Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
391
Views
0
Helpful
0
Replies

Cannot create IPSEC VPN Tunnel between CISCO RV 110W & RV 180W

E-ManN6868
Level 1
Level 1

‎01-19-2023 09:16 AM

Hi

Recently purchased CISCO RV 180W (brand new off Amzazon) to replace my RV 130W which died.

I know the 180 is out of support, but was hoping someone could point me it the right direction
to help me solve my IPSEC VPN tunnel not working issues.

I have a remote location which has a RV 110W ... for many years I had the IPSEC tunnel working with my local site  using another rv 110W. Few years back I upgraded to RV 130W ... again ipsec site to site configured and worked without issue.

my local RV130W died ... replaced it with RV 180W

I can't seem to get the IPSEC site to site vpn working ... this should be easy as I have had this setup  & working for a long time. I tried all kinds of combinations with different levels of encryption ensuring the settings were exactly the same on local and remote router & went as far as completely deletng the VPN profiles on both the Remote RV 110W and local RV 180W and re-creating VPN policies from scratch .. still no Joy!


the firmware on the RV 180w is current and I do not see any new version on the web...

PID VID RV180W-A V01
Current Firmware Version 1.0.5.4
Firmware Last Updated Tue Oct 4 18:52:02 GMT-0500 2022


the firmware for the remote RV110W ...

Device Model: RV110W
PID VID: RV110W-A V02
Current Firmware Version: 1.2.0.10
Current Language Version:
Firmware Last Updated: 05/09/15 07:41 AM


if I connect up my old RV 110W at the local site the IPSEC VPN works no problem

I have scoured the internet and this seems to be a common problem and none of the suggested settings\workaround worked. Please help from feeling that I have purchased a $380 CAD brick. 

besides the web mgmt GUI not expanding the router admin GUI properly ... you have to do a lot of panning and stretching to see router config pages in the GUI ...all other functions of this router working great.  I just need to get the VPN sorted.

 

My current VPN Policy is ...

Add / Edit IKE Policy Configuration
Policy Name: Parents
Exchange Mode: Main
IKE SA Parameters
Encryption Algorithm: AES-256
Authentication Algorithm: SHA256
Pre-Shared Key: MyPassword
Diffie-Hellman: Group2 (1024 bit)
SA-Lifetime: 28800 Seconds
Dead Peer Detection: not Enabled


************************************************

Add / Edit VPN Policy Configuration
Policy Name: Parents
Policy Type: Auto Policy
Remote Endpoint: FQDN ---> MyRemote.domain.com

Local Traffic Selection
Local IP: Subnet
IP Address: x.x.x.0 (don't want to put my real IPs in here)
Subnet Mask: 255.255.255.0
Remote Traffic Selection
Remote IP: Subnet
IP Address: x.x.x.0 (don't want to put my real IPs in here)
Subnet Mask: 255.255.255.0

Auto Policy Parameters
SA-Lifetime: 28800 Seconds
Encryption Algorithm: AES-256
Integrity Algorithm: SHA-256
PFS Key Group: disabled

Select IKE Policy: Parents

This what I am seeing the logs  (obvioulsy I have removed the exact IP @s and domain names)...

 

Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Sending Informational Exchange: delete payload[]
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Purged ISAKMP-SA with spi=19465c6fb00c696c:4269d8211ccee23e.
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: an undead schedule has been deleted: 'purge_remote'.
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] WARNING: no phase2 bounded.
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Sending Informational Exchange: delete payload[]
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Purged ISAKMP-SA with spi=a2723950b9683f58:eac89abff94a0b00.
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: an undead schedule has been deleted: 'purge_remote'.
Thu Jan 19 11:18:29 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: IKE configuration with identifier "Condo" deleted sucessfully
Thu Jan 19 11:19:00 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: No policy found: 192.168.1.0/24[0] 192.168.2.0/24[0] proto=any dir=out
Thu Jan 19 11:19:00 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: No policy found: 192.168.2.0/24[0] 192.168.1.0/24[0] proto=any dir=in
Thu Jan 19 11:19:00 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Adding IPSec configuration with identifier "Condo"
Thu Jan 19 11:19:00 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Adding IKE configuration with identifier "Condo"
Thu Jan 19 11:19:00 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: accept a request to establish IKE-SA: MyRemote.domain.com
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Using IPsec SA configuration: 192.168.1.0/24<->192.168.2.0/24
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Initiating new phase 1 negotiation: x.x.x.x[500]<=>x.x.x.x[500] (I took the real number out ... vpn tying to connect my local route public IP with remote router public IP)
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Beginning Identity Protection mode.
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: [isakmp_ident.c:186]: XXX: NUMNATTVENDORIDS: 3
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: [isakmp_ident.c:190]: XXX: setting vendorid: 4
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: [isakmp_ident.c:190]: XXX: setting vendorid: 8
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: [isakmp_ident.c:190]: XXX: setting vendorid: 9
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Received unknown Vendor ID
Thu Jan 19 11:19:07 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: Received Vendor ID: DPD
Thu Jan 19 11:19:08 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: Ignore information because ISAKMP-SA has not been established yet.
Thu Jan 19 11:19:08 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: accept a request to establish IKE-SA: MyRemote.domain.com
Thu Jan 19 11:19:08 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:08 2023 (GMT -0500): [EmanN-RV180W] [IKE] INFO: remote configuration for identifier "MyRemote.domain.com" found
Thu Jan 19 11:19:18 2023 (GMT -0500): [EmanN-RV180W] [IKE] NOTIFY: The packet is retransmitted by x.x.x.x (my remote router public IP)[500].
Thu Jan 19 11:19:18 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: Ignore information because ISAKMP-SA has not been established yet.
Thu Jan 19 11:19:18 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: Ignore information because ISAKMP-SA has not been established yet.
Thu Jan 19 11:19:28 2023 (GMT -0500): [EmanN-RV180W] [IKE] ERROR: Ignore information because ISAKMP-SA has not been established yet.

 


any help would much be appreciated ... it's been 3 long har days now for soemting that use to take me 5 mins to setup.


Thanks,

E

 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents