troubles : Self-signed certificate with RV220W and QuickVPN Clie

CThierrry · ‎11-22-2011

The establishment of IPSEC tunnel between the RV220 and QuickVPN client works properly with the security certificate of origin of the router.

RV220 V1.0.3.5
QuickVPN V1.4.2.1

Since the establishment of a security certificate self-signed, the RV220 and QuickVPN client refuses to work together .

Here are the log of the QuickVPN client

2011/09/27 12:45:14 [STATUS]OS Version: Windows 7

2011/09/27 12:45:14 [STATUS]Windows Firewall Domain Profile Settings: ON

2011/09/27 12:45:14 [STATUS]Windows Firewall Private Profile Settings: ON

2011/09/27 12:45:14 [STATUS]One network interface detected with IP address 128.xxx.xxx.xxx

2011/09/27 12:45:14 [STATUS]Connecting...

2011/09/27 12:45:14 [DEBUG]Input VPN Server Address = 88.xxx.xxx.xxx

2011/09/27 12:45:14 [STATUS]Connecting to remote gateway with IP address: 88.xxx.xxx.xxx

2011/09/27 12:45:15 [WARNING]Remote gateway wasn't reached...

2011/09/27 12:45:15 [WARNING]Failed to connect.

2011/09/27 12:45:26 [WARNING]Remote gateway wasn't reached...

2011/09/27 12:45:26 [WARNING]Failed to connect.

2011/09/27 12:45:26 [WARNING]Failed to connect!

WGet error log

--13:09:45-- https://User:*password*@88.xxx.xxx.xxx/StartConnection.htm?version=1?IP=128.xxx.xxx.xxx?PASSWD=*password*?USER=User

=> `C://Program Files//Cisco Small Business//QuickVPN Client//vpnserver.conf'

Connecting to 88.xxx.xxx.xxx:443... connected.

Unable to establish SSL connection.

No LOG on the RV220 !!!!???.

Here is my procedure:

1) Creation of a certificate of authority win32 openssl-light 1.0
2) Generating a Self Certificate Request From the RV220
3) Signature of the Self Certificate Request RV220 by the self-signed CA

openssl x509 -req -days 365 -in RouteurVPN.csr -CA cacert.pem -CAkey cakey.pem -CAcreateserial -out RouteurVPN.crt

4) Verification of the certificate

openssl x509 -in RouteurVPN.crt -text -noout

5) Import the CA in the RV220
6) Import the certificate (routeurvpn.crt) in the RV220 with SUCCESS
7) Export the certificate to the client QuickVPN

The new certificate is considered by the RV220 but QuickVPN client refuses to work.

I delete the self signed certificate on the RV220, but works again with the new QuickVPN Client.

An idea please ?????????

jasbryan · ‎11-22-2011

Thierry,

You getting the two mix up – the one that you installed into RV220W is for Webpage only , you don’t need to use that one for Qvpn certificate- but under license management there is a download now button, this file will be the one to download and install under the Qvpn files for your certificate.

If you have further questions give us a Call @ 1-866-606-1866 and open a support case.

Thanks,

Jasbryan

CThierrry · ‎11-22-2011

Jasbryan

Thank you for quick response

Indeed, I exported the certificate to the client in the root folder QuickVPN Cisco Small Business \ QuickVPN Client. But nothing works. I resolve to call the hotline soon.

thank you again

Thierry

Te-Kai Liu · ‎11-22-2011

Is it possible that you accidentally exported the certificate for admin instead of certificate for client?

You could try generate a new certificate on the router and then do an export again to be sure. If problem persists, please contact the Support Center for further assistance.

http://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html

vublea · ‎01-17-2012

Hello,

I have the same issue with my QuickVPN and RV220W. Did you solve it somehow?

Here you have my logs:

rwConnStart message=All 1 wget requests did not return a valid vpnserver.conf

........

Unable to establish SSL connection.

vpnserver.conf is empty.

Regards,

Viorel

MaxvatarT · ‎10-02-2013

Hi,

I have the same issue even here with RV120W. Simply WGET does not get proper response on URL

https://*user*:*password*@*IP*/StartConnection.htm?version=1?IP=192.168.0.101?PASSWD=*password*?USER=*user*. The message is still the same - Unable to establish SSL connection.

Any tips ?

Regards

MaX

troubles : Self-signed certificate with RV220W and QuickVPN Client