Hello,
I'm trying to make the VPN connection between two routers CISCO RV180w.
I performed the basic configuration in cisco "server". I did the same in cisco "client".
The following configuration and logs, do not know what to do ...
Thank you!
SERVER CONFIGURATION:
IKE Policy Configuration:
VPN Policy Configuration:
CLIENT CONFIGURATION:
IKE Policy Configuration:
VPN Policy Configuration:
LOG VIEW:
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Using IPsec SA configuration: 192.168.130.0/24<->192.168.137.0/24
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Initiating new phase 1 negotiation: 187.106.37.XX[500]<=>177.XX.XXX.252[500]
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Beginning Identity Protection mode.
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:185]: XXX: NUMNATTVENDORIDS: 3
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 4
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 8
Wed Feb 06 11:55:15 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 9
Wed Feb 06 11:55:46 2013 (GMT -0300): [CISCO-CMC] [IKE] ERROR: Phase 2 negotiation failed due to time up waiting for phase1. ESP 177.XX.XXX.252->187.106.37.XX
Wed Feb 06 11:56:05 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Using IPsec SA configuration: 192.168.130.0/24<->192.168.137.0/24
Wed Feb 06 11:56:05 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:56:05 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:56:37 2013 (GMT -0300): [CISCO-CMC] [IKE] ERROR: Phase 2 negotiation failed due to time up waiting for phase1. ESP 177.XX.XXX.252->187.106.37.XX
Wed Feb 06 11:56:56 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Using IPsec SA configuration: 192.168.130.0/24<->192.168.137.0/24
Wed Feb 06 11:56:56 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:56:56 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:57:05 2013 (GMT -0300): [CISCO-CMC] [IKE] ERROR: Phase 1 negotiation failed due to time up for 177.XX.XX.252[500]. 8087708d2f96f284:0000000000000000
Wed Feb 06 11:57:27 2013 (GMT -0300): [CISCO-CMC] [IKE] ERROR: Phase 2 negotiation failed due to time up waiting for phase1. ESP 177.XX.XXX.252->187.106.37.XX
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Using IPsec SA configuration: 192.168.130.0/24<->192.168.137.0/24
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Configuration found for 177.XX.XXX.252.
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Initiating new phase 1 negotiation: 187.106.37.XX[500]<=>177.XX.XXX.252[500]
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: Beginning Identity Protection mode.
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:185]: XXX: NUMNATTVENDORIDS: 3
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 4
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 8
Wed Feb 06 11:57:34 2013 (GMT -0300): [CISCO-CMC] [IKE] INFO: [isakmp_ident.c:189]: XXX: setting vendorid: 9
Hello Christoper,
Thanks for the immediate answer!
I made the connection Gateway-Gateway.
I took the example configuration described in the manual RV180w Cisco router:
Router 1: WAN1=10.0.0.1 LAN=192.168.1.1 Subnet=255.255.255.0
Policy Name: manualVPN
Policy Type: Manual Policy
Local Gateway: WAN1
Remote Endpoint: 10.0.0.2
Local IP: Subnet 192.168.1.0 255.255.255.0
Remote IP: Subnet 192.168.2.0 255.255.255.0
SPI-Incoming: 0x1111
Encryption Algorithm: DES
Key-In: 11112222
Key-Out: 33334444
SPI-Outgoing: 0x2222
Integrity Algorithm: MD5
Key-In: 1122334444332211
Key-Out: 5566778888776655
Router 2: WAN1=10.0.0.2 LAN=192.168.2.1 Subnet=255.255.255.0
Policy Name: manualVPN
Policy Type: Manual Policy
Local Gateway: WAN1
Remote Endpoint: 10.0.0.1
Local IP: Subnet 192.168.2.0 255.255.255.0
Remote IP: Subnet 192.168.1.0 255.255.255.0
SPI-Incoming: 0x2222
Encryption Algorithm: DES
Key-In: 33334444
Key-Out: 11112222
SPI-Outgoing: 0x1111
Integrity Algorithm: MD5
Key-In: 5566778888776655
Key-Out: 1122334444332211
Everything worked right the first time:
But when you run the ping command on either side of VPN fails.
.
There are other settings to be done? How Static Routes?
Thanks!!
Hello Christopher,
In reality a router uses the subnet is 192.168.137.0 and 192.168.130.0 another router uses the ...
Both routers have IP local 192.168.XXX.1:
Thanks!
EDIT:
Comand Ping in Roter 192.168.137.1:
A mensagem foi editada por: Weslley Jesus de Oliveira
