Cisco VPN :: VPN From 877 Router To Draytek 2600
Jul 13, 2011
I have a cisco 877 router connected to our adsl broadband at our head office. I have managed to set this up with Nat and DHCP all working to let multiple users access the internet through our single static ip supplied by the ISP lets say the ip is 1.2.3.4.Our internal network is 192.168.1.0 255.255. 255. 0.I have a draytek vigor 2600 at a branch office set up the same with a static ip addresss supplied by the ISP lets say the ip is 5.6.7.8.The internal network is 192.168.4.0 255.255.255.0
I am trying to set up a VPN between the head office and branch office so the branch office users can connect to our internal server(lets say ip is 192.168.1.2) to receive group policies,access files and also telnet into our database server(lets say ip is 192.168.1.3).I have attached a sort of running config that i have pieced together from bits i have read on this site and others. I have tried these settings and other permutations of these settings but i cant seem to establish a tunnel even though when i show int tunnel0 on the router it says tunnel is up and line protocol is up, if i show ip route it shows that there is an ip address for the tunnel and that is about it(No vpn light on).
If it makes sense and that I have entered the right information? I have highlighted the parts i am not sure about in red(Quite a bit and obviously not the exact settings but what i think it should be). Once all the settings are correct on the cisco will it automatically establish the vpn or do i have to dial it from the draytek.
View 4 Replies
ADVERTISEMENT
Jun 26, 2011
My company is setting up a small branch in Scotland (the main office is in Bristol)All we need one desktop, one laptop, a printer and we will be using a DraytekVgn router, and a small switch.We need VPN to this office to set up an inhouse application.How would I set this up with minimal configuration.......ie...Does BT send a router/modem with the set up..Is there anything inside the router configuration that has to be changed.(I know PPTP etc has to be enabled).Do I use the same vpn external ip address we use for our other 2 branches....Can I change the IP Address of the router from 192.168.1.1........to say 192.168.100.1.
View 6 Replies
View Related
Jun 19, 2011
my local site has Cisco 2811 router connecting locally to ASA 5520. Remote site A has Draytek Vigor2950. I have working vpn between local subnet 10.0.0.0/24 and remote site A 10.100.6.0/24. I have remote sites B (10.100.7.0/24) and C (10.100.8.0/24). I would like to route traffic from local site to remote sites B and C via the local-to-remote A vpn. On Draytek routers B and C, I have added to subnet 10.0.0.0/24 to the remote network profile list. On local router, I route traffic for subnets 10.100.7.x and 10.100.8.x to the ASA. On ASA I have added these subnets to the profile for local-to-remoteA vpn.But the vpn will not establish when I attempt to ping from local to remote B or C.
View 5 Replies
View Related
Apr 19, 2011
I have managed to get the tunnel up and working and we are sending data via the tunnel from our Cisco VPN router to the Draytek and onto the clients server. (they , the client, have acknowledged that they are recieving and sending packets back to us).But, we never see any returning packets at our VPN tunnel endpoint. When we send I see the encrypted packet count go up , but the packet decrypt remains at zero, this is using show crypto ipsec sa | begin x.x.x.x.
We do have other working VPN solutions, but this is the first connecting to a Draytek. The ACL's are matching, and they have NAT turned off. The routing is fine or else the tunnel would not come up as are all the tunnel parameters, else our packets would not arrive at their server.
View 1 Replies
View Related
Jun 14, 2011
I'm having some rather odd issues with my wireless connectivity. Running a draytek 2830n router. The wireless connection drops out at random sometimes, at other times it connects (shows full reception) but does allow any kind of internet connection. Plugging in by lan cable allows normal function.I have no clue whats going on but I did just notice that shutting down one of the laptops connected to the network (Dell lx502) appears to have solved the problem for the moment. I've not had a chance to test this as a long term solution. However I believe this is the only laptop with a dual band wifi card.This problem was also occurring on our previous router, a draytek 2820vn but the symptoms were a bit different and this laptop was not there at the time.Is it possible for one machine to knock out an entire wireless network? The other change I made yesterday was to activate the bind ip to mac function on the router for our new NAS as I was messing around with ftp configurations.
View 1 Replies
View Related
Mar 26, 2012
I've recently installed a Cisco ASA with a NAT'd configuration, I'm in the final stages and would like to configure a lan to lan VPN to a Draytek box and that unfortunately isn't going well and having spent almost two days on it am starting to wonder if it will actually work. I can get it to connect but no data seems to be transmitted between the two.
Site A on the range 10.0.0.0 has the ASA and Site B is on the 192.168.16.0 and is a Draytek 2930.
Below is the ASA config created with the lan to lan wizard:
route outside 0.0.0.0 0.0.0.0 193.164.x
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00(code)
View 1 Replies
View Related
Jun 27, 2011
We're trying to establish a "simple" vpn tunnel between a cisco 800 and a draytek 2910, situation:
LAN (192.168.2.0 ) --cisco800 ----- internet ------ draytek ----LAN (192.168.20.0 )
WAN-ports , internet access on both sides are working fine.vpn configuration part cisco:
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
[code]....
What can be wrong: other protocol? something with pfs? diffy hellman group: i heart draytek used 1 and cisco 2?debugging on the cisco site keeps on ginving the error message:
entry number 487 : CRYPTO-4-IKMP_BAD_MESSAGE
IKE message from x.x.x.x failed its sanity check or is malformed
timestamp: 4002880
View 5 Replies
View Related
Apr 20, 2011
I have a Cisco 7200 and need to establish L2TP over IPSEC session with a Draytek Fly200. Draytek must use L2TP over IPSEC to provide LAN-to-LAN connectivity. IPSEC phase 1 and 2 is ok, L2TP tunnel is also established, but on cloned virtual-access IPCP negotiation is not completed:
*Sep 16 09:50:36.911: %LINK-3-UPDOWN: Interface Virtual-Access3, changed state to up
L2X_ADJ: Vi3:midchain adj reqd for ip 0.0.0.0, cid 0
*Sep 16 09:50:38.911: Vi3 IPCP: O CONFREQ [REQsent] id 2 len 10
*Sep 16 09:50:38.911: Vi3 IPCP: Address 192.168.176.2 (0x0306C0A8B002)
*Sep 16 09:50:38.911: Vi3 IPCP: Event[Timeout+] State[REQsent to REQsent]
I think my VPDN configuration from Cisco side is not correct, but I cannot find configuration examples for this kind of solution.
View 8 Replies
View Related
Apr 11, 2013
we have bought 2 Draytek 2830 Routers for our 2 businesses that are in different locations. We are looking at setting up a VPN between them and wanted to do it similar to the following:
http:[url].....
The thing the "Dial IN" site has a static IP from the ISP but the "Dial Out" site has a dynamic IP.what the best approach to take with this would be as I guess the link between the routers wouldn't work if the address kept changing?
View 2 Replies
View Related
Sep 18, 2012
Any experience with IP Routing on Draytek routers?We have a 2830 and I'm trying to set it up like the following: [code]
Now a server in VLAN 2 with address x.x.x.77 can ping x.x.x.74, but I can't access any of it's services (Apache, SSH etc) from the internet (testing through my phone and other people).I've removed the IPs from the NAT pool in the WAN settings, setup LAN2 for IP routing and put it into the second VLAN, but apart from that not done much else.
View 3 Replies
View Related
Dec 17, 2011
I have recently changed my Router to a Draytek Vigor 2830N from the standard O2 broadband router. When I swap them out I get no internet access via the main PC that is connected via ethernet. However I can access internet via WLAN on any other device. here are the ipconfig details for before and after swap (same)
View 3 Replies
View Related
Jul 14, 2011
I am currently using a Draytek 2820 at work and I am needing to port forward port 3333 to two different computers at the same time
View 9 Replies
View Related
Mar 4, 2012
i want to configure the router for internet access for hosts this is the my pub ip x.x.x.174 and mask 255.255.255.252 this is isp given subnetmask internal ip range is x.x.x.20-x.x.x.254
View 1 Replies
View Related
Jun 20, 2012
I have 3 Cisco 2600 routers with the same IOS and memory.One of them has CME...
What would be the best way to copy the CME from the one router over on the other two?Backup my FLASH to my TFTP and then restore to the other two routers?
View 1 Replies
View Related
Dec 29, 2012
How to know the serial 0 or 1 (to v35 modem)was good or not ? is there any tool (software) or hardwire jumper to simulate loop back ?
View 12 Replies
View Related
Apr 11, 2006
How to know the serial0 or 1 (to v35 modem)was good or not ? is there any tool (software) or hardwire jumper to simulate loop back ?
View 4 Replies
View Related
Jan 11, 2012
I have cisco 2600 router. The problem is my router ios has been crashed and i unable to use any mode on my router. I need to install new ios. How can i install or upgrade new ios step by step.
View 1 Replies
View Related
Jan 16, 2013
Currently I'm using Cisco VPN client software to connect to a remote IPSec server on the workstations. I want to to configure IPSec client on Cisco 2600 router which connects to the remote IPSec server so the workstations can access VPN subnet without using VPN software. how to configure IPSec client on the router?
View 20 Replies
View Related
Jul 23, 2012
We have an old Cisco 2600 series router, running a single T-1 line, AT&T is the carrier. Very standard stuff.
The T-1 works perfectly on the old router. Cisco 2600 with a WIC-1DSU-T1 card. We have a brand new 2911 router with a VWIC3-1MFT-T1/E1 card in it. The circuit runs 100% clean and trouble free on the old router. When I plug it into the new router, it shows up/up but has a massive number of errors on the line, and the circuit is not usable. There are no timing slips or anything like that.
I have another site using the same router and card with the same configuration on that T-1 and it works perfectly. Zero errors. This site (in a different city) is totally slammed with errors. We already replaced the T-1 card and still have the exact same issue.
I've actually been doing this a long time, and I've tried all of the usual things, adjusting line build out, changing clock source, checking and re-checking configs. Nothing seems to reduce the error rate.
I personally think it has something to do with the Smartjack. Like maybe their LBO is too high or too low, and the old router card was more/less sensitive than the new one?
This is a layer 1 issue and is not defective hardware or defective configuration. I am looking for T-1 insights or bugs/issues.
View 1 Replies
View Related
Jul 11, 2011
I have a cisco 2600 router with 4A/S module, can it become the terminal server? If yes, which kind of octal cable should I choose to connect to other cisco routers console ports?
View 0 Replies
View Related
Jun 5, 2011
trying to establish a connection on an ibm 3745 controller via two IBM 5822 modems to a cisco 2600 router using sdlc encapsulation secondary bridging data from the serial port to the E/Net port to run the 3270 client ???
View 19 Replies
View Related
May 17, 2012
our office has cisco 2600 series router. i want to know on how i can configure it to connect to another router in a different site.
View 9 Replies
View Related
Dec 6, 2010
I am asked to implement the security in campus Network. i.e. In this network we want to block some websites, We don't want to use any 3rd party software or proxy server and content filtering module to block theset.my router IOS is advance securityk9 How to block the website in a Cisco 2600 series router by using the command. What is the access list we need to use to block.Assume we want to restrict,
[URL]
Here we are using Cisco 2600 series router and 2900 series switch. In router we are using the2Mb lease line link
View 6 Replies
View Related
Oct 25, 2012
I am connecting a 2600 router to an ISP. Interface 0/0 is connected to the ISP using DHCP. Interface 0/1 is connected to the inside providing DHCP services to the inside. At least it should only be providing DHCP services to the inside. I also have a public static IP that is NAT to a private static IP. Everything is working except the computer on the static IP. From the router I am able to ping inside and out from each interface. I am able to ping both interfaces of the router from the computer on the static IP but I cannot ping outside the router. If I do a debug all I see a reject for the gateway of the static IP but it has “mobile IP” in the text string. Not sure what mobile IP is relating to. Networks are as follows:
0/0 DHCP 10.X.X.X
0/1 192x.x.x
Static 75.X.X.X
no ip dhcp use vrf connected
ip dhcp excluded-address 192.X.X.1
ip dhcp excluded-address 192.X.X.2
ip dhcp pool CLIENT
[code]...
View 2 Replies
View Related
Jul 8, 2012
I have a 2600 router and im trying to set it up for SDM. The crypto command is not there. What do i do?
show version
Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-J1S3-M), Version 12.3(15b), RELEASE SOFTWARE (fc1 )
Copyright (c) 1986-2005 by cisco Systems, Inc.
Compiled Thu 25-Aug-05 13:38 by ssearch
Image text-base: 0x80008098, data-base: 0x81A255C4
[code]....
View 3 Replies
View Related
Oct 31, 2012
How to configure HSRP in techroutes 2600 series router and aaa authentication
View 2 Replies
View Related
Oct 3, 2012
I have Cisco 2600 series Router which has only 32 MB flash memory. I tried to load IOS image in that but image size is 29 Mb in compressed form. The minimum i found is 5 MB in compressed form but it is missing so many commands. that in 32 MB flash, how can I load image which has almost all the commands.
View 3 Replies
View Related
May 16, 2012
I just configured cisco 2600 as TS for remote dial in via USRobotics modem, I can dial into router, but its not accepting my key board input.
View 2 Replies
View Related
Mar 28, 2012
I have a 2600 Router series and I cannot remember the Password. I have tried following web pages that state to use control Break on the boot up but its not working.can reset that pw and write erase my configuration file?Here is my boot up. I have tried hitting control break at the very beginning over and over and then again when at the cold boot it has not worked....
System Bootstrap, Version 12.2(7r) [cmong 7r], RELEASE SOFTWARE (fc1)Copyright (c) 2002 by cisco Systems, Inc.C2600 platform with 131072 Kbytes of main memory
program load complete, entry point: 0x80008000, size: 0x1c9468cSelf decompressing the image : ######################################################################################################################################################################################################################################################################################################################################################################################################################################################################## [OK]
Smart Init is enabledsmart init is sizing iomem ID MEMORY_REQ TYPE00036A 0X000B3B80 C2610XM Single Fast Ethernet 0X00098670
[code]....
View 4 Replies
View Related
Jul 23, 2012
I have recently made a WAN change from T1 to fiber and my Cisco 2600 series router no longer needs to connect over the Serial T1 card. The Serial connection also provided a few voice channels for the old phone system that are no longer needed. I need to keep Main Cisco 2600 router in place because I have many network devices that use it as the gateway instead of my firewall. I will not require the second subnet for Offsite Cisco 2600 anymore either. commands that will be required to remove all instances of the Serial connection and Offsite Cisco 2600. I have included the config of the Main Cisco 2600 below. [code]
View 1 Replies
View Related
Jan 24, 2012
I have a cable modem with my 2600 Router and i have a little speed problem when I'm going out to the web via my F0/0.. according to regular speed test sites my speed is around 20mbps but when i hook up to my modem directly i get a solid 40mbps.. now I've changed my Cat 6 cable from my modem to my router and this are my settings in the router.
[Code] ...........
I see some drops and lost carriers but not sure what those might mean?
View 2 Replies
View Related
Apr 28, 2013
- How can I connect an old 2600 router to a linksys WRT54G2. to access the internet. I think it is not possible
- What device do i need to be able to do it
View 5 Replies
View Related
Sep 30, 2012
I have just connected a Cisco 2600 series router with a rolled over cable one port ( RJ-45 connector) in my console port and serial port in my PC COM1 port. Now when i open tera term and want to type something, the router is showing stange language.
View 13 Replies
View Related
