Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1829
Views
0
Helpful
1
Replies

Connecting Site to Site VPN between Cyberoam 50ing and Cisco RV042

oladimejia1
Level 1
Level 1

‎03-25-2015 06:47 AM

Hello,

 

I am having issues connecting Site to Site VPN between Cyberoam 50ing and Cisco RV042. I have done all that i think is needed for the connection.

Here are the details:

 

Site 1: (Cyberoam CR50ing)

Local Subnet

MEDLAN_MIKE172.25.1.0/255.255.255.0

 

 

 

Remote Subnet

ILUPEJU_NETWORK

172.25.4.0/255.255.255.0

 

 

 

Name:    DefaultHeadOffice
Keying Method:    automatic
Allow Re-keying:    Enable
Key Negotiation Tries:    3
Authentication Mode:    Main
Pass Data In Compressed Format:    Enable
Perfect Forward Secrecy :   Enable

Phase1
Encryption Algorithm:    aes128
Authentication Algorithm:    md5
DH Group:    2 (DH1024)
Key Life :   28800 Seconds
Rekey Margin:    360 Seconds
Randomize Re-Keying Margin By:    100 %
DPD :   Enable
Check Peer After Every  :  30 Seconds
Wait For Response Upto :   120 Seconds
Action When Peer Is Not Active :   Clear

Phase2
Encryption Algorithm    aes128
DH Group    Same as phase1
Authentication Algorithm    md5
Key Life    3600

 

Site 2: CISCO RV042

Local Group Setup

 

Local Security Gateway Type :     IP Only
IP Address :     41.77.173.30
Local Security Group Type :   Subnet
IP Address :     172.25.4.0
Subnet Mask :     255.255.255.0

Remote Group Setup
Remote Security Gateway Type :    IP Only
IP Address:        217.117.4.218
Remote Security Group Type : Subnet   
IP Address :     172.25.1.0
Subnet Mask :     255.255.255.0
 

IPSec Setup
Keying Mode :     IKE with Preshared Key
Phase 1 DH Group :     Group 2 - 1024bit
Phase 1 Encryption :     AES 128
Phase 1 Authentication :     MD5
Phase 1 SA Life Time :     28800 seconds
Perfect Forward Secrecy :     Yes
Phase 2 DH Group :     Group 2 - 1024bit
Phase 2 Encryption :     AES 128
Phase 2 Authentication :     MD5
Phase 2 SA Life Time :     3600 seconds

Preshared Key :     
Minimum Preshared Key Complexity :     Enable    
 

 

 

 

 

Labels:
0 Helpful
1 Reply 1

SamirD
Level 5
Level 5

‎03-28-2015 06:02 PM

Try disabling compression on the cyberoam and see if it will connect.  If not, disable pfs and try again.  If not, try aggressive vs main mode.  If not, try changing the groups and encryption to lower levels.  If not, then try changing the sa lifetime and key life to 3600.

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents