Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1318
Views
0
Helpful
3
Replies

RV220W - VPN Routing Over Tunnel Problem

printville
Level 1
Level 1

‎10-02-2013 08:44 AM

I have created a gateway-to-gateway (site-to-site) tunnel between RV220W #1 and RV220W #2, it is working without any problems.

For example, I can ping the gateway on the other side. But when I connect through RV220W #1 as a PPTP VPN user, I can not reach the gateway on RV220W #2 or any host behind it.  Here's a diagram:

Successful Connection via LAN user:

[192.168.1.1] RV220W #1 <----- tunnel -----> RW220W #2 [192.168.3.1]

                          |

                          |

                 [192.168.1.10] <can ping successfully from within LAN>

Unsuccessful Connection via VPN user:

[192.168.1.1] RV220W #1 <----- tunnel ---x---> RW220W #2 [192.168.3.1] <no connection>

                          |

                          |

         VPN tunnel (PPTP VPN User)<cannot ping to RW220W #2>

                 [192.168.10.5]

How would I route my VPN users to connect to RW220W #2?  I've heard there's some ways to create VPN Policy Table rules (maybe).  Any help would be appreciated!

Thanks -Nathan

Labels:
0 Helpful
3 Replies 3

Tom Watts
VIP Alumni
VIP Alumni

‎10-09-2013 03:55 PM

Hi Nathan, the PPTP client would have to connect within the same subnet as the allowed connection through the tunnel and share the same LAN gateway as the connected clients of the local router. I do not believe this is supported.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
0 Helpful

SamirD
Level 5
Level 5
In response to Tom Watts

‎10-09-2013 08:09 PM

Strange...this was supported on the old rv016 v3 firmware.

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com
0 Helpful

Ismael Arroyo
Level 1
Level 1

‎10-09-2013 08:06 PM

Hi nathan, i 've done a similar expeirement with an ISA550 and rv180 with a full site to site tunnel. Within that tunnel i was able to pass through PPTP and SSL VPN users. Your case  is a little different, but we could try to create a ipsec policy that identies itself to the site to site tunnel and getting those  PPTP VPN users go through that tunnel.  If you like  navigate to VPN>>IPSEC POLICIES>>VPN POLICIES TABLE. local address will be 192.168.10.0 and remote will be the WAN of the 1st router RV220W #1. If the pings dont go through the tunnel then  try opening the gui of RV220 #1(192.168.1.1) and RV220 #2 (192.168.3.1). This will show your tunnel is getting through as well.

Configuration link : Go under Chapter 6

http://www.cisco.com/en/US/docs/routers/csbr/rv220w/administration/guide/rv220w_ag_78-19743.pdf

Please let me know if this works.

0 Helpful
Customers Also Viewed These Support Documents