1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Anyone have an RV082 w/VPN behind a firewall performing NAT?

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by tadr, Mar 25, 2006.

  1. tadr

    tadr Network Guru Member

    I have been attempting to setup an RV082 as a VPN server behind a firewall that performs NAT for the past several days with no luck.

    When I spoke to linksys before purchasing, they said this was possible. I then spoke with them after trying to set it up, and the rep claimed that the RV082 had to have a direct connection to the internet in order for VPN to work.

    Is ANYONE here able to run the RV082 behind another firewall, and still VPN into the RV082 from remote clients?
  2. Toxic

    Toxic Administrator Staff Member

  3. TazUk

    TazUk Network Guru Member

    Depends whether it's the end initiating the connection or not. When the router gives out it's WAN address it will be in effect a private IP as it's on the LAN side of the other router, which is NATed and therefore non-routable.
  4. tadr

    tadr Network Guru Member

    The remote client (client to gateway) would be initiating the connection to the WAN IP of the main firewall, which I had hoped would pass through UDP 500 and TCP 1723 to the RV082 (which I set it to do). So you're saying because the RV082 has a private IP behind NAT I can't route it through the main firewall?
  5. YeOldeStonecat

    YeOldeStonecat Network Guru Member

    You doing just the plain PPTP VPN? Or the QuickVPN IPSec?

    Why behing another NAT router..instead of having it do both?
  6. Zulutime

    Zulutime Guest

    No problem

    This should do the trick

    Inner Linksys fw:
    1. "Security Gateway Type" (IKE policy) MUST be "Dynamic IP + Domain Name(FQDN) Authentication, (or "IP + Domain Name(FQDN) Authentication" if you wish to initiate a tunnel).
    2. Aggressive mode MUST be used.

    Outer fw:
    1. IKE (UDP/500) MUST be forwarded to Linksys WAN port, or activate DMZ exposed host function if possible.
    2. VPN (IPSEC IP protocol 50) passthrough MUST be enabled.
    3. ONLY ONE tunnel may be used at the same time.

    ps, I use a Netgear DG834 ADSL router as outer fw

Share This Page