Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1359
Views
0
Helpful
1
Replies

RV 120W Router - Multiple Remote VPN Networks

Jeff Tysco
Level 1
Level 1

‎08-05-2010 08:17 PM

I just purchased an RV120W to replace my PIX515 (Overkill) and Linksys wireless router (Constantly dropping wireless signal).

I need to create a single VPN Site to Site tunnel back to my data center where I have all of my client's networks terminated to (Hub/Spoke Configuration).

How can I create a site-to-site tunnel on the RV120W that contains more than 1 remote network?

Labels:
0 Helpful
1 Reply 1

Jeff Tysco
Level 1
Level 1

‎08-07-2010 01:43 PM

Just to follow up, I contacted Cisco Support this afternoon, and they say what I'm asking for cannot be done with this device.

So if you're looking at this device and you need to setup site to site tunnels with remote clients, be wary of this device if you think your setup is going to have any chance of having any restrictions or "Complicated" vpn configurations.

Below are two examples of where this will be an issue, along with my own configuration:

Example 1 - You want to connect your small business to a client who will only provide access to a handful of servers instead of the full network.  With my PIX515 I could modify the Crypto Maps (Traffic Selection) to look like the following:

192.168.1.0/24 to 172.16.10.10/32

192.168.1.0/24 to 172.16.10.15/32

192.168.1.0/24 to 172.16.10.20.32

With the RV120, this is not possible based on my call to Cisco support

Example 2 - You want to connect your small business to a larger client who may have multiple networks.  With my PIX515 I would have the following traffic selection

192.168.1.0/24 to 172.16.10.10/24

192.168.1.0/24 to 192.168.100.0/24

192.168.1.0/24 to 192.168.0.0/24

Again, with the RV120, this is not possible based on my call to cisco support.

My specific issue is that I have all of my clients terminate their vpn tunnels to my datacenter for reliability as I am in a flood/hurricane zone (Plus any good size storm tends to knock out our power for awhile).  In the event I loose my internet connection, power or whatever I can hitup the nearest hotspot, dial in to my datacenter and still have a connection to my clients.  Below is a sample of my setup (Which won't work with this device).  Why don't I just use a VPN Client from home you ask?  Because I have several other clients who also provide me with the Cisco VPN Client, so I would have to disconnect my from my site to connect to theirs which isn't good as I multitask between sites constantly (I.E. If I have a process/query running on one site, I'll check out another client site and perform a task there):

Home Office Network: 192.168.1.0/24

Datacenter Network: 192.168.10.0/24

Client A Network: 192.168.20.0/24

Client B Network: 192.168.30.0/24

Client C Network: 10.10.10.0/24

Site to Site Tunnel A - Source: 192.168.1.0/24 & 192.168.10.0/24

Site to Site Tunnel A - Destination:192.168.20.0/24

Site to Site Tunnel B - Source: 192.168.1.0/24 & 192.168.10.0/24

Site to Site Tunnel B - Destination:192.168.30.0/24

Site to Site Tunnel C - Source: 192.168.1.0/24 & 192.168.10.0/24

Site to Site Tunnel C - Destination:10.10.10.0/24

Site to Site Tunnel D - Source: 192.168.1.0/24

Site to Site Tunnel D - Destination:192.168.10.0/24 & 192.168.20.0/24 & 192.168.30.0/24 & 10.10.10.0/24

Oh well, guess I'm going to put my old setup back in place for the short term while I look at my alternatives...

0 Helpful
Customers Also Viewed These Support Documents