cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
1576
Views
0
Helpful
1
Replies
Highlighted
Beginner

Connecting Site to Site VPN between Cyberoam 50ing and Cisco RV042

Hello,

 

I am having issues connecting Site to Site VPN between Cyberoam 50ing and Cisco RV042. I have done all that i think is needed for the connection.

Here are the details:

 

Site 1: (Cyberoam CR50ing)

Local Subnet

MEDLAN_MIKE172.25.1.0/255.255.255.0

 

 

 

Remote Subnet

ILUPEJU_NETWORK

172.25.4.0/255.255.255.0

 

 

 

Name:    DefaultHeadOffice
Keying Method:    automatic
Allow Re-keying:    Enable
Key Negotiation Tries:    3
Authentication Mode:    Main
Pass Data In Compressed Format:    Enable
Perfect Forward Secrecy :   Enable

Phase1
Encryption Algorithm:    aes128
Authentication Algorithm:    md5
DH Group:    2 (DH1024)
Key Life :   28800 Seconds
Rekey Margin:    360 Seconds
Randomize Re-Keying Margin By:    100 %
DPD :   Enable
Check Peer After Every  :  30 Seconds
Wait For Response Upto :   120 Seconds
Action When Peer Is Not Active :   Clear

Phase2
Encryption Algorithm    aes128
DH Group    Same as phase1
Authentication Algorithm    md5
Key Life    3600

 

Site 2: CISCO RV042

Local Group Setup

 

Local Security Gateway Type :     IP Only
IP Address :     41.77.173.30
Local Security Group Type :   Subnet
IP Address :     172.25.4.0
Subnet Mask :     255.255.255.0

Remote Group Setup
Remote Security Gateway Type :    IP Only
IP Address:        217.117.4.218
Remote Security Group Type : Subnet   
IP Address :     172.25.1.0
Subnet Mask :     255.255.255.0
 

IPSec Setup
Keying Mode :     IKE with Preshared Key
Phase 1 DH Group :     Group 2 - 1024bit
Phase 1 Encryption :     AES 128
Phase 1 Authentication :     MD5
Phase 1 SA Life Time :     28800 seconds
Perfect Forward Secrecy :     Yes
Phase 2 DH Group :     Group 2 - 1024bit
Phase 2 Encryption :     AES 128
Phase 2 Authentication :     MD5
Phase 2 SA Life Time :     3600 seconds

Preshared Key :     
Minimum Preshared Key Complexity :     Enable    
 

 

 

 

 

1 REPLY 1
Highlighted
Contributor

Try disabling compression on the cyberoam and see if it will connect.  If not, disable pfs and try again.  If not, try aggressive vs main mode.  If not, try changing the groups and encryption to lower levels.  If not, then try changing the sa lifetime and key life to 3600.

Huntsville's Premiere Car and Bike e-magazine: www.huntsvillecarscene.com