My experience with the RV325 has thus far been an absolute disaster

jlightner · ‎11-27-2018

Purchased an RV325 for personal use.

Excited to have a proper VPN setup to my house from anywhere so I can finally access my own cisco lab (old hardware) from wherever I happen to be for testing purposes. I'll apologize ahead of time for the seeming mumbletopia coming up here. Basically outlining everything I have done.

Updated to the newest firmware: RV32X_v1.4.2.19_20180330-code.bin

Everything's going fine.

Suddenly.... pages stop loading.

I power cycle it (multiple times)

It won't load at all.

Ok. Reset.

Nothing.

30-30-30 reset.

Nothing.

Red diag light.

Blinking Power light.

<<two nights of screaming curses at it and prepping the refund/return shipping>>

Ok, so I get tftpd64, set my laptop to 192.168.100.1, power cycle it while holding reset for 10 seconds. reload the firmware.

Sweet deal. Something happens. It goes in. It resets. Red diag light off. Solid green power light.

Give it some time.

Attempt to log in.

CLI: The remote system refused the connection - ok not surprised, it did that originally.

Chrome: 192.168.1.1 hangs. Nothing. Waiting.

Opera: Same

Edge: Same

Firefox: Same

Power cycle. Dimplequirk left side of face.

Same thing.

As someone who has been more and more familiar with enterprise level Cisco gear, I was not anticipating something this fragile.

arp -a

Sees the vpn router.

ping its address, timeouts.

mysteriously it works! (it pings, at any rate)

run ipconfig /all

check local ipv4 address.... its suddenly there

ping 192.168.1.1

ping is working

connection-specific dns suffix is showing router042d50.com

Attempt to go to that page. It defaults to 192.168.1.1 as expected.

Hangs.

Shut down laptop nic.

Re-enable it.

ipv4 address 192.168.1.100/24

default gateway 192.168.1.1

connection specific dns suffic router042d50.com

ping to 192.168.1.1 works

CLI to it does not

Browser (any browser) to it does not.

Net::ERR_CERT_AUTHORITY_INVALID

Just for grins, reboot the laptop that is being used for this little operation.

Naturally, no change.

check Chrome, delete any existing certificates on the machine, clear cache.

No change

check opera, says "invalid certificate", show certificate.

Suddenly it is clear. It still has my data on it despite a full reset. wow.

30-30-30 reset it again. Lets see.

Blinky green, solid red...

And right back where I started last night.

I can't get to the cli to do a write erase, and even if I could these things' CLI is so butchered compared to enterprise grade that I'm not even sure if you can.

tftpd64, put the file on the switch.

Back to solid green, no diag....and arp-a only shows 192.168.1.1 and 192.168.1.255

can ping 192.168.1.1

And I can't get to the switch, CLI or otherwise. telnet, or ssh.

All i did was put new firmware on and played around with vpn settings. I do worse things on 5510's all the time and this just doesn't happen.

I have a brick. A brick that apparently has my information (gives out a certificate that I created for VPN) on it despite being reset three times at this point?

I have researched every page I could regarding this/these issues and come up with nothing.

https://community.cisco.com/t5/small-business-routers/rv325-login-issue-after-upgrading-to-1-4-2-15/td-p/3185089/page/3

edit:

Finally got back into it. I had to go back to 1.3 using tftpd64 to do it and was able to engage an actual factory reset. The 30-30-30 reset procedure did nothing to delete vlan or certificate data, which was apparently the core of the issue. Resets are supposed to ... reset, unless there's no actual reset available for this device?

I'll be attempting to put it back to 1.4 again this evening in hopes that it won't break again.

I realize that this is 'only' a S&MB router, but no console is terrible.

Are there routers that are similar in price but offer more "I'm already doing this cisco stuff for a living" friendliness, or am I going to have to spend $2k to do that?