Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
843
Views
0
Helpful
1
Replies

IPSec not working Cisco RV220W Router-firewall via remote access using an IPsec VPN Client

bontepaul
Level 1
Level 1

‎02-11-2014 01:48 AM

Please advice what is preventing me to establish a connection with a Cisco RV220W Router-firewall via remote access using an IPsec VPN Client on a laptop (Win 7 / Vista).

The Cisco RV220W is behind a NAT ISP Triple Play PPPoE Router. Port Forwarding TCP/UDP ports 47, 443, 500, 4500 and 1723 to the RV220W.

Tested succesfull IPsec with another router Cisco 871 no problem at all.

Got the PPTP, QuickVPN working fine !

On the RV220W to test I am using a default out of the box config / set up, no specials.

created a VPN client name/password for protocol XAUTH.

Via the Basic VPN Setup created an IKE POlicy and an enabled a VPN Policy.

On the Laptop I am using a Cisco VPN Client 5.0.07... while using the given host(my public IP) key and user credentials.

Error VPN Client/laptop the connection terminated locallly by the client error Reason 412 the remote peer is no longer responding.

The RV logs show ERROR: Could not find configuration for VPN-CLient-IP-address[54328]

Thanks,


## ##

On the RV220W :
(Firmware Version 1.0.5.8)

WAN IP assigned by DHCP on the ISP router using a fixed private nat IP.

Multiple VLAN Subnet Table
VLAN ID IP Address Subnet Mask DHCP Mode DNS Proxy Status
1 192.168.1.1 255.255.255.0 DHCP Serve Enabled

VPN Client Setting Table
No. Enabled Username Password Allow User to Change Password Protocol
1 NA xnxaxmxe xpxaxsxsxwxoxrxd Disabled XAUTH

IKE Policy Table
Policy Name   Name-abc
Direction / Type  Responder
Exchange Mode   Aggresive
Enable XAUTH Client  None
Local
Identifier Type   FQDN
Identifier   local.com
Remote
Identifier Type   FQDN
Identifier   remote.com
IKE SA Parameters
Encryption Algorithm  3DES
Authentication Algorithm SHA-1
Authentication Method  Pre-Shared Key
Pre-Shared Key   Pre-Shared-Key-yyyy
Diffie-Hellman (DH) Group Group 2 (1024bit )
SA-Lifetime   28800 Seconds

VPN Policy Table
Policy Name   Name-abc
Policy Type   Auto Policy
Remote Endpoint   FQDN
    remote.com
NETBIOS
Enable    not selected
Local Traffic Selection
Local IP   subnet
Start Address   192.168.1.0
End Address
Subnet Mask   255.255.255.0
Remote Traffic Selection
Remote IP   Any
Start Address
End Address
Subnet Mask
Split DNS
Split DNS   not selected
Enable
Domain Name Server 1
Domain Name Server 2
(Optional)
Domain Name 1
Domain Name 2
(Optional)
Manual Policy Parameters
SPI-Incoming   0x
SPI-Outgoing   0x
Encryption Algorithm  3DES
Key-In
Key-Out
Integrity Algorithm  SHA-1 
Key-In
Key-Out
Auto Policy Parameters
SA-Lifetime   3600
Encryption Algorithm  3DES
Integrity Algorithm  SHA-1 
PFS Key Group   selected enable
    (DH) GroupGroup 2 (1024bit )
Select IKE Policy  Name-abc

View Logs
2014-02-11 10:33:24: [rv220w][IKE] ERROR: Could not find configuration for VPN-CLient-IP-address[54328]
2014-02-11 10:33:29: [rv220w][IKE] ERROR: Could not find configuration for VPN-CLient-IP-address[54328]
2014-02-11 10:33:34: [rv220w][IKE] ERROR: Could not find configuration for VPN-CLient-IP-address[54328]
2014-02-11 10:33:40: [rv220w][IKE] ERROR: Could not find configuration for VPN-CLient-IP-address[54328]


## ##

1 person had this problem
Labels:
0 Helpful
1 Reply 1

mpyhala
Level 7
Level 7

‎02-11-2014 08:45 AM

Paul,

Cisco VPN Client 5.x is not supported on the RV220W. I recommend that you try a third party client such as Shrewsoft or The Greenbow (Windows) or IPSecuritas (Mac) if you wish to use something other than QuickVPN.

- Marty

0 Helpful
Customers Also Viewed These Support Documents