07-31-2013 07:45 PM
Hello,
I've setup my RV180 to VPN to our head office Fortigate 60C. It works really well
My only problem is that I'm not sure how to make internet traffic at our remote site go through to head office. We want to use this technique so that all sites have the same web filtering provided by our main Fortigate unit. I can clearly see that any traffic destined for our internal network will go trough the VPN tunnel, but internet traffic will go through our modem at the remote site.
My fortigate way of thinking said that I need a static route to forward all traffic through the VPN tunnel. I have read elsewhere that I need to setup some sort of ACL.
Does anyone else have any ideas on this/has anyone successfully set up somehting similar?
Solved! Go to Solution.
08-01-2013 09:04 AM
Hello Jared,
I don't think RV180 supports full tunneling. Full tunneling allows you to route all your traffic through VPN. RV180 does only split-tunneling.
Thanks,
Vijay
Sent from Cisco Technical Support iPad App
07-31-2013 09:02 PM
If I were using a Fortigate I would setup a route for 0.0.0.0/0.0.0.0 to go through the VPN interface. Is there something similar available for this router?
10-11-2015 10:30 AM
Hi Jared,
Did you find a solution for the configuration described above please ?
Thanks
10-11-2015 04:37 PM
Hi R0man,
Sort of - I threw the device away. I instead went with a couple of Cisco 881. There was a steep learning curve, but it was very rewarding. I used this website to help build a base configuration - http://www.ifm.net.nz/cookbooks/800-isr-wizard.html
Unfortunately, the 800 series is a bit under-powered - as soon as the WAN link went above 30mbps up and down it started freeze every so often. We're now looking at another compatible manufacturer. Tests are very positive. I can tell you more if you're interested.
Regards,
Jared
10-12-2015 02:05 PM
OK I understand that I have to sell my RV180W and find another config. But I can't say that I'll choose Cisco 881. Today it could be better (and less expensive) to build a small "server" on Intel J1800 or N3050 Mini-ITX fanless board and use it for routing and any other needs we can have than play with expensive and closed Cisco boxes. At least when you are a SME/SOHO ... Thanks anyway for reply, Jared.
10-12-2015 03:09 PM
I will say the Cisco 881 aren't very expensive and give fantastic uptime.
Have a look at Huawei AR160 if you get a chance. Very similar to 881, but with greater performance and multiple WAN options for fail-over i.e. Fibre, VDSL and 4G.
08-01-2013 09:04 AM
Hello Jared,
I don't think RV180 supports full tunneling. Full tunneling allows you to route all your traffic through VPN. RV180 does only split-tunneling.
Thanks,
Vijay
Sent from Cisco Technical Support iPad App
08-01-2013 02:53 PM
Thanks Vijay. That makes sense. Would you happen to know of any small business routers that do support full tunnelling? Say the RV220W? Is there an easy way to tell?
Sent from my keyboard
08-01-2013 03:17 PM
Hello Jared,
Thanks for rating the answer. Yes, you can search for the term "Full tunnel" on the administration guides of RV routers. Also, search for "split-tunnel" support/"split-tunnel" mode (as if it has a split-tunnel option, turning it off means you are actually on full tunnel mode).
Yes, RV220W and RV320 can support full tunnel-ing.
Hope this helps,
Vijay
08-01-2013 04:43 PM
That's cool. I notice the full and split tunneling features on the RV220W are for SSL VPN. Does this apply for IPSec VPN also?
08-01-2013 05:51 PM
Jared,
Split/full tunnel setting is for SSL VPN only on the RV220W.
- Marty
08-13-2013 10:12 AM
but would a static route works for the scenario ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide