Cisco Routers :: VPNs Between RV042s (v3) Keep Dropping Telnet Sessions
Jan 26, 2012
I have recently installed four Cisco RV042 v3 VPN routers for a customer of ours to replace existing Nortel Contivity 1010 devices which were providing VPN tunnels from the customer's 3 branches to their headoffice. The original Nortel devices were working perfectly but the customer wanted some firewall rule changes and the Nortels were proving to be somewhat inflexible and incomprehensible in their configuration hence why they were replaced.
When installing the Cisco routers I configured the VPN settings to match the Nortel device settings so that I could swap out a branch at a time without taking the whole setup down for a day.The customer has a Unix based dumb-terminal application running on a server at headoffice that they access from their branches using terminal emulators on Windows PCs and thin client hardware devices that support vt100 terminal emulation.
Prior to installing the Cisco RV042's everything was working fine. Now they are using the RV042's they keep getting the sessions from their branches dropped. Both PC users and thin client users are losing sessions and it happens with active and idle sessions. I have checked the logs on the routers when users are disconnected and there is nothing logged at that time (other than my login)... I had thought maybe it was to do with tunnel renegotioations so I have set to phase 1 / phase 2 SA timeouts to 86400 & 28800 seconds respectively but this has had no effect. I had also seen somebody advised disabling 'SPI' in the firewall... I have tried this and it makes no difference.
View 9 Replies
ADVERTISEMENT
Feb 2, 2012
we use an asa5520 like vpn termination point, asa uses acs5.3 for authentication purpose, and all seems to work properly,but acs5.3 doesn't purge user sessions when vpns terminate; I can see many user "logged-in" into menu System Administration --> Users --> Purge User Sessions; this is a problem, because we have configured max session per user how can avoid this problem? is there any new configuration to implement into asa?
we need to configure max session per user, but there is only a global option applyed to all users.how can we configure user accounting? we need to know how long a user is connected via vpn session.
View 1 Replies
View Related
Dec 19, 2012
Someone told me the commands, but I can't remember them. Have a router (2801) at the end of a highly utilized T1 link/router. How do I protect it so my SSH and/or Telnet sessions will get serviced if the router is real busy.
View 9 Replies
View Related
Feb 27, 2011
We have a new 2911 that needs to be configured, unfortunately it's at a remote site. I had installed the following config: [code]
Now, I do get a dhcp ip on the G0/0 interface and I can ping it from my remote network and the local router as well as the local lan. The hands and eye guy is able to telnet from the local lan but I am unable to telnet from either my remote lan or the local router.The only error I receive is "connection refused by remote host". All lines are clear so I have no conflicts with multiple telnet sessions.
View 8 Replies
View Related
Nov 13, 2011
One of the persons in our company wants to have a phone at his home....(not Cisco) as well as connectivity to servers and other resources at our office. There's talk of using an existing RV042 our office and placing another at the person's home. The office has a static IP address from our ISP, but at the person's home, it will be DHCP from the ISP.
View 4 Replies
View Related
Dec 3, 2012
I setup RV042s at a clients offices for the VPN support and am now finding that multiple sip clients behind the router does not work. I found a thread on tech and it looks like there's a case open for the issue. url... How to get this working other than assigning IPs for the phones and dealing with different ports.
View 1 Replies
View Related
May 22, 2013
why QuickVPN clients can only reach RV042's LAN Network and not able to access subnet 1 remotely, however PPTP clients can access both..
Firmware Version : v4.1.1.01-sp (Dec 6 2011 20:03:18)
Working Mode : Gateway
Multiple Subnet: Enabled
Device IP Address : 192.168.10.1
LAN: 192.168.10.1/255.255.255.0
Subnet 1: 172.16.10.1/255.255.255.0
QuickVPN clients able to reach all the resouces inside 192.168.10.1/24 remotely, but unable to access 172.16.10.1/24 network.Network 192.168.10.1/24 able to communicatie with network 172.16.10.1/24.PPTP clients able to access both subnets remotely.
View 1 Replies
View Related
Aug 17, 2012
I have a server that I am using as a CCTV system. On the E3200, I have port forwarding setup so that it will forward port 3500 in to port 80 on my server. So from the internet, I can point my browser to my home IP address on port 3500 and see the images capture on the server.What I am finding is that from inside the network, I can connect to the cctv server all day long. When I try to connect to it from the internet using the external IP address on port 3500, the Linksys E3200 is dropping my inbound connection and it seems like it is blacklisting my IP address for several minutes. I can have a continuous ping going. As soon as I try to access the cctv webpage, my session drops, the pings start failing, and it remains that way for a short time.I thought that the router might be resetting itself, so I started a continous ping from two totally separate computers to my router, and from one of those computers I try to access the cctv server through the port forwarding, and the computer I tried it from one drop and its pings would start failing, at the same time the other computer was still able to continously ping my router.
View 9 Replies
View Related
Jun 20, 2012
New E900 router drops PPPoE session and gets new IP address randomly every 1-20 hours. Tried different E900, does the same thing. Disabled IPv6, no change. Upgraded FW from 1.0.00 to 1.0.01, no change. I have an SPA112 ATA behind the router and it has to re-register with the VoIP provider every time the IP address changes, so I'm afraid of my call getting dropped if this occurs while I'm on the phone. Using an old WRT54G or a different brand of router it will keep the same PPPoE session for weeks, so it is not the ISP.
View 2 Replies
View Related
Jun 15, 2011
what is the maximum number of Lan-to-Lan and user vpns supported in the ISR G2 2911 and 2921?
View 5 Replies
View Related
Jun 30, 2012
I want to split my traffic between two ISP's. I want all traffic to pass over one connection EXCEPT my VPN tunnels, which I want to use the second ISP. How should I set up (protocol binding?) to accomplish this? (I have run into various problems trying to load balance all traffic. So I am trying to "partition" traffic.)
View 1 Replies
View Related
May 9, 2013
I am curious of the max supported SIP sessionf of the SRP500 series.
View 1 Replies
View Related
Aug 8, 2012
I have DSL line that gives 7mb down and 768k up. I have 2 users running win7 RDP session and after a few hours the session is unusable its so slow and then eventually it hangs . don't know where to start.
View 1 Replies
View Related
Jan 18, 2012
I have two sites setup with a gateway to gateway VPN. Both gateways are RV042s. I have a resource on Site B ( a VoIP Phone Switch) that needs to be accessed thru Site A.Question: Does the RV042s support port forwarding thru the VPN tunnel?I have configured a port forward on Site A's router and the router's firewall log at Site A shows that connections are being accepted, but a packet capture at Site B in front of the switch does not contain a data stream. To answer the obvious question, I can not control the path that data is being sent so I would not be able to redirect the data stream to Site B from the source.
View 1 Replies
View Related
Mar 9, 2013
I'm trying to telnet into the my RV180 router. How do I go about it.
I created 3 VLANS
1 at 192.168.1.1
20 at 192.168.20.1
30 at 192.168.30.1
Here is the Multiple VLAN Subnet Table:
1 192.168.1.1 255.255.255.0DHCP ServerEnabled 10192.168.10.1255.255.255.0DHCP Server Enabled 20 192.168.20.1 255.255.255.0 DHCP ServerEnabled
I can ping the router at all 3 IP addresses.How do I enable the telnet service on the router?
View 1 Replies
View Related
Jun 20, 2011
I am trying to access my RV042 through telnet. I go to http://192.168.1.1/sysinfo123.htm?ConsoleSimulation=1
which enables telnet. However when I type my username and password it will not authenticate.
View 16 Replies
View Related
Jan 14, 2013
I know this is a small business appliance I got my ccna certification with the hope of practice my CLI skills with a cisco device however I read in cisco docs the small business routers doesn´t support talnet neiter ssh I mean CLI, is thta true ?
View 1 Replies
View Related
Mar 14, 2011
I can telnet to switch from checkpoint firewall access port and from switch directly. I can ping/traceroute successfully to the switch. Access-lists 14 & 15 are allowing the traffic I want. The router on the other side of the FW has 2 static routes and a default static route set up.
Here is some of the config from my switch:service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryptionhostname xxxxx
enable secret xxxxxx
username xxxxxxxx password xxxxxxxip domain-name xx.xx.netaaa new-model
aaa authentication login default local enable line none[code].....
Not sure of checkpoint firewall config....I have run wireshark when trying to telnet and I get no syn-ack back from remote switch. Just 3 consecutive syn attempts.I have some switches I can connect to and they go right through the 3 way TCP handshake and I cannot find any differences in the configs between the successful connections and the unsuccessful connections.
View 1 Replies
View Related
Jan 25, 2012
I wish to change ARP table or any else to get a WOL functionnality.
I found how to activate telnet server, but I don't have the right login and password.
View 1 Replies
View Related
May 1, 2012
I'm trying to setup 2 subnet with two RV042 routers. One router will act as a gateway and both WAN ports will be used by two different isp connection. The first router (gateway) LAN IP will be 192.168.0.1/24.I would also like to set up another router behind the gateway with with separate subnet 192.168.1.X/24. And I would like clients on the 192.168.1.x subnet to use the internet through the gateway router and clients on the 192.168.0.x subnet to access resources on the 192.168.1.x subnet. Am I able to do this with two RV042?
View 1 Replies
View Related
Jun 18, 2012
Is it possible to telnet into the 'WRVS4400N Wireless-N Gigabit Security Router with VPN' router? When I try it says the remote system refused the connection.
View 5 Replies
View Related
Feb 1, 2011
I have small business server 2003 setup as a DC and did not install exchange, i use hosted exchange. i am trying to setup vpn and have opened port 1723 on both of my router. my network routes through a wireless router(192.168.1.1) (port 1723 forwarded to .1.104) to a second wireless router (192.168.2.1) to my server with two nic cards (.2.2 - external and .2.103 - internal) (port 1723 forwarded to .2.2) i can telnet 192.168.2.2 1723, .2.103, .1.104 - my ip of my second router handed by the first router. my server in handling dhcp and it is disabled on my .2 router. I CAN NOT telnet my public ip handed to 1.1 from the ISP(my internet IP). it tries for about 30 secs and dies.
View 8 Replies
View Related
Nov 3, 2011
I am having some troubles finding information about how to configure firewall policies (rules, chains, etc.) via telnet on a RV016. The reason for that is that i keep getting some log entries "connection refused - policy violation" and "blocked" even with my firewall wide open (only allow rules on all interfaces, SPI and block wan request disabled, multicast and https enabled, etc.... ). Also, with these exact same rules, i can only connect via PPTP with the firewall disabled. The minute i tick the enable option the tunnel never gets to authentication phase. I then started reading OpenRG manual and many things are quite similar, but some other entries are missing from that manual (maybe some changes made by cisco?). I am trying to figure out some service ids, chains (e.g. the rv016 has some rules redirecting to chains 10, 100, 200 but i can not find them anywhere), and so on. I have only one rv016 and about 60 connections to it so i can not experiment that much without having the whole company on my neck with internet problems.
View 2 Replies
View Related
Dec 29, 2012
Right now on my internet, we have U-Verse, so one router is the AT&T U-Verse one which is downstairs and I also have another router upstairs which is a Netgear oneThe problem is, the U-Verse always stays up, but on the Netgear router, it will sometimes randomly drop signal and the signal is no where to be found on devices with WiFi. I'd have to disconnect and reconnect the router for it to be seen again.They are both on the same internet network U-verse, I just have 2 routers because the devices I keep upstairs I connect to the upstairs router.
View 1 Replies
View Related
Jan 27, 2013
I have a small business network including 2 QNAP 219 NAS servers. Several times we have noticed, the connection to the servers are lost. We have tried to restart the servers without luck. But when we restart the router, all problems are gone and we can reconnect.
View 2 Replies
View Related
Mar 13, 2013
I just recieved a new RV180 yesterday and it will not connect to my switch. Router was updated to the newest firmware, reset to factory settings. I did change the ip and ip range. Router works fine with one computer attached direct. As soon as I connect my sf300-24P to it, the WAN and LAN lights all light up and then go out. Only the WAN will light back up. I have no connectivity to the router. I plug the laptop to the router directly and no LAN lights come on and can not see the router with arp -a.
View 6 Replies
View Related
Apr 25, 2012
I have my RVS-4000 configured using static IP addresses in the LAN configuration. The users use DHCP to get their addresses (for the most part, a couple may have static IPs set on the computer). I have the maximum number of DHCP users set to 1 to restrict the ability of people to log in to the system. That one address is locked down.
The internal address of the router is set to 182.168.2.1. It doesn't conflict with anything on my network. I have 35 static IPs. About half of them are uing IP Based ACL to limit their access time but that doesn't seem to bear any relationship to what drops off.
Almost daily one or more of the users will lose their IP address and a hard reset of the router is required. The user this happens to seems random and it may be more than one but seldom all of them. The network includes Windows7 (Home & Pro), a FreeNAS, Macs (Leopard and Snow Leopard), iPad, iPods, an iPhone and an AirPort Extreme used as a WAP (DHCP is disabled). The AirPort is plugged directly into the router and has a staic ip on the RVS-4000 but is set to DHCP. It seems to be the most common problem child.
View 3 Replies
View Related
Aug 10, 2011
Model: WAP4410N-A V02
Firmware version: 2.0.3.3
Deployed 3 of these as WAPs. No repeaters. They are spaced at least 50 feet apart over three offices, each in a server or switch room.
Across multiple laptops, and multiple WAPS, the wireless will function fine for a while with good bandwidth..then the connection will simply drop. By simply resetting the connection on the laptop or turning the wireless off then on, the connection typically returns, at least for a period of time before it drops again.
I’ve tried these configured as three separate SSIDs on identical channels, as well as one SSID for all three with different channels (preferred for a seamless wireless), and the behavior does not change either way.Based on some other threads, I tried forcing the LAN port speed to 100 mbps, but the problem persists.
View 7 Replies
View Related
Feb 14, 2013
It appears we might have an issue with our RV082 (v4.2.1.02) dropping packets during the teardown of many TCP conversations. I have attached two packet captures of what I believe is the same conversation. One is from outside the router (Wireshark using an Ethernet Tap) and the other is from the client inside the router (SLES11SP2 running TCPDump). These are both very small captures 9 packets and 18 packets and I'm hoping it will identify the problem.
It appears that the RV082 is prematurely closing the natted port used to communicate with the host outside the network. The host sends a FIN, ACK packet, to which the client responds with an ACK, However, when the client then sends his FIN,ACK sequence, it never makes it outside the router. The client sends a total of 9 FIN,ACKs trying to contact the outside server, but none of those appear to make it through the router.
Is the router slamming the door prematurely? (I've been fighting with this problem for 3 weeks now!)
Inside Capture:
----------------------
No. Time Source Destination Protocol Length Info
1 2013-02-13 19:32:37.827942 192.168.1.45 38.113.116.214 TCP 76 35975 > http [SYN] Seq=0 Win=14600 Len=0 MSS=1460 SACK_PERM=1 TSval=635644783 TSecr=0 WS=128
[Code].....
View 19 Replies
View Related
Jul 10, 2012
Some day, then my internet jut died. then I got the router restarted(unplugged the electricity and plugged it back in) and it worked for like a day and then it died again. I restarted the router again Internet worked and then some hours later it died again.This problem only happens to me and not anyone else in the house.I'm connected from my pc with and ethernet cable to a switch/HUB where it's then connected to the router.
View 8 Replies
View Related
Jan 6, 2012
I have installed a WRVS4400N router in a client's office. When laptops are plugged into the router everything works fine. When they are attached via the wireless signal it drops frequently. WPA personal is being used to encrypt. I have also installed the latest firmware and am having the same results. What can be done to eliminate the drops?
View 10 Replies
View Related
Jul 17, 2011
I have several wired and wireless devices connected to the router which is running the latest firmware (2.0.2.1) and I have this issue with all wireless devices. The router is configured for B/G/N Mixed, Channel 6, and to broadcast the SSID. Security Mode is WPA2-Personal w/ key renewal set to 3600. Connection control is configured to allow only the desired MAC addresses. All wireless clients are configured for DHCP (as are some of the wired clients that do not have this issue). I have tried various setting changes over time, none of which have resolved the issue.
What I have determined, and may be useful, is that each time this occurs I am unable to ping the router from the client and have no connectivity to the internet or other devices on the network. If I ping the WAP address (reserved for internal use address) I get a response and then connectivity is always restored after doing so. In other words, I ping 192.168.1.1 and get no response, immediately ping 192.168.1.2 and get a response, then immediately ping 192.168.1.1 and now get a response and connectivity is restored. If I skip the first step and just ping the reserved address followed by the router address result is always the same. It would appear the issue is between the the two router addresses.
Prior to owning this router I had a Linksys BEFSX41 that I had for about 7-8 years and a WAP54G I had for about 5, both of which still worked and I never had this issue with my wireless clients. I went to this router for the increased performance and am very happy with that aspect, however this issue is unacceptable.
View 6 Replies
View Related
Jun 28, 2012
I have a cisco RV180 hooked up to a cisco cable modem and Cox service.
The basic symptoms of the problem are that every 10 minutes or so external connections will hang. This lasts maybe 20-60 seconds. If you're loading a website when this happens, various parts of it won't load and firefox will sit and spin indefinitely (it seems) until you manually stop the loading and click the reload button.
When this is happening I can still connect to the routers webserver and dashboard that auto-refreshes every 10 seconds. It seems perfectly fine. My initial theory was that something was broken on the Cox end of things, but after swapping out the RV180 with an old on-q router we had laying around, we haven't seen the problems.
Some other differences I've noticed between the on-q and the rv180:
* with the rv180 traceroute to external hosts shows a big delay (500-600ms) at the hop right after the router. With the on-q, it's 12ms.
* when I ping the ip of that hop with the large delay, with the on-q I get no responses. With the rv180 I would get these strange host redirect messages that make it look like that ip is redirecting to itself. There would be 1 or 2 of those redirect responses, followed by 3 or 4 errors, and every packet would be listed as an error in the ping summary.
View 16 Replies
View Related
