06-29-2018 03:18 PM - edited 03-12-2019 05:25 AM
I know that this has been beat to death but none the posts I have found via Google have fixed my problem.
First let me explain what my goal here is. I want to connect my computer to my home network when I am on the road, I do not want a VPN that connects directly to a computer or other device. I want to have access to my home internal subnet so I can connect via IP to any of the devices.
Here are the steps I went through to setup a VPN connection to my WRVS4400N VPN router.
I built a VPN user under the VPN | VPN Client Account and saved the account.
Next I generated both the Admin and Client Certificates and downloaded both to my local computer.
Next I enabled Firewall / Basic Settings / Remote Management. This enabled HTTPS and set Remote IP Address to Any IP address. I saved the settings.
Next I downloaded the QuickVPN Client and placed the client certificate I downloaded from the WRVS4400N into the QuickVPN install directory.
Next I setup the QuickVPN Client to connect to my public cable modem IP address.
Next I setup a connection to the internet using a NATted outside public IP address from another provider and tested the VPN connection. It failed!
Now when I try to connect to the VPN via the QuickVPN Client I get the following in my QuickVPN Client Log.txt file.
[WARNING]Failed to ping remote VPN Router!
Note: I have masked my public IP address with 7x.1xx.4x.5x.
--------------------------Begin Log.txt--------------------------
2018/06/29 10:35:45 [STATUS]OS Version: Unknown
2018/06/29 10:35:45 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:35:45 [STATUS]Connecting...
2018/06/29 10:35:45 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:35:45 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:35:48 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:35:48 [STATUS]Provisioning...
2018/06/29 10:35:51 [STATUS]Success to connect.
2018/06/29 10:35:51 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:35:51 [STATUS]Verifying Network...
2018/06/29 10:35:57 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:00 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:03 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:06 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:09 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:13 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:36:15 [STATUS]Disconnecting...
2018/06/29 10:36:21 [STATUS]Success to disconnect.
2018/06/29 10:37:45 [STATUS]OS Version: Unknown
2018/06/29 10:37:45 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:37:45 [STATUS]Connecting...
2018/06/29 10:37:45 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:37:45 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:37:49 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:37:49 [STATUS]Provisioning...
2018/06/29 10:37:52 [STATUS]Success to connect.
2018/06/29 10:37:52 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:37:52 [STATUS]Verifying Network...
2018/06/29 10:37:58 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:01 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:04 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:07 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:10 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:14 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:38:16 [STATUS]Disconnecting...
2018/06/29 10:38:22 [STATUS]Success to disconnect.
2018/06/29 10:49:59 [STATUS]OS Version: Unknown
2018/06/29 10:49:59 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:49:59 [STATUS]Connecting...
2018/06/29 10:49:59 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:49:59 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:50:03 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:50:03 [STATUS]Provisioning...
2018/06/29 10:50:07 [STATUS]Success to connect.
2018/06/29 10:50:07 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:50:07 [STATUS]Verifying Network...
2018/06/29 10:50:12 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:15 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:18 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:21 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:24 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:28 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:50:29 [STATUS]Disconnecting...
2018/06/29 10:50:32 [WARNING]Failed to disconnect.
--------------------------End Log.txt--------------------------
Any and all help will be greatly appreciated.
Also I tried to open a support ticket and support said since it is End Of Support they can't help me. They suggested buying a new VPN router so I can open a warranty support ticket. This is too good of a router to just replace because I am having a difficult time setting up a VPN connection.
Thank you,
ChanceDawgMiner
07-03-2018 10:05 AM
Here are the CONF and ERROR files contents after last test with Kaspersky uninstalled, Windows Defender Firewall enabled, and the 50,500,4500 inbound rule enabled.
--------------------------------------------------------------------------------
Conf Files
--------------------------------------------------------------------------------
vpnserver.conf
version=1
msgtype=configuration
conn someuser01_rw_rw
presharedkey=G8pIVOKuPqMh94yJRkxM
rightsubnet=192.168.1.0/24
remotelanip=192.168.1.2
dnsserver=8.8.8.8
domain=cisco
--------------------------------------------------------------------------------
ipsec.conf
conn HostToRemote
left=%any
right=7x.1xx.4x.5x
rightsubnet=192.168.1.0/24
presharedkey=G8pIVOKuPqMh94yJRkxM
auto=start
pfs=yes
--------------------------------------------------------------------------------
status.conf
rwConnStop message=Success
--------------------------------------------------------------------------------
stopconn.conf
version=1
msgtype=status
status=0
message=Success
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Error Files
--------------------------------------------------------------------------------
wget_error.txt
--22:34:16-- https://someuser01:*password*@7x.1xx.4x.5x/StartConnection.htm?version=1?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
=> `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//vpnserver.conf'
Connecting to 7x.1xx.4x.5x:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified
0K 174.80 KB/s
22:34:20 (174.80 KB/s) - `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//vpnserver.conf' saved [179]
--------------------------------------------------------------------------------
wget_request_error.txt
--22:34:53-- https://someuser01:*password*@7x.1xx.4x.5x:60443/CheckIsakmp.htm?version=1?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
=> `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//isakmp_status.conf'
Connecting to 7x.1xx.4x.5x:60443... connected.
HTTP request sent, awaiting response...
End of file while parsing headers.
Giving up.
--------------------------------------------------------------------------------
wget_stop_error.txt
--22:35:04-- https://someuser01:*password*@7x.1xx.4x.5x/StopConnection.htm?version=1?status=disable?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
=> `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//stopconn.conf'
Connecting to 7x.1xx.4x.5x:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified
0K 54.69 KB/s
22:35:07 (54.69 KB/s) - `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//stopconn.conf' saved [56]
--------------------------------------------------------------------------------
07-03-2018 02:09 PM
Hello,
what is the output of 'route print' on your Windows machine ?
07-03-2018 06:22 PM
Under which condition? Normal connected internally, outside of the internal network not connected to the router, or when I forced the connection by making vpnserver.conf Read-Only?
07-03-2018 11:27 PM
Actually, the moment you try to connect with the VPN client...
07-06-2018 10:02 AM
My apologies for not getting this done yet. I will try to get this info sometime later today.
Thank you,
ChanceDawgMiner
07-07-2018 04:16 PM - edited 07-07-2018 04:19 PM
Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.
C:\Download>route print
=======================================================================
Interface List
19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter #3
10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter #4
7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network) #2
16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
1.......................Software Loopback Interface 1
=======================================================================
IPv4 Route Table
=======================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.20.10.1 172.20.10.6 35
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
172.20.10.0 255.255.255.240 On-link 172.20.10.6 291
172.20.10.6 255.255.255.255 On-link 172.20.10.6 291
172.20.10.15 255.255.255.255 On-link 172.20.10.6 291
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 172.20.10.6 291
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 172.20.10.6 291
=======================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.16.170 1
169.254.0.0 255.255.0.0 192.168.1.112 1
=======================================================================
IPv6 Route Table
=======================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
=======================================================================
Persistent Routes:
None
C:\Download>
07-07-2018 04:21 PM - edited 07-07-2018 04:24 PM
Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.
C:\Download>route print
====================================================================
Interface List
19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
1.......................Software Loopback Interface 1
===================================================================
IPv4 Route Table
===================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.20.10.1 172.20.10.6 35
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
172.20.10.0 255.255.255.240 On-link 172.20.10.6 291
172.20.10.6 255.255.255.255 On-link 172.20.10.6 291
172.20.10.15 255.255.255.255 On-link 172.20.10.6 291
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 172.20.10.6 291
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 172.20.10.6 291
===================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.16.170 1
169.254.0.0 255.255.0.0 192.168.1.112 1
===================================================================
IPv6 Route Table
===================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
===================================================================
Persistent Routes:
None
C:\Download>
07-07-2018 04:24 PM
Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.
C:\Download>route print
====================================================================
Interface List
19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
1.......................Software Loopback Interface 1
===================================================================
IPv4 Route Table
===================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.20.10.1 172.20.10.6 35
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
172.20.10.0 255.255.255.240 On-link 172.20.10.6 291
172.20.10.6 255.255.255.255 On-link 172.20.10.6 291
172.20.10.15 255.255.255.255 On-link 172.20.10.6 291
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 172.20.10.6 291
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 172.20.10.6 291
===================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.16.170 1
169.254.0.0 255.255.0.0 192.168.1.112 1
===================================================================
IPv6 Route Table
===================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
===================================================================
Persistent Routes:
None
C:\Download>
07-08-2018 12:33 AM
Hello,
I am not sure what the two persistent routes do in there, can you try and remove those ?
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.16.170 1
169.254.0.0 255.255.0.0 192.168.1.112 1
You need to go into the registry to remove those routes...
http://www.itino.net/add-and-remove-persistent-static-routes-in-microsoft-windows/
07-08-2018 12:50 AM
Those should not be blocking me from accessing the 192.168.1.xxx subnet. Since they are there when I have my computer connected to the inside network side of the router it has a 192.168.1.53 IP address and those persistent routes have no affect on internal network traffic. Why do you think they should be removed?
07-08-2018 01:05 AM
Hello,
which of the interfaces listed are actually active ?
Interface List
19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
1.......................Software Loopback Interface 1
07-08-2018 04:30 AM
The Apple Mobile Device Ethernet is the only active connection when I am connected to the outside.
07-08-2018 09:38 PM
I went ahead and deleted the persistent routes and disabled all the network interfaces except for the "Apple Mobile Device Ethernet" and reconnected to the internet outside of the router and forced the connection to the VPN like before by changing the vpnserver.conf file entry remotelanip from 192.168.1.2 to 7x.1xx.4x.5x then set to Read-Only. After I connected to the VPN I grabbed the output of both "ipconfig /all" and "route print" and the they are below.
C:\WINDOWS\system32>ipconfig /all
Windows IP Configuration
Host Name . . . . . . . . . . . . : HP-LT-01
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : cisco
Ethernet adapter Ethernet 6:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Apple Mobile Device Ethernet
Physical Address. . . . . . . . . : 6B-6C-FE-86-7E-7B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv4 Address. . . . . . . . . . . : 172.20.10.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.240
Lease Obtained. . . . . . . . . . : Sunday, July 8, 2018 11:15:09 PM
Lease Expires . . . . . . . . . . : Monday, July 9, 2018 11:00:44 PM
Default Gateway . . . . . . . . . : 172.20.10.1
DHCP Server . . . . . . . . . . . : 172.20.10.1
DNS Servers . . . . . . . . . . . : 8.8.8.8
172.20.10.1
NetBIOS over Tcpip. . . . . . . . : Enabled
C:\WINDOWS\system32>route print
======================================================================
Interface List
6...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
1......................Software Loopback Interface 1
======================================================================
IPv4 Route Table
======================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.20.10.1 172.20.10.6 35
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
172.20.10.0 255.255.255.240 On-link 172.20.10.6 291
172.20.10.6 255.255.255.255 On-link 172.20.10.6 291
172.20.10.15 255.255.255.255 On-link 172.20.10.6 291
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 172.20.10.6 291
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 172.20.10.6 291
======================================================================
Persistent Routes:
None
IPv6 Route Table
======================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
======================================================================
Persistent Routes:
None
C:\WINDOWS\system32>
07-10-2018 05:02 PM
So am I basically out of luck and will not be able to make this work?
07-18-2018 07:19 AM
So I guess that there is no way to make this work?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: