN (PPTP) running under Windows Server 2008 R2 with TMG 2010. This Site to Site VPN worked very well until we replaced our old router with the RV120W at site B. Since this moment, our engineers are not able to make the site to site VPN work again. The TMG box are located just behind the router.
We have followed some threads about Port Forwarding but it did not solve our issue (others port forwarding rules for RDP for example work). Our RV120W is running the last stable firmware (1.0.2.6) provided by Cisco.
I have configured PPTP Server on RV042, and created 3 accounts. I am able to connect from Windows PC without any problems.
In the router's logging utility, there doesn't appear to be any log entries indicating either successful or failed attempts to connect to PPTP server. The only access logs I see are for access to the router's configuration utility. Is there a way to view PPTP access in the router system log?
I just received my rv220w and perhaps I haven't got enough experience with cisco routers. How can I restrict traffic between different VLANs?
For example: Hosts in one VLAN shall only be allowed to access a web server in another VLAN. All other traffic should be blocked. I've created two VLAN with Inter VLAN Routing enabled. But it seems there's no way to install a firewall rule between VLANs.
We assign (reserve by MAC actually) static IPs to all of our devices. Over time we have gotten rid of some devices but haven't begun (or finished really) re-using the old IPs. On our WRVS4400N v2 routers we are able to set the max number of DHCP users per Vlan. This prevents unauthorized devices trying to connect to our LAN.For example. I set the range from 192.168.1.100 - 192.168.1.103. IPs 100, 101, and 103 are in use (reserved via MAC address). We set max number of DHCP users to 3. This prevents someone from gaining access to 192.168.1.102. Does this make sense? Or at least this was the initial goal and it tested out successfully back when we implemented it.
How can I do the same for with the RV220W? I can set the range, assign static IPs (reserve IPs by MAC address), but can't keep others from gaining accessing to our LAN via the unused IPs (not assigned a static IP).My initial thought was to create static IPs (for the unused IPs) using dummy MAC addresses. I'm sure there is a much better way of accomplishing what I am trying to do.
i'm using an rv220W and i whant to know if is it possible to assign vpn traffic to a vlan when i setup an ipsec tunnel?
example: Im using different vlans on my rv220W. Vlan 10: engineers (ex: 192.168.1.0/27) no intervlan routing Vlan20: sales (ex: 10.0.123.0/24) no intervlan routing
This is what i need: - An engineer is on the road and when he makes a ipsec vpn connection => assignd to the vlan "engineers" so he can access the server/pc's in that vlan.and when someone from the sales group starts a vpn connection he needs to be in the vlan "sales" so he can access his pc/data,...
My RV220w has a problem with DNS. I have configured the device for my network, but it seems as though DNS is not working correctly. For a background, I have a primarily Windows environment in my network, W7 PCs. I use homegroup to share files/printers amongst them. I like that I can type "\<server-name> in the Windows search box, and up comes the other computer's files. This functionality is still there with the RV220w, so that's not my issue. My problem arises when attempting to type "<server-name>" into the Remote Desktop Connection dialog box. I can no longer RDP to my other computers by name. Attempting by IP does get me there.
I just upgraded the firmware on the RV220W to 1.0.2.4 and it looks like the time is not updating. I tried a couple of different default time servers and also a custom time server (time4.nrc.ca).
We have 2 RV220W Routers installed in seperate offices. We are attempting to setup a IPSec tunnel between the two sites. So far we have been unsuccessful in getting this to work.On both sides, we are getting a successful connection established, but netiher site is recieving any packets. Both sides are transmitting packets though. We have exhausted our resources trying to figure out why.
RV220W is at firmware v1.0.2.4 From: Administration / Management Interface / Web Accesss I have configured remote Management: Remote Management [x] EnabledAccess Type: All IP addressesPort Number: 8888Remote SNTP [ ] not enabled
From within the LAN side I can connect to the router and administer via https://192.168.3.97:8888
Status / System Summary reports:WAN (Internet) Information (IP4) Connection Type: Static Connection State: Connected IP Address: 207.180.139.242 NAT: Enabled But from the WAN side (using the same Win7 computer) I cannot connect via: https://207.180.139.242:8888
This used to work. Also not working: PPTP logins. ISP is RCN via cable modem, fixed IPs.
Have tried power cycling router - no luck. Have tried from PC with AV off and Win7 firewall off
I have been trying to configure a local DMZ on our network with the Cisco Small Business RV220W router, running the latest 1.0.3.5 firmware but it doesn't seem to be fully functional? Does the DMZ feature actually do anything at the current state of this router? Because when I tried to DMZ host a computer on our local network I still had to manually port forward different applications in order for people to reach it from WAN.
For instance when trying to host a game session, utilizing TCP port 7777 it didn't matter whether I had enabled DMZ or not, I was still required to manually port forward the port to the DMZ IP-address.
Doesn't this defeat and eliminate the whole purpose of the DMZ feature in the first place?
I am trying to set up a Synology VPN server thru a cisco RV220W and cannot get a windows 7 VPN client to connect to it. Access rule was created on RV220W to port forward 1723 and also made sure the same port was forwarded on the built in router on the Synology NAS box, running DSM4.1 and made sure VPN server was up and running. IP address of synology NAS is 192.168.1.250, mask of 255.255.255.0. DNSgateway is 192.168.1.1. Only running PPTP at this time.
When I run the windows 7 VPN client, I try to connect to the external internet addres:1723, make surePPTP is the only protocol and use a DNS of 192.168.1.1. When I try connect, I get an 868 error which says "error 868: The remote connection was not made because the name of the remote access server could not resolve."
When I try to ping port 1723, I do not get a response which leads me to believe that the issue is the router and not the NAS box. HTTP, HTTPS and FTP ports work fine.
In my last thread I had difficulties setting up access to my FTP server through the RV220W router. After getting it to work, I faced a new issue of reduced upload speed. 240ish KB/S which is obviously ridiculously slow. After much toying around, I finally got it to work again, after doing a factory reset of the router. But today when I wanted to upload to my friends NAS, I suddenly am faced with reduced speeds yet again(400KB/S)! settings, with one firewall rule added, to allow access to my FTP. Other than that, I also enabled jumbo frames....so I tried disabling that again. But that did nothing. Also tried disabling every firewall feature under "attack prevention" but, didn't seem to work either.I didn't reboot the router with each change, as that would make things take a lot longer....and didn't think it should be necessary?
I'm starting to get more and more tired of using my RV220W....seems slow and buggy..when I do a online speedtest, I get a 30Mb/30Mb down/upload rating, which matches the rating I pay my ISP for.... And I have a fiber connection.
I was trying to set a DHCP pool with 127.16.0.0/16 with RV220W, however, RV220W UI can't save it. It displays "IP Address Range -"Step to reproduce: (it is 100% reproducible)
1. login into RV220W admin web
2. Create a VLAN, id 201
3. Go to "Multiple VLAN subnets", select the VLAN, click edit
4. Enter following info: IP Address: 172.16.0.1 Subnet Mask: 255.255.0.0 DHCP Mode: DHCP Server Domain Name: Cisco Starting IP Address: 172.16.2.100 Ending IP Address: 172.16.10.254 Primary DNS Server: 172.16.0.1 Leave rest of settings with default value. DNS proxy is enabled
5. Press Save button. The UI shows text "IP Address Range -".
Expected result: RV220W shall save the setting and make use of 172.16.0.0 subnet in IP pool. By the way, the error message "IP Address Range -" seems incompleteI tried same setting on netgear FVS318N (very similar settings to RV220W), it accepts 172.16.0.0/16 as DHCP IP pool and works.RV220W has great feature set meets my needs. Its UI is slow and sometime dashboard freezes, which I can live with comparing to features. But DHCP server IP pool can't be class B is huge limitation to me.
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings: LAN IP: 192.168.121.1 on default VLAN (1) VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope Inter VLAN Routing enabled for all VLANs
Ports 1 through 3 are configured for VLAN1 and right now I have one PC connected directly to port 1 and nothing connected to ports 2 or 3. Port 4 is configured for VLAN10 with a managed switch (also configured on VLAN10) connected to it. There are 4 wireless access points connected to the switch.
On the Setup->Advanced Routing page of the RVS4000 I have the Inter-VLAN Routing option set to Disabled. Yet when I connect to one of the wireless access points and receive a 192.168.10.x address, I can ping the PC connected to port 1 which has a 192.168.1.x address.
Also, I would like VLAN10 to not have access to the Management GUI on the RVS4000.
