Cisco Routers :: RVS4000 Freezes When Pushing Data Through VPN Tunnel
Jul 26, 2011
My RVS4000 router freezes up when a lot of data is being pushed through the Ipsec tunnel. Let me explain in detail.
On physical location A, I have an RVS4000 router (with IP 192.168.3.1) which is permanently connected with a WRVS4400 router (with IP 192.168.1.1) on physical location B. The Ipsec tunnel has been configured using the Easy Setup Wizard of Cisco and has been working fine and stable for months. Both routers have another Ipsec tunnel with another WRVS4400 router (with IP 192.168.2.1) on physical location C, but this router does not play a role in the problem below.Recently, I’m trying to set up a remote backup service between physical location A and B using “rsync”, which uses port 873. Due to the Ipsec/VPN tunnel, I could configure rsync to move the backup files from our NAS on location A (NAS has IP 192.168.1.2) directly to location B (NAS has IP 192.168.3.2). Both NAS-devices are of the brand Synology (DS211J). The Ipsec tunnel guarantees that the data is coded and thus secure.
However, when pushing the first batch of data, I noticed that the router on the receiving end (RVS4000) freezes up after approx. 1,5h after the batch has started, which is after approx. 1 gigabyte of data has been transmitted. The connection with the WAN is lost, also the VPN-tunnel is not working, I cannot ping the device or reach its configuration pages (on 192.168.3.1), the only option is unplugging it and letting it reboot. I’m thinking the router cannot deal with the huge amount of data that needs to be decoded. I tried 5/6 times, with always the same result (timing / amount of data pushed through before router freezes varies slightly).
View 11 Replies
ADVERTISEMENT
Apr 18, 2012
I have a RV082 that has an issue keeping an IPSEC Gateway to Gateway VPN running from itself to our ASA 5510. At 8 hours of connectivity (I can almost set a clock to it) the Tunnel will say it is connected on the RV082 but on the ASA 5510 the tunnel is not up.
If I click on disconnect on the RV082 under the VPN Summary page things will come back up. from the ASA 5510 side there is nothing I can do to get things back (ping inside "vpn network" or even trying to make a connection to a networked VPN machine).
To make things more complicated I have another VPN on the RV082 to a PIX 506e that works with no issues. I also have another RV082 at another location with the same settings that keeps its tunnel with the ASA 5510 with out any issue. Some things I have tried to try and fix the issue are:
I upgrade the firmware on the Rv082 V3 from 4.0.0.7-tm (what it was shipped with) to 4.1.1.01-sp) - This seemed to have no effect.
on the RV082 I have changed the MTU from automatic to 1428 and 1452 - all this does is make the connection to the PIX 506e unstable like it is for the ASA 5510 I have changed this back to automatic.
since the time of stability seems to be 8 hours I have changed the "Phase 1 SA life time" and "Phase 2 SA life time" to 28800 both at the same time and individually - This seemed to have no effect.
The current configuration on the RV082 are:
Local security gateway type: IP Only
IP address: (local ISP provided static IP address)
[Code]......
View 19 Replies
View Related
Jul 5, 2011
i have an ipsec tunnel between two rv082 routers. (1 v3 Hardware and the other with v2). On both devices are the latest firmware installed.
Everything working fine, the routers establish an ipsec connection but after about two hours, the router with hw version 3 freezes.... nor the wan neither der lan interface is pingable. I can only pull out the power cord. Below attached are the ipsec settings. It´s a Gateway to Gateway connection
View 7 Replies
View Related
Oct 15, 2012
what the maximum Data Througput can be for this router. Right now, the router is limiting my internet speed compared to what the cable modem can provide..So far, I know that when I connect my computer directly to the output of the Motorola Cable Modem and run a Speed Test on my Charter cable connection, the test shows ~ 50 Mbps for downloads and ~5 Mbps for uploads. That would be great, but I have multiple computers and need to use a router/gateway to feed my LAN. When I insert the RVS4000 router between modem and computer, the Speed Test results drop to ~ 16 Mbps for downloads and remain ~ 5 Mbps for uploads. During that test, there were no other computers online via the router. While 16 Mbps is not shabby, I would like to achieve the full value... is that possible?
Is the RVS4000 unit capable of 50 Mbps for 30 Mbps? How do I setup the router to achieve the maximum available download speed?There is a setup page for the router which has settings right now set at 50000 Kbps Upload and 60000 Kbps for Download; this implies to me that the router is capable of such speeds.
View 1 Replies
View Related
Apr 23, 2012
If I have the IP ACL firewall enabled in my RVS4000 I have trouble connecting to specific websites and also connecting to Apple's update servers. The problem appears to be that the firewall is blocking incoming data to the ephemeral ports even when they are allowed in the firewall rules. I've also tried port forwarding rules but the only thing that resolves the problem is to disable the firewall entirely, which is not the desired resolution. The firmware version is 2.0.27.
View 11 Replies
View Related
Oct 8, 2009
I'm replacing my RVS4000 with the RV180 but having VPN connection issues with the RV180. Let me know the VPN tunnels work perfectly fine on the RVS4000.I have configured my RV180 for 3 VPN tunnels. My ISP is Comcast (cable) Business class with a Static IP. First VPN tunnel is to another Comcast ISP and the VPN works flawlessly - connects immediately.Second VPN Tunnel is to Business class ISP (Verizon-NJ) and VPN will NOT connect.Third VPN Tunnel is to Business class ISP (Cox Network-VA) and VPN will NOT connect.I had opened both the RVS4000 and RV180 up on a browser and both settings from the units were idential. I reconnect the RVS4000, VPN tunnels work great, I unplug and reconnect the RV180, the Comcast VPN works, but the other two do not.From what the log is saying "[IKE] WARNING: no phase2 found" and the other says "[IKE] ERROR: remote identifier not found". It has to be something with the RV180 that I'm missing or possibly configuring incorrectly.
View 3 Replies
View Related
Aug 29, 2011
I recently purchased a RVS 4000 (firmware V2.0.0.3) and am having some issues creating a second (third...fourth?) IPSec VPN Tunnel. The first one is up and running just fine. On the VPN Summary screen it says [1 Tunnels Used 4 Tunnels Available].
When I go to configure the second tunnel, I select --New-- from the "Select Tunnel Entry" drop down and proceed to fill in all the connection information. When I click Save, it seems to be processing and after a few seconds just returns me to the same screen, with none of the information I just input and no connection created. No errors given.
I have another RVS4000 to connect at a different location which will require a similar setup, but don't want to do anything with it until I have the one mentioned above working fully.
View 1 Replies
View Related
Aug 5, 2011
I have a RVS4000 at one location and a second RVS4000 at home. I have established an IPSec VPN tunnel between them and it is UP. I can ping the routers from each end no problem. I can ping the IPs listed in the "Local Group Setup" and the "Remote Group Setup" from both ends no problem. I can even open up a shared resource from a Win 7 machine (e.g. by typing \10.10.10.100 in start-run from a computer on my home network).
But - i can't ping anything else on one network from the other. What gives? I need to access a 10.10.10.101 machine but can't even ping it.
- both RVS4000 boxes have latest firmware (V1.3.3.5)
- home RVS4000 setup with IP 10.10.11.1
- home network has a server with IP 10.10.11.20
- other location RVS4000 setup with IP 10.10.10.1
- other location server setup with IP 10.10.10.100
Tunnel settings on home RVS4000 (the other location properly mirror these).
- Local Security Gateway Type : IP Only
- Local Security Group Type : Subnet
[code]....
View 2 Replies
View Related
Jul 21, 2011
I'm trying to set up a VPN tunnel between a Linux machine and a RVS4000 at a remote site (served via satellite connection). After many efforts, I finally succeeded (based on Openswan). However, while PINGing is OK, big packets (from the RVS4000 LAN to the Linux box) arrive corrupted.
I lowered the WAN MTU, with no success. What finally did the trick is to lower the MTU at the RVS4000 LAN interface. Since this is not possible via the Web I/F, I did it via telnet ("ifconfig eth0 mtu 1400"). However, this change is lost after router reboot. How can I make the LAN MTU setting permanent?
View 1 Replies
View Related
Mar 12, 2013
i am new to MPLS on cisco routers. For our interoperability testing i need MPLS tunnel counters output ( data sent out and data received.). i am not able to find this information in cisco user guide. As per standard it is defined in MIB table mplsTunnelPerfTable of stdte.mib.
View 7 Replies
View Related
Jan 2, 2013
Is it at all possible to channel all/some data traffic through an established ipsec tunneled connection using the RVL200? I have successfully established an ipsec connection through RVL200 and RV042 routers and are able to connect to servers/computers behind it.Now I want to channel all or some traffic through the ipsec-tunnel for computers that reside on 192.168.1.0 subnet of RVL200 network.
Main office - RV042 router - 10.200.62.1
Remote office - RVL200 router - 192.168.1.1
I am trying to use the Advanced Routing option to add static routes but I am not 100% sure if I am configuring the routes correctly.To give an example of routing DNS requests for HOTMAIL.COM [65.55.72.183]: [code]For some reason this does not appear to work. I have also tried using the interface setting of WAN and tested - this also does not work.
View 10 Replies
View Related
Oct 17, 2011
Can I have use a Gateway-to-Gateway IPSec tunnel whereby a user can surf the Internet using his local Internet connection and at the same time connect through the IPSec tunnel to a remote subnet using RVS4000 routers?
View 1 Replies
View Related
Aug 6, 2011
I have succesfully config an IPSec VPN Tunnel by using a Router Scientific Atlanta Cisco 2320 and a RVS4000 4-Port Gigabit Security Router with VPN.On the site of Router Scientific Atlanta Cisco 2320 this is some info: [code] On the site of RVS4000 4-Port Gigabit Security Router with VPN this is some info: [code] Remember that you can not be on the same range of IP, I mean, you can not have 192.168.0.X if the remote network is on 192.168.0.X, you have to change some of the Routers.I show the configuration on Router Scientific Atlanta Cisco 2320: I show the configuration on RVS4000 4-Port Gigabit Security Router with VPN:If all is correctly configured, you should see on Router Scientific Atlanta Cisco 2320 the Status Connected:
If all is correctly configured, you should see on RVS4000 4-Port Gigabit Security Router with VPN the Status Up.As you can see, I'm connected to the remote Router (RVS4000 4-Port Gigabit Security Router with VPN) by my own web browser accesing by the local IP 192.168.0.10.I have used Authentication MD5, maybe is not the best one but I had no time to test SHA1, I will when I will have time.
View 1 Replies
View Related
Dec 26, 2010
Linksys Small Business VPN endpoint routers?
I have been trying for two days to setup a Linksys RVS4000 to a RVL200 IPSec tunnel and I can't get them to connect.
The internet is via optimum online home internet accounts. From what Cisco said, the ports necessary are 500, 4500, 443 and 60443.
View 17 Replies
View Related
Jul 23, 2011
i'm trying to use ACS 5.2 with ASA 8.4 / 8.2 , the authentication phase pass but the DACL not working .by the way the ACS 4.2 + ASA works and the DACL works too.is there any additional configuration should i did it at ACS / ASA to download the ACL . i tried to use Static / dynamic ACL in the authorization profile .
View 1 Replies
View Related
Aug 7, 2012
We have had a Cisco WAG160Nv2 wireless router here for home use, brand new for perhaps just 2 months. And we have been mostly happy, except that it sometimes freezes up for no apparent reason.
When I say "freeze up", I mean that all the connected PCs - ethernet or wireless - have no internet. And that indeed, there is no wireless signal at all. But yet it actually looks as if it is still working. All the lights on the front panel that should be green are still green. But yet, when I attempt to access the router's setup through the browser as normal, that isn't available either. So I can't even access the router's setup, to check for errors in the log.But yet it isn't an ISP problem either. Because every time this happens, the solution is to turn the router off and then back on. And that works every time. So it seems to be a router problem, not an ISP problem.
View 1 Replies
View Related
Oct 3, 2012
I am not a ASA expert but I have configured them few times. I have a vision of a task I have to complete but not sure if it is practical or how to go about doing it.
We two locations, Location A and Location B. Both locations have a 100MB internet conection. Location A has a ASA 5510. Location B has a 5505. Users at both locations access the internet via their respective ASA. Location A is the headquarters and Location B is a disaster recovery site. We want to setup a tunnel between both ASAs. This tunnel will be used to replicate data between the two locations for DR purposes. We need the users to still use the same pipe to get to the internet but want to allocate 10MB for internet use and the remaining 90MB for the DR tunnel.
View 30 Replies
View Related
Dec 21, 2010
I'm using two WRV210 Linksys Cisco Routers to create a tunnel between two places with a pppoe adsl internet connection.I made several tests with new 2.xxx and old 1.7xx firmware, and nothing changes.Try to reset to factory defaults, and nothing changes.I have two problems:
1) The router crashes after a time working, usualy around 24 hours, sometimes more, sometimes less. The lights still flashing, but nothing happens, no VPN traffic and no ping response from the router, and of course, no internet access. I could see just that the router works a bit hot, but, I think that is normal.
2) The VPN IPSEC was configured, and both configurations are identical. All value are the same, I am using the dyndns service. So, the VPN quickly connects and I can ping and access remote computers. Windows Folders, VNC, IT'S REALLY WORKS FULL. WORKS REALLY FINE. PERFECT.
BUT, when the router crashes, as I've told on problem 01, after remove the power cord and insert ir again, the VPN don't reconnect.On log's, I could see that it's say that has no preshared key. [code] But, it worked before. Nothing changes, nothing, the router just restarts. No configuration was lost, (I checked the VPN IPSEC TAB), but says that have no preshared key,The unique way to restablish the connection is go on the VPN IPSEC TAB, and change symetrical any configuration, as change MAIN MODE to AGGRESSIVE on both routers.So, now are as MAIN. Tomorow probably it will crash, so, I will have to restart both routers, and change to AGGRESSIVE. So, when it happens again, i will have to back to MAIN.
View 19 Replies
View Related
May 29, 2013
I installed QuickVPN v1.4.2.1 as it was in the download section on Linksys: [URL]
for the RV082 router we have. It connected but the program seemed buggy as there seemed to be no way to close the program after I used it so I wanted to uninstall it and install a more recent version of QuickVPN (side question: is it possible to VPN connect to my RV082 router with a different version of QuickVPN?).
I have Windows 7 Professional 64bit SP1 with all the latest updates. When I try to uninstall the program, at about the 25% mark of the window for 'QuickVPN Client Setup is preparing the InstallShield Wizard, which will guide you through the rest of the setup process. Please wait.' it seems to stop responding as holding the mouse over that windows just displayes a ring which goes round and round. I regret installing this buggy software on my PC.
View 3 Replies
View Related
Jun 4, 2012
I have a customer with the following topology:
Dallas: Netopia R910 router Windows 2003 Server
San Antonio: Cisco RV120W Router Thin client devices connecting to Windows 2003 Server Okidata 3410 Dot Matrix printer with Dlink DP301P+ Print Server attached to Parallel Port
If a user sends a picking ticket larger than 6 or 7 pages (not really that much data) to the Okidata printer with the attached print server, the RV120W router will completely lock up. The connection between the two routers is lost, and the router must be physically rebooted. This behaviour is fairly consistent on the larger documents described. Pick tickets of less than 6 pages print without any issues. I've examined the data stream and see nothing of consequence in the larger documents. There is no effect on the Dallas router.
An IPSEC tunnel exists between the two routers. what could be causing the router to freeze?
View 5 Replies
View Related
Oct 17, 2012
I am using a Cisco RV110W (Firmware 1.2.09) in a branch and I would like to create a VPN Tunnel to another site that has a Cisco RV042 (firmware v4.2.1.02)
What would be the correct Configuration? the current configuration I am using is
in the RV042 i am using
Check Enable
Local Group Setup
Local Security Gateway Type : IP Only
IP Address : RV042 Pulbic IP address
[Code].....
View 3 Replies
View Related
Sep 11, 2011
I have 2 internet connections in my office one via Verizon Fios and another one via the local cable company. On the fios connection I have an RV042 VPN router and on the Cable company connection I have an rvs4000 router, I would like to know if there is a way I can connect the 2 so I can share a printer I have on one of the 2 networks from the other network without using the VPN feature, like via an ethernet cable connected between the 2 and some kind of static route maybe?
View 6 Replies
View Related
Dec 14, 2011
I have a Linksys wireless router WRT160N, and its worked fine for the past year, till last night, when I pushed the reset button trying to solve another issue and now my router isnt working. I ran Linksys setup disc and it said I was all up and running, but still cant get online with my laptop through the router.I am at a point where I have my default gateway address 192.168.1.1 and my IP address, but not sure what to do with that to get this issue corrected.
View 14 Replies
View Related
Jul 24, 2012
Environment :linksys wrt300n v1.1 which can have ddwrt-mega. Willing to tunnel all lan's outbound traffic through an ssh tunnel.
View 2 Replies
View Related
Apr 20, 2013
Ive set up a rvs4000 with two vlans, one as a bussiness network and the other as a guest network. Everything works fine and the networks can not see each other. I would like to add wifi and I would like to do so with keeping both networks separate. I have a used 1130AG access point and was wondering if I could use this single AP for both networks. If so, how would I go about doing so? Is there a better suited AP for my needs?
View 4 Replies
View Related
May 16, 2012
I have an RVS4000 running V2.0.2.7 firmware that gives me an "Invalid Character(s) Found" error message when I try to edit an existing ACL.
I'm trying to deploy 57 of these routers and would like to be able to use a pre-built config dropped onto each router.
I initially planned on editing the exported config with a find&replace for my local LAN addresses. Since that didn't work the next reasonable solution would be to edit the ACL list (much more tedious, but still better than hand-entering every ACL on all 57 devices).
when this bug will be addressed? Alternatively, if there is an offline configuration editing tool I would be one happy camper to have it!
View 2 Replies
View Related
Jun 3, 2013
I have an RVS4000, not installed. How can I tell from the unit or the packaging that it is a v1 or a v2, without installing and switching it on (which I don't want to do now) ? Are v1 branded Linsys and v2 Cisco ? Can you tell from the date on the package (mine says copyright 2011) ?
View 1 Replies
View Related
Sep 4, 2011
I don't know if my vendor mislead me, but I need to do this: There is a public subnet in my office, not a 192.168.x.x, but a real Public IP.The reason is that we do VOIP and those are only servers. I installed a RVS 4000 in that location, and assigned a PUBLIC Ip to BOTH the WAN and LAN, since when I connect from outside, using either QickVPN or another identical router, I need to be assigned one of the PUBLIC Ip's on the remote LAN. That is the whole idea of the project, to locate servers remotely and make them use our set of PUBLIC IP's. Well, so far I cannot connect either with the Quick VPN client, or using the VPN Wizard. It goes and creates the tunnel, without error, but when I click test, it fails.
View 2 Replies
View Related
Mar 15, 2012
We have backup and other traffic over our vpn which is affecting our ip phone service between two sites. Our consultant suggested implementing QOS over the VPN to give the phone traffic priority. Is this possible with the rvs4000. Is there any good source saying how to do it. Is the setup of the QOS on this router similar to another router where this has been discussed.
View 1 Replies
View Related
Mar 19, 2012
I have problem with bandwidth management on my RVS4000.
That is the way how i done it:
All traffic (TCP & UDP on all ports)
IP range 192.168.0.2 - 192.168.0.2 (My IP adress)
Guaranted download speed 1kbps
Maximum download speed 5000kbps
after saving setting and rebooting router I have maximum download speed on my PC 12000kbps, Why QOS doesnt work ?
View 3 Replies
View Related
Nov 11, 2012
I am getting ready to setup an RVS4000 so we can use the VPN functionality of it, but I am not quite sure of the correct way to integrate it into our network though. I do not need site to site, just the client portion of it for a few salesmen/off site people to use. I have never used or setup a VPN before, so I'm learning everything as I go along.
We are in the middle of switching our ISP and I am waiting to set this up until the new service is live so I can test it prior to moving the rest of the company to the new ISP.
We are switching to Comcast, and will have 5 static IP's available to use. Currently, the firewall does all our NAT and is the forward facing device on our network. I would like to leave the firewall in place (although I am setting up a new firewall for the new internet connection) and have th RVS 4000 sit behind it and receive VPN traffic from a WAN to LAN rule We currently have a 192.168.100.0/24 network.
Do I need to setup another /24 network for the VPN to function behind (and still have access to the 100.X network), or is there a way to allow everyone who connects to receive a 100.X ip address from our DHCP server. I'm not sure how to set everything up with the WAN/LAN connections on the RVS4000 to acheive this.
We are running a domain on a 2008R2 server. The clients will be using laptops that are already part of the domain, if that will make a difference.
View 2 Replies
View Related
Jun 15, 2011
I'm trying to setup a VPN tunnel between a Cisco RVS4000 on our side and a Cisco ASA5520, to connect a machine on our local network to a test server on the target side.
We have all the settings setup correctly and the tunnel is up and running, however, our local machine can't connect/ping to their server. I've tried a trace route both from the machine and from the RVS4000 itself, and they both get stuck after getting past 192.168.1.1. Is there any routing or NAT-ing that I need to do on our router? Or is there a problem somewhere else?
View 7 Replies
View Related
Aug 8, 2009
I'm having an issue with a Linksys RVS4000 which doesn't appear to be behaving as I think it should.I need to forward a port (Single Port Forwarding) through to an internal NAT host. However, I only want that host/port to be accessible from one host on the internet, for security reasons.
I have created the port forwarding entry and this works fine. I then created two rules in IP Based ACL - one to block all access to that port from the WAN interface and one to allow access from a single host.
However, it appears that when a port forwarding entry is added, it will completely bypass the ACL and allow all traffic for that port/host by default.Is this the correct behaviour?
Firmware version is v1.2.11
View 12 Replies
View Related
