QuickVPNplus


jm23hh said:
QuickVPN error -102 - The protection network conflict
Click to expand...


This is one of the nice features of QuickVPN+: ERROR MESSAGES

The message quoted means that the local machine address (your IP) is on the same range as the remote LAN you are trying to access.

This is one of the most common errors with QuickVPN type connections.
 
jm23hh said:
Hi,

version=1
msgtype=status
status=-102
message=The protection network conflict

QuickVPN error -102 - The protection network conflict


Joerg
Click to expand...

This message means either:
1 - your local IP address is in the same range as the remote LAN you are trying to access like AViegas mentioned OR
2 - the remote router has a "Gateway to Gateway" VPN definition where "Remote Group" has a range that conflicts with your local IP address
 
mca007, thanks for you efforts with QuickVPN+.

Unfortunately I haven't had much success in getting it working. The overall result is much the same as QuickVPN. It apparently creates the VPN connection, but no luck with actually using it.

Any help would be appreciated. Here is the output....

C:\QuickVPNplus_1.0.3>QuickVPNplus.exe -u <userid> -p <password> -r XXX.XXX.XXX.234 -v
OSver: 5.1
[T] Figuring out local interface.
[T] ipADD XXX.XXX.XXX.233
[T] defGW XXX.XXX.XXX.233
[T] BINGO
[T] If type: 6
Local ip address: XXX.XXX.XXX.233
Requesting configuration data from XXX.XXX.XXX.234 ...
[T] Uri: https://<userid>:<password>@XXX.XXX.XXX.234:443/StartConnection.htm?versi
on=1?IP=XXX.XXX.XXX.233?PASSWD=<password>?USER=<userid>

[E] Authorization 12045 - The certificate authority is invalid or incorrect

[T] HttpQueryInfo 200

version=1
msgtype=configuration
conn <userid>_rw
presharedkey=cb306bc555cf11d1
rightsubnet=192.168.1.0/24
dnsserver=192.168.1.1
domain=mydomain.net

LocalAddr: XXX.XXX.XXX.233
LocalMask: 255.255.255.255
LocalSubnet: XXX.XXX.XXX.233/255.255.255.255
Presharedkey: cb306bc555cf11d1
DNSserver: 192.168.1.1
RemoteNet: 192.168.1.0
RemoteMask: 255.255.255.0
RemoteSubnet: 192.168.1.0/255.255.255.0
Deactivating QuickVPNplus ipsec policy...
ipseccmd -w REG -p QuickVPNplus -y

The command completed successfully.
Removing QuickVPNplus ipsec policy...
ipseccmd -w REG -p QuickVPNplus -o

The command completed successfully.
Creating QuickVPNplus ipsec policy...

ipseccmd -w REG -p QuickVPNplus -r Host-RemoteNet -t XXX.XXX.XXX.234 -f XXX.XXX.XXX.233/255.255.255.255=192.168.1.0/255.255.255.0 -n ESP[MD5,3DES]3600S/50000KPFS -a PRESHARE:"cb306bc555cf11d1" -lan -1p

The command completed successfully.
Creating QuickVPNplus ipsec policy...

ipseccmd -w REG -p QuickVPNplus -r RemoteNet-Host -t XXX.XXX.XXX.233 -f 192.168.1.0/255.255.255.0=XXX.XXX.XXX.233/255.255.255.255 -n ESP[MD5,3DES]3600S/50000KPFS -a PRESHARE:"cb306bc555cf11d1" -lan -1p

The command completed successfully.
Activating QuickVPNplus ipsec policy...

ipseccmd -w REG -p QuickVPNplus -x

The command completed successfully.
Configuration done.
Activating tunnel...

Pinging 192.168.1.1 with 32 bytes of data:

Negotiating IP Security.
Request timed out.
Request timed out.
Request timed out.

Ping statistics for 192.168.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

C:\QuickVPNplus_1.0.3>
 
no luck

Running Vista Business, trying to connect to RVS4000 router.

Code: 
C:\Users\monkey\Downloads>QuickVPNplus.exe -u username -p password -r xx.xxx.xx.x -v
OSver: 6.0
[T] Figuring out local interface.
[T] ipADD 10.10.11.140
[T] defGW 10.10.11.1
[T] BINGO
[T] If type: 6
Local ip address: 10.10.11.140
Requesting configuration data from xx.xxx.xx.x ...
[T] Uri: https://username:password@xx.xxx.xx.x:443/StartConnection.htm?version=1?IP=10.10.11.140?PASS

[E] Authorization 12045 - The certificate authority is invalid or incorrect

[E] Authorization 12152 - The server returned an invalid or unrecognized response

[E] HttpSendRequest 12152 - The server returned an invalid or unrecognized response

QuickVPN error - could not obtain config data.

C:\Users\monkey\Downloads>

Nothing happens.

I tried connecting to another RVS4000 router that I have, and received the following error:

Code: 
C:\Users\monkey\Downloads>QuickVPNplus.exe -u username -p password -r xx.xx.xx.xxx -v
OSver: 6.0
[T] Figuring out local interface.
[T] ipADD 10.10.11.140
[T] defGW 10.10.11.1
[T] BINGO
[T] If type: 6
Local ip address: 10.10.11.140
Requesting configuration data from xx.xx.xx.xxx ...
[T] Uri: https://username:password@xx.xx.xx.xxx:443/StartConnection.htm?version=1?IP=10.10.11.140?PAS

[E] Authorization 12045 - The certificate authority is invalid or incorrect

[E] Authorization 12037 - The date in the certificate is invalid or has expired

[T] HttpQueryInfo 404
QuickVPN error - could not obtain config data.

C:\Users\monkey\Downloads>

This time I received a security warning, I accepted, but when the HTTP window popped up, I revceived an error 404 page. I'm guessing these issues are on the router end?
 
D0bb1n said:
mca007, thanks for you efforts with QuickVPN+.

Unfortunately I haven't had much success in getting it working. The overall result is much the same as QuickVPN. It apparently creates the VPN connection, but no luck with actually using it.

Any help would be appreciated. Here is the output....



Configuration done.
Activating tunnel...

Pinging 192.168.1.1 with 32 bytes of data:

Negotiating IP Security.
Request timed out.
Request timed out.
Request timed out.

Ping statistics for 192.168.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

C:\QuickVPNplus_1.0.3>
Click to expand...


Everything looks good as far as authenticating and obtaining cofig data from the router and setting up Windows ipsec.

Looks like you might have an ipsec passtrough problem with your local router.
Have you enabled "IPSec Pass Through" in your local router?
Does it have the option?
 
umox said:
Running Vista Business, trying to connect to RVS4000 router.

Code: 
[E] HttpSendRequest 12152 - The server returned an invalid or unrecognized response

QuickVPN error - could not obtain config data.


Code: 
[T] HttpQueryInfo 404
QuickVPN error - could not obtain config data.

This time I received a security warning, I accepted, but when the HTTP window popped up, I revceived an error 404 page. I'm guessing these issues are on the router end?
Click to expand...

Most definitely the problem is at the router end.

What is the firmware version you have installed in the RVS4000?

I do have a RVS4000 with firmware 1.1.0.9 and I can't get QuickVPN to work.

The router does not respond to the HTTPS "query" to authenticate and get configuration parameters.

Very similar to what is happening in your case.

In this forum there are several posts reporting the same problem with RVS4000 and fw 1.1.0.9

Unfortunately this is a common problem with Linksys products (and Netgear and D-Link ...). "They need to mature."
End users are testers for them.
Usually you have to wait for 3 or 4 rounds of new firmware until the unit becomes reasonably stable.
 
Yes, I'm currently using firmware version 1.1.0.9. Looks like I'm just going to have to wait. I was hoping that the quickvpn+ utility was going to work since the normal quickvpn utility doesnt under vista. :wall:
 
Just tried with Vista Business to WRV54G no joy, here is what I get

C:\test>quickvpnplus -u XXXX -p XXXX -r 72.XX.XX.XX -i 60443 -c -v
OSver: 6.0
[T] Figuring out local interface.
[T] ipADD 10.10.10.10
[T] defGW 10.10.10.1
[T] BINGO
[T] If type: 6
Local ip address: 10.10.10.10
Requesting configuration data from XX.XX.XX.XX ...
[T] Uri: https://XXX:XXX@XX.XX.XX.XX:60443/StartConnection.htm?version=1?IP=
10.10.10.10?PASSWD=XXX?USER=XXX

[E] Authorization 12029 - A connection with the server could not be established

[E] HttpSendRequest 12029 - A connection with the server could not be establishe
d

QuickVPN error - could not obtain config data.

I can connect on my XP box with QuickVPN, but not the plus. SO no joy connecting to a WRV54G.
 
orelious said:
https://XXX:XXX@XX.XX.XX.XX:60443/StartConnection.htm?version=1?IP=
10.10.10.10?PASSWD=XXX?USER=XXX

[E] Authorization 12029 - A connection with the server could not be established

[E] HttpSendRequest 12029 - A connection with the server could not be established

QuickVPN error - could not obtain config data.

I can connect on my XP box with QuickVPN, but not the plus. SO no joy connecting to a WRV54G.
Click to expand...

I've never tried QuickVPN with a WRV54G.
But in your case the router is not responding to the https request.

Note that you MUST get the router to respond to the HTTPS request.
Without it, nothing is going to work.

You can cut and paste the URI printed out when you set the verbose option and try it from your web browser.

Until you get a response, don't waste your time with QuickVPN or QuickVPNplus.

At least QuickVPNplus tells you what is the problem.
 
umox said:
Yes, I'm currently using firmware version 1.1.0.9. Looks like I'm just going to have to wait. I was hoping that the quickvpn+ utility was going to work since the normal quickvpn utility doesnt under vista. :wall:
Click to expand...

Can you get the RVS4000 to work with QuickVPN and Windows XP?
mca007 cannot get it to work. Not even manually, so we are quite sure the problem is with the router, not the client side code.
 
orelious said:
Just tried with Vista Business to WRV54G no joy, here is what I get

C:\test>quickvpnplus -u XXXX -p XXXX -r 72.XX.XX.XX -i 60443 -c -v
OSver: 6.0
[T] Figuring out local interface.
[T] ipADD 10.10.10.10
[T] defGW 10.10.10.1
[T] BINGO
[T] If type: 6
Local ip address: 10.10.10.10
Requesting configuration data from XX.XX.XX.XX ...
[T] Uri: https://XXX:XXX@XX.XX.XX.XX:60443/StartConnection.htm?version=1?IP=
10.10.10.10?PASSWD=XXX?USER=XXX

[E] Authorization 12029 - A connection with the server could not be established

[E] HttpSendRequest 12029 - A connection with the server could not be establishe
d

QuickVPN error - could not obtain config data.

I can connect on my XP box with QuickVPN, but not the plus. SO no joy connecting to a WRV54G.
Click to expand...

Looks like you are attempting to connect on port 60443. This is an option that is available only on newer firmwares and even maybe for some routers.

Try removing the "-i60443" from your command and give it a try. I will use port 443 by default, that was the ONLY option available on older firmware.
 
Yeah i tried it minus the ports but then it just barfed and said bad password.

I also try to place the HTTPS line in my browser and I get cannot find blah blah.
 
mca007, thanks for the speedy response

mca007 said:
Looks like you might have an ipsec passtrough problem with your local router.
Have you enabled "IPSec Pass Through" in your local router?
Does it have the option?
Click to expand...

Due to the problems I've been having, I've taken my laptop (XP SP2) and plugged it directly in to the WAN1 port of the RV082 (Firmware 1.3.5), and with the firewall on my laptop shutdown I repeated the test above, with the same results.

Then tried the following ...

Reset the RV082 to factory defaults, created a VPN client account and tried again, with the same result.
Went through the QuickVPN howto to ensure my RV082 was OK and tried again, with the same result.

Any more hints ? is it worth trying to get a packet sniffer going between my laptop and router ? If so, is there anything specific I should be looking for ?

[Just thought, one shortcut I did take was to use the ipseccmd.exe from the quickvpn distribution as I didn't have my XP media to hand, would this cause an issue ?]

Thanks

Dobbs
 
Just a quick question does QVPN+ work with Certificates? The WRV200 can use certs created by its own WebGUI. this cert is then held in the same folder as QuickVPN
 
Toxic said:
Just a quick question does QVPN+ work with Certificates? The WRV200 can use certs created by its own WebGUI. this cert is then held in the same folder as QuickVPN
Click to expand...

Yest it does.

QuickVPN+ uses Windows' own HTTP code to talk to the VPN server. Therefore to use the certificate enforcement, specify the "-c" flag.

In this case if the router certificate is not in the Windows Certificate Store, a dialog will pop up asking for instructions on how to proceed.

Install the certificate the same way as one would install a certificate for use with Internet Explorer (because QuickVPN+ uses the HTTP/SSL library as IE).

But the handling may change in a future version. Stay tuned.
 
The password i'm using is not a strong one, all lowercase alpha. Odd this is when i paste the https link I get the error popup from IE7 that says cannot find etc etc. If I remove the ID.PAss@ part in front of the remote IP It goes but never connects, obviously due to no ID and pass. My problem right now is simply the https line failing to be even recognised as a valid web browser command. Am I missing something besides my brain?
 
D0bb1n said:
mca007, thanks for the speedy response



Due to the problems I've been having, I've taken my laptop (XP SP2) and plugged it directly in to the WAN1 port of the RV082 (Firmware 1.3.5), and with the firewall on my laptop shutdown I repeated the test above, with the same results.

Then tried the following ...

Reset the RV082 to factory defaults, created a VPN client account and tried again, with the same result.
Went through the QuickVPN howto to ensure my RV082 was OK and tried again, with the same result.

Any more hints ? is it worth trying to get a packet sniffer going between my laptop and router ? If so, is there anything specific I should be looking for ?

[Just thought, one shortcut I did take was to use the ipseccmd.exe from the quickvpn distribution as I didn't have my XP media to hand, would this cause an issue ?]

Thanks

Dobbs
Click to expand...

I don't think ipseccmd.exe in contributing to the problem and I don't know what else you can do.

In your case it seems that Windows "is happy" setting up the Tunnel.
It then starts to actually ping the DNS but you get no response.

Have you tried to ping another machine in the remote network?
The DNS box might not be responding to pings.
 
You must log in or register to reply here.

Back
Top