Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3530
Views
0
Helpful
10
Replies

Cannot establish VPN IPSec between Cisco RV042G and Linksys RV042 routers

nasolsi1
Level 1
Level 1

‎01-30-2018 12:40 AM - edited ‎03-21-2019 11:03 AM

Hi Support,

 

I've been struggling to establish VPN IPSec tunnel between Cisco RV042G and Linksys RV042 routers for the last few days and unfortunately to no avail.

I got Cisco RV042G VPN IPSec connected to SonicWall router. I think the problem lies in Linksys RV042 but I'm not sure.

is it a problem with Linksys RV042 firmware version and upgrading it might fix the vpn ipsec issue?

Is it possible to establish VPN IPSec tunnel between Cisco RV042G and Linksys RV042 routers at all?- if yes, then

Will it be stable?

 

Let me give you more system info:

Linksys RV042 Firmware Version: 1.3.12.19-tm (I think it's the latest firmware version)

Cisco Small Business Router RV042G Gigabit Dual WAN VPN Router v4.2.2.08 (Apr 26 2013)

Please have a look at an attached files with VPN IPSec config on both routers

 

Thank you in advance.

Labels:
Preview file
70 KB
Preview file
73 KB
0 Helpful
10 Replies 10

lucaslara
Level 1
Level 1

‎01-30-2018 01:37 AM

Please,

 

Colect some logs to us analyze.

 

 

0 Helpful

nasolsi1
Level 1
Level 1
In response to lucaslara

‎01-30-2018 03:39 AM

Hi,

 

Let me give you an update.

 

I finally managed to get VPN IPSec tunnel up and running. It was my mistake because of mismatched preshared key.

Another problem followed up since I got VPN IPSec tunnel up and it is I cannot ping, traceroute or network browse a host in remote network (192.168.30.100).

Here are the ping tests I've done so far:

- ping and tracert to PC on network 192.168.30.0 are successful from PC (192.168.10.0) LAN connected to Cisco RV042G (192.168.10.1) but cannot browse or access that PC's shared folder over Windows/File Explorer.

-ping or tracert to PC on network 192.168.10.0 are unsuccessful from PC (192.168.30.0) LAN connected to Linksys RV042 (192.168.30.1), cannot browse or access that PC's shared folder over Windows/File Explorer but can open and log into Cisco RV042G via web browser.

 

What router/firewall settings do I need to change.

 

Thank you in advance.

0 Helpful

lucaslara
Level 1
Level 1
In response to nasolsi1

‎01-30-2018 03:55 AM

This is firewall rule, please check if you are permit smb ports and rdp ports or make a rule permit any just to test in both sides.

 

 

0 Helpful

nasolsi1
Level 1
Level 1
In response to lucaslara

‎01-30-2018 04:17 AM

Hi lucaslara,

 

Thank you for that.

 

I forgot to mention that I can rdp to a host on remote network and also other way around but cannot access shared folders on remote host via file explorer.

I don't think I need to allow smb on firewall as I'm able to browse any shared folders on remote hosts behind sonicwall that rv042G router is currently vpn ipsec connected to.

I'd like to report for another issue that followed up and it's vpn ipsec tunnel has gone down and couldn't get it back up despite turning Aggressive mode of and on on both router and restarting Linksys RV042 router.

it looks that the vpn ipsec tunnel is not stable.

Here are the latest vpn logs taken from linksys rv042:

Jan 1 02:22:49 2003     VPN Log    initial Aggressive Mode packet claiming to be from Cisco RV042G WAN on Cisco RV042G WAN but no connection has been authorized
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 1 02:22:49 2003     VPN Log    Ignoring Delete SA payload: not encrypted
0 Helpful

nasolsi1
Level 1
Level 1
In response to nasolsi1

‎01-30-2018 07:00 AM

Hi,

 

I did delete and recreate vpn ipsec on both routers, rebooted linksys rv042 and then manually setup the time and date on linksys rv042, and then tried establishing vpn ipsec from linksys rv042 to no avail.

 

here are the latest vpn logs taken from linksys rv042:

Jan 30 04:50:23 2018     VPN Log    Initiating Main Mode
Jan 30 04:50:23 2018     VPN Log    [Tunnel Negotiation Info] >>> Initiator Send Main Mode 1st packet
Jan 30 04:50:23 2018     VPN Log    Ignoring Vendor ID payload [6047668ef7505936...]
Jan 30 04:50:23 2018     VPN Log    Ignoring Vendor ID payload [4a131c8107035845...]
Jan 30 04:50:23 2018     VPN Log    Received Vendor ID payload Type = [draft-ietf-ipsec-nat-t-ike-03]
Jan 30 04:50:23 2018     VPN Log    Ignoring Vendor ID payload Type = [draft-ietf-ipsec-nat-t-ike-02_n]
Jan 30 04:50:23 2018     VPN Log    Ignoring Vendor ID payload Type = [draft-ietf-ipsec-nat-t-ike-02]
Jan 30 04:50:23 2018     VPN Log    Ignoring Vendor ID payload Type = [draft-ietf-ipsec-nat-t-ike-00]
Jan 30 04:50:23 2018     VPN Log    Received Vendor ID payload Type = [Dead Peer Detection]
Jan 30 04:50:23 2018     VPN Log    [Tunnel Negotiation Info] <<< Initiator Received Main Mode 2nd packet
Jan 30 04:50:23 2018     VPN Log    [Tunnel Negotiation Info] >>> Initiator send Main Mode 3rd packet
Jan 30 04:50:23 2018     VPN Log    [Tunnel Negotiation Info] <<< Initiator Received Main Mode 4th packet
Jan 30 04:50:23 2018     VPN Log    [Tunnel Negotiation Info] >>> Initiator Send Main Mode 5th packet
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:25 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:32 2018     VPN Log    Discarding duplicate packet; already STATE_MAIN_I3
Jan 30 04:50:32 2018     VPN Log    Ignoring Delete SA payload: not encrypted
Jan 30 04:50:33 2018     VPN Log    Received informational payload, type INVALID_COOKIE
Jan 30 04:50:33 2018     VPN Log    Received informational payload, type INVALID_COOKIE
Jan 30 04:50:33 2018     VPN Log    Received informational payload, type INVALID_COOKIE
0 Helpful

lucaslara
Level 1
Level 1
In response to nasolsi1

‎01-30-2018 07:56 AM

Please,

 

Check if you enable Netbios Broadcast on your RV042

 

If you have a some trouble, please read the follow article.

 

https://sbkb.cisco.com/CiscoSB/ukp.aspx?pid=2&vw=1&articleid=568

Preview file
162 KB
0 Helpful

lucaslara
Level 1
Level 1
In response to nasolsi1

‎01-30-2018 07:42 AM

You are permit the follows ports?

 

TCP : 139,445

UDP: 137,138

 

Maybe it solve your problem with shared folders

0 Helpful

nasolsi1
Level 1
Level 1
In response to lucaslara

‎01-30-2018 11:12 PM

Hi lucaslara,

 

Thanks a lot for your help.

 

I couldn't get the vpn ipsec tunnel back up even changing some settings in Advanced, and I'm about to give up on it. I think I can't get it resolved.

Please have a look at the latest vpn logs taken from Linksys RV042.

If someone can read them then that might help me what else I can change to make that vpn ipsec working again.

Preview file
132 KB
Preview file
128 KB
Preview file
128 KB
0 Helpful

nasolsi1
Level 1
Level 1
In response to nasolsi1

‎02-06-2018 10:18 PM

Hi lucaslara,

 

have you got any update on this?

 

Unfortunately nothing has changed since my last update despite a few tries and changes I made after that to get it resolved.

 

Thank you for your help.

0 Helpful

nasolsi1
Level 1
Level 1
In response to nasolsi1

‎02-22-2018 11:23 PM

Hi Support,

 

Let me give you an update on this.

 

I did manage to establish vpn ipsec between Linksys RV042 and pfSense but still no vpn ipsec between Cisco RV042G and Linksys RV042 or Cisco RV042G and pfSense.

 

Is it going to make any difference if I try upgrading Cisco RV042G firmware version to the latest one and give a try again?

 

I found the latest Cisco RV042G firmware version:

Final gpl tarball for RV0xx Series Routers firmware release 4.2.3.08  
RV0XX-v4.2.3.08-20161206-code.bin		 14-FEB-2017

 

I'm not sure if I can upgrade it to the latest one as v3 hardware required and I don't know what is the current version hardware of my Cisco RV042G.

 

Could you please help me on what is my current Cisco RV042G version hardware and to what firmware version I can upgrade it to (please have a look at screenshot with Cisco RV042G system info).

 

Thank you in advance.

 

 

Preview file
47 KB
0 Helpful
Customers Also Viewed These Support Documents