cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6655
Views
0
Helpful
50
Replies

Configure WRVS4400N VPN Client Account to connect my computer via VPN to my home internal subnet

cashbubba
Level 1
Level 1

I know that this has been beat to death but none the posts I have found via Google have fixed my problem.

First let me explain what my goal here is. I want to connect my computer to my home network when I am on the road, I do not want a VPN that connects directly to a computer or other device. I want to have access to my home internal subnet so I can connect via IP to any of the devices.

 

Here are the steps I went through to setup a VPN connection to my WRVS4400N VPN router.
    I built a VPN user under the VPN | VPN Client Account and saved the account.
    Next I generated both the Admin and Client Certificates and downloaded both to my local computer.
    Next I enabled Firewall / Basic Settings / Remote Management. This enabled HTTPS and set Remote IP Address to Any IP address. I saved the settings.
    Next I downloaded the QuickVPN Client and placed the client certificate I downloaded from the WRVS4400N into the QuickVPN install directory.
    Next I setup the QuickVPN Client to connect to my public cable modem IP address.
    Next I setup a connection to the internet using a NATted outside public IP address from another provider and tested the VPN connection. It failed!

Now when I try to connect to the VPN via the QuickVPN Client I get the following in my QuickVPN Client Log.txt file.

    [WARNING]Failed to ping remote VPN Router!

Note: I have masked my public IP address with 7x.1xx.4x.5x.
--------------------------Begin Log.txt--------------------------
2018/06/29 10:35:45 [STATUS]OS Version: Unknown
2018/06/29 10:35:45 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:35:45 [STATUS]Connecting...
2018/06/29 10:35:45 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:35:45 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:35:48 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:35:48 [STATUS]Provisioning...
2018/06/29 10:35:51 [STATUS]Success to connect.
2018/06/29 10:35:51 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:35:51 [STATUS]Verifying Network...
2018/06/29 10:35:57 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:00 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:03 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:06 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:09 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:36:13 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:36:15 [STATUS]Disconnecting...
2018/06/29 10:36:21 [STATUS]Success to disconnect.
2018/06/29 10:37:45 [STATUS]OS Version: Unknown
2018/06/29 10:37:45 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:37:45 [STATUS]Connecting...
2018/06/29 10:37:45 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:37:45 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:37:49 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:37:49 [STATUS]Provisioning...
2018/06/29 10:37:52 [STATUS]Success to connect.
2018/06/29 10:37:52 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:37:52 [STATUS]Verifying Network...
2018/06/29 10:37:58 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:01 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:04 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:07 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:10 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:38:14 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:38:16 [STATUS]Disconnecting...
2018/06/29 10:38:22 [STATUS]Success to disconnect.
2018/06/29 10:49:59 [STATUS]OS Version: Unknown
2018/06/29 10:49:59 [STATUS]One network interface detected with IP address 172.20.10.6
2018/06/29 10:49:59 [STATUS]Connecting...
2018/06/29 10:49:59 [DEBUG]Input VPN Server Address = 7x.1xx.4x.5x
2018/06/29 10:49:59 [STATUS]Connecting to remote gateway with IP address: 7x.1xx.4x.5x
2018/06/29 10:50:03 [STATUS]Remote gateway was reached by https ...
2018/06/29 10:50:03 [STATUS]Provisioning...
2018/06/29 10:50:07 [STATUS]Success to connect.
2018/06/29 10:50:07 [STATUS]Tunnel is configured. Ping test is about to start.
2018/06/29 10:50:07 [STATUS]Verifying Network...
2018/06/29 10:50:12 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:15 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:18 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:21 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:24 [WARNING]Failed to ping remote VPN Router!
2018/06/29 10:50:28 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.
2018/06/29 10:50:29 [STATUS]Disconnecting...
2018/06/29 10:50:32 [WARNING]Failed to disconnect.
--------------------------End Log.txt--------------------------

Any and all help will be greatly appreciated.

Also I tried to open a support ticket and support said since it is End Of Support they can't help me. They suggested buying a new VPN router so I can open a warranty support ticket. This is too good of a router to just replace because I am having a difficult time setting up a VPN connection.

Thank you,
ChanceDawgMiner

50 Replies 50

Here are the CONF and ERROR files contents after last test with Kaspersky uninstalled, Windows Defender Firewall enabled, and the 50,500,4500 inbound rule enabled.

 

--------------------------------------------------------------------------------
Conf Files
--------------------------------------------------------------------------------
vpnserver.conf
version=1
msgtype=configuration
conn someuser01_rw_rw
presharedkey=G8pIVOKuPqMh94yJRkxM
rightsubnet=192.168.1.0/24
remotelanip=192.168.1.2
dnsserver=8.8.8.8
domain=cisco
--------------------------------------------------------------------------------
ipsec.conf
conn HostToRemote
    left=%any
    right=7x.1xx.4x.5x
    rightsubnet=192.168.1.0/24
    presharedkey=G8pIVOKuPqMh94yJRkxM
    auto=start
    pfs=yes
--------------------------------------------------------------------------------
status.conf
rwConnStop message=Success
--------------------------------------------------------------------------------
stopconn.conf
version=1
msgtype=status
status=0
message=Success
--------------------------------------------------------------------------------


--------------------------------------------------------------------------------
Error Files
--------------------------------------------------------------------------------
wget_error.txt
--22:34:16--  https://someuser01:*password*@7x.1xx.4x.5x/StartConnection.htm?version=1?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
           => `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//vpnserver.conf'
Connecting to 7x.1xx.4x.5x:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified
    0K                                                         174.80 KB/s
22:34:20 (174.80 KB/s) - `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//vpnserver.conf' saved [179]
--------------------------------------------------------------------------------
wget_request_error.txt
--22:34:53--  https://someuser01:*password*@7x.1xx.4x.5x:60443/CheckIsakmp.htm?version=1?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
           => `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//isakmp_status.conf'
Connecting to 7x.1xx.4x.5x:60443... connected.
HTTP request sent, awaiting response...
End of file while parsing headers.
Giving up.
--------------------------------------------------------------------------------
wget_stop_error.txt
--22:35:04--  https://someuser01:*password*@7x.1xx.4x.5x/StopConnection.htm?version=1?status=disable?IP=172.20.10.6?PASSWD=*password*?USER=someuser01
           => `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//stopconn.conf'
Connecting to 7x.1xx.4x.5x:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: unspecified
    0K                                                          54.69 KB/s
22:35:07 (54.69 KB/s) - `C://Program Files (x86)//Cisco Small Business//QuickVPN Client//stopconn.conf' saved [56]
--------------------------------------------------------------------------------

Hello,

 

what is the output of 'route print' on your Windows machine ?

Under which condition? Normal connected internally, outside of the internal network not connected to the router, or when I forced the connection by making vpnserver.conf Read-Only?

Actually, the moment you try to connect with the VPN client...

My apologies for not getting this done yet. I will try to get this info sometime later today.

 

Thank you,

ChanceDawgMiner

Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.

 

C:\Download>route print
=======================================================================
Interface List
 19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter #3
 10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter #4
  7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
 28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network) #2
 16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
  1.......................Software Loopback Interface 1
=======================================================================

IPv4 Route Table
=======================================================================
Active Routes:
Network Destination        Netmask        Gateway     Interface  Metric
          0.0.0.0          0.0.0.0    172.20.10.1    172.20.10.6     35
        127.0.0.0        255.0.0.0       On-link       127.0.0.1    331
        127.0.0.1  255.255.255.255       On-link       127.0.0.1    331
  127.255.255.255  255.255.255.255       On-link       127.0.0.1    331
      172.20.10.0  255.255.255.240       On-link     172.20.10.6    291
      172.20.10.6  255.255.255.255       On-link     172.20.10.6    291
     172.20.10.15  255.255.255.255       On-link     172.20.10.6    291
        224.0.0.0        240.0.0.0       On-link       127.0.0.1    331
        224.0.0.0        240.0.0.0       On-link     172.20.10.6    291
  255.255.255.255  255.255.255.255       On-link       127.0.0.1    331
  255.255.255.255  255.255.255.255       On-link     172.20.10.6    291
=======================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0   192.168.16.170       1
      169.254.0.0      255.255.0.0    192.168.1.112       1
=======================================================================

IPv6 Route Table
=======================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  1    331 ff00::/8                 On-link
=======================================================================
Persistent Routes:
  None

C:\Download>

Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.

 

C:\Download>route print
====================================================================
Interface List
 19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
 10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
  7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
 28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
 16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
  1.......................Software Loopback Interface 1
===================================================================

IPv4 Route Table
===================================================================
Active Routes:
Network Destination        Netmask     Gateway     Interface Metric
          0.0.0.0          0.0.0.0 172.20.10.1    172.20.10.6    35
        127.0.0.0        255.0.0.0    On-link       127.0.0.1   331
        127.0.0.1  255.255.255.255    On-link       127.0.0.1   331
  127.255.255.255  255.255.255.255    On-link       127.0.0.1   331
      172.20.10.0  255.255.255.240    On-link     172.20.10.6   291
      172.20.10.6  255.255.255.255    On-link     172.20.10.6   291
     172.20.10.15  255.255.255.255    On-link     172.20.10.6   291
        224.0.0.0        240.0.0.0    On-link       127.0.0.1   331
        224.0.0.0        240.0.0.0    On-link     172.20.10.6   291
  255.255.255.255  255.255.255.255    On-link       127.0.0.1   331
  255.255.255.255  255.255.255.255    On-link     172.20.10.6   291
===================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0   192.168.16.170       1
      169.254.0.0      255.255.0.0    192.168.1.112       1
===================================================================

IPv6 Route Table
===================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  1    331 ff00::/8                 On-link
===================================================================
Persistent Routes:
  None

C:\Download>

Okay here is the output of Route Print taken when I am connected to the router VPN. Forced by changing the vpnserver.conf remotelanip from 192.168.1.2 to router public interface IP 7x.1xx.4x.5x then making the vpnserver.conf file Read-Only so the QuickVPN client could not change it back.

 

C:\Download>route print
====================================================================
Interface List
 19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
 10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
  7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
 28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
 16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
  1.......................Software Loopback Interface 1
===================================================================

IPv4 Route Table
===================================================================
Active Routes:
Network Destination        Netmask     Gateway     Interface Metric
          0.0.0.0          0.0.0.0 172.20.10.1    172.20.10.6    35
        127.0.0.0        255.0.0.0    On-link       127.0.0.1   331
        127.0.0.1  255.255.255.255    On-link       127.0.0.1   331
  127.255.255.255  255.255.255.255    On-link       127.0.0.1   331
      172.20.10.0  255.255.255.240    On-link     172.20.10.6   291
      172.20.10.6  255.255.255.255    On-link     172.20.10.6   291
     172.20.10.15  255.255.255.255    On-link     172.20.10.6   291
        224.0.0.0        240.0.0.0    On-link       127.0.0.1   331
        224.0.0.0        240.0.0.0    On-link     172.20.10.6   291
  255.255.255.255  255.255.255.255    On-link       127.0.0.1   331
  255.255.255.255  255.255.255.255    On-link     172.20.10.6   291
===================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0   192.168.16.170       1
      169.254.0.0      255.255.0.0    192.168.1.112       1
===================================================================

IPv6 Route Table
===================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  1    331 ff00::/8                 On-link
===================================================================
Persistent Routes:
  None

C:\Download>

Hello,

 

I am not sure what the two persistent routes do in there, can you try and remove those ?

 

Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.16.170 1
169.254.0.0 255.255.0.0 192.168.1.112 1

 

You need to go into the registry to remove those routes...

 

http://www.itino.net/add-and-remove-persistent-static-routes-in-microsoft-windows/

Those should not be blocking me from accessing the 192.168.1.xxx subnet. Since they are there when I have my computer connected to the inside network side of the router it has a 192.168.1.53 IP address and those persistent routes have no affect on internal network traffic. Why do you think they should be removed?

Hello,

 

which of the interfaces listed are actually active ?

 

Interface List
19...1b 7a 0e 3e 94 67 ..Microsoft Wi-Fi Direct Virtual Adapter#3
10...1b 7a 0e 3e 94 f2 ..Microsoft Wi-Fi Direct Virtual Adapter#4
7...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
28...1b 7a 0e 3e 94 32 ..Bluetooth Device (Personal Area Network)#2
16...1b 7a 0e 3e 94 2e ..Intel(R) Dual Band Wireless-AC 7265
1.......................Software Loopback Interface 1

The Apple Mobile Device Ethernet is the only active connection when I am connected to the outside.

I went ahead and deleted the persistent routes and disabled all the network interfaces except for the "Apple Mobile Device Ethernet" and reconnected to the internet outside of the router and forced the connection to the VPN like before by changing the vpnserver.conf file entry remotelanip from 192.168.1.2 to 7x.1xx.4x.5x then set to Read-Only. After I connected to the VPN I grabbed the output of both "ipconfig /all" and "route print" and the they are below.

 

C:\WINDOWS\system32>ipconfig /all
Windows IP Configuration
   Host Name . . . . . . . . . . . . : HP-LT-01
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : cisco

Ethernet adapter Ethernet 6:
  Connection-specific DNS Suffix  . :
  Description . . . . . . . . . . . : Apple Mobile Device Ethernet
  Physical Address. . . . . . . . . : 6B-6C-FE-86-7E-7B
  DHCP Enabled. . . . . . . . . . . : Yes
  Autoconfiguration Enabled . . . . : Yes
  IPv4 Address. . . . . . . . . . . : 172.20.10.6(Preferred)
  Subnet Mask . . . . . . . . . . . : 255.255.255.240
  Lease Obtained. . . . . . . . . . : Sunday, July 8, 2018 11:15:09 PM
  Lease Expires . . . . . . . . . . : Monday, July 9, 2018 11:00:44 PM
  Default Gateway . . . . . . . . . : 172.20.10.1
  DHCP Server . . . . . . . . . . . : 172.20.10.1
  DNS Servers . . . . . . . . . . . : 8.8.8.8
                                      172.20.10.1
  NetBIOS over Tcpip. . . . . . . . : Enabled

 

C:\WINDOWS\system32>route print
======================================================================
Interface List
  6...6b 6c fe 86 7e 7b ..Apple Mobile Device Ethernet
  1......................Software Loopback Interface 1
======================================================================

IPv4 Route Table
======================================================================
Active Routes:
Network Destination       Netmask       Gateway       Interface Metric
          0.0.0.0         0.0.0.0   172.20.10.1     172.20.10.6     35
        127.0.0.0       255.0.0.0       On-link       127.0.0.1    331
        127.0.0.1 255.255.255.255       On-link       127.0.0.1    331
  127.255.255.255 255.255.255.255       On-link       127.0.0.1    331
      172.20.10.0 255.255.255.240       On-link     172.20.10.6    291
      172.20.10.6 255.255.255.255       On-link     172.20.10.6    291
     172.20.10.15 255.255.255.255       On-link     172.20.10.6    291
        224.0.0.0       240.0.0.0       On-link       127.0.0.1    331
        224.0.0.0       240.0.0.0       On-link     172.20.10.6    291
  255.255.255.255 255.255.255.255       On-link       127.0.0.1    331
  255.255.255.255 255.255.255.255       On-link     172.20.10.6    291
======================================================================
Persistent Routes:
  None

IPv6 Route Table
======================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    331 ::1/128                  On-link
  1    331 ff00::/8                 On-link
======================================================================
Persistent Routes:
  None

C:\WINDOWS\system32>

So am I basically out of luck and will not be able to make this work?

So I guess that there is no way to make this work?