1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Can the RV082 do this?

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by SmallOffice, Mar 21, 2005.

  1. SmallOffice

    SmallOffice Network Guru Member

    We are looking to do the following:

    1. Run a PPTP VPN server on the router.
    2. Connect to the PPTP server remotely using the Windows-built-in PPTP VPN adaptor.
    3. Make a 'semi-permanent' VPN connection to a 2nd RV082 router across the Internet (WAN) using dynamic IPs that rarely change.
    4. Connect to another firm's VPN network from a Windows XP Pro Client behind this router using MSRA (IPSec).

    It appears that we have outgrown our WRT54GS (w/Seavasoft Alchemy) routers and are looking to upgrade.

    We are also considering the RV042 and the Cisco - PIX 501 3DES BDL CHAS AND-S/W 10U.

    Any help would be greatly appreciated.

    Thanks

    Joel
     
  2. toofgib

    toofgib Network Guru Member

    If you go with the Linksys product, the RV082 model is DEFINITELY the better product to go with. All of the requirements you need are supported by this model.

    Do not go with the RV042, as this model still has some VPN issues which are not resolved in the current firmware, and the only fix is a beta firmware. Also, the RV042 does not currently allow you to run a PPTP server on the router.

    If do decide to go with the Cisco product, although more $$ it is the better choice between itself and the RV082.

    Cisco has much better service and support, even compared to its subsidiary Linksys.

    Hope this helps.
     
  3. SmallOffice

    SmallOffice Network Guru Member

    Going to try TRENDware...

    Hi toofgib.

    I appreciate your helpful comments.

    I took a very careful look at the RV082 and the Cisco products. Both products look like they would meet my needs but with some important compromises.

    After further investigation, I started looking at the TRENDware TW100-BRV304. (Yes, I never heard of them either.)

    However, according to the specs/manual, this router will do everything in need right out of the box. They are up to the second version of this product so I hope that the removed all of the bugs. I looked around the internet and found a few positive comments about it. I also traded e-mails with their prompt support team.

    Consequently, I am going to give them a try. If it doesn't work almost immediately, then I'll go with another product.

    Thanks

    Joel
     
  4. SmallOffice

    SmallOffice Network Guru Member

    We back to looking at RV082

    Just a quick update...

    The TRENDware product turned out to be a non-starter. The Version 2 which has the features that we are interested in, but it is not in the channel yet. We are not interested in unproven products.

    So we are back looking at the Linksys RV082 and Cisco - PIX 501. I sent Linksys sales the following questions, but I figured that I would post them here as well:

    1.Can we use the built-in Windows XP VPN adapter to connect to the router from the road remotely?
    2.Can we make a router to router VPN connection across two dynamic IPs that rarely change?
    3.What is the WAN-LAN throughput w/o VPN?
    4.What is the WAN-LAN throughput w/ VPN?

    We are leaning away from the Cisco product because of its limited 'router' functionality and added cost. (We are going to buy 2-3 of these products to connect small offices.)

    Thanks

    Joel
     
  5. toofgib

    toofgib Network Guru Member

    Hi Joel!

    If cost is the determining factor, then the Linksys RV082 is your best bet. I have tested a few Trendware/TrendNet products and thus far, I would only use those where cost is the issue and would use only their basic equipment/product offerings.

    1. As far as the Microsoft VPN client is concerned, it will work. However, because you have to setup the VPN using Security Policy, it isn't that friendly with Dynamic IP/Dynamic DNS which is what you'll be needing. People have been getting some good success with the Greenbow VPN client as well as the Cisco VPN client. Don't waste your time with Linksys QuickVPN until they work out the kinks.

    2. Using persistent Dynamic IPs (such as Cable) shouldn't be a problem. I would still recommend registering the specific endpoints with a Dynamic DNS service provider such as DynDNS or TZO. That way, you don't have to keep up with any changes in your IP (which would rarely happen).

    3. /4. Please read the following review from Tom's Networking for all the numbers that you need. They have done some significant testing and are rather positive in their praise of this router.

    http://www.tomsnetworking.com/Reviews-145-ProdID-RV082.php

    In terms of your apprehension regarding the Cisco product(s), Linksys USA has the Cisco Trade-Up program in place. It allows for small and medium businesses to trade up to Cisco products if/when you feel the need is appropriate.

    Also, you might want to look into Cisco's SMB targetted products, particularly the Integrated Services line of routers. However, they still be more pricey than the Linksys products.

    You might also want to look into the routers from Netopia. They offer some good routers with excellent VPN features.

    Hope this helps. :D
     
  6. SmallOffice

    SmallOffice Network Guru Member

    RV082 is on the way...

    Hi toofgib.

    According to Tom's, the RV082 has impressive VPN performance. Thanks for the review.

    It appears that the RV082 is going to meet my needs. I placed an order for two of them.

    Part of the attraction to this product are these excellent forums and the knowledgeable members. ;-)

    Thanks

    Joel
     
  7. toofgib

    toofgib Network Guru Member

  8. SmallOffice

    SmallOffice Network Guru Member

    Troubles with PPTP Server

    Folks,

    We have just installed a new RV082. The process was fairly easy. We hit the following problems when testing the built-in PPTP servers:

    Will allow a connection to PPTP server.
    Will allow pinging in both directions.
    Will allow a NetMeeting connection.
    Will not allow file shares.
    Will not allow NetMeeting Desktop Sharing.

    We have searched the firewall logs with no success. We have upgraded the Firmware to 1.1.6.8. We have not tested any of the other VPN configurations.

    Any suggestions?

    Thanks
    Joel

    PS This router is replacing another router with a working PPTP server in a similar configuration.
     
  9. TazUk

    TazUk Network Guru Member

    You could try lowering the MTU on both routers from the default to something like 1400, see if that helps.
     
  10. toofgib

    toofgib Network Guru Member

    Hi SmallOffice!

    NetMeeting using dynamically assigned ports and the H.323 protocol to initiate the conferencing. From Microsoft's Help and Support Website:

    http://support.microsoft.com/defaul...port/kb/articles/Q158/6/23.asp&NoWebContent=1

    Check this out. It will tell you what ports to forward to enable NetMeeting to work. How many workstations are you trying to conference using NetMeeting? If it's just one, perhaps you'd also consider placing the one workstation in the DMZ so that all ports are available. This exposes this workstation to being compromised however.

    What OS are you using to run your network?
    Are you running a workgroup or a domain?
    If domain, have you enabled DHCP on the router by mistake causing conflict?
    If you're running XP-SP2, have you enabled File & Printer Sharing in Windows Firewall?
    Are you able to ping the workstation(s) that you are trying to file share? If so, do appropriate security and sharing priviledges in the OS exist for the file sharing to occur?
    On the workstation(s) you are trying to file share, have you made sure that the IP settings were not manually set from a previous network setting?
    Is the msnmsrvc service (or msnmsrvc.exe) on the workstation(s) running? You'll need this to enable Desktop Sharing. Have you considered using Remote Desktop which is a little more secure than running a service and allowing remote desktop sharing? Allowing NetMeeting Desktop sharing makes your workstation(s) vulnerable to DoS attack - make sure you apply security patch.

    Just threw out some ideas... Let me know if these work or not... I'll try and think of some more things for you to try! Good luck.
     
  11. toofgib

    toofgib Network Guru Member

    Sorry - that should be: mnmsrvc OR mnmsrvc.exe

    :D
     
  12. SmallOffice

    SmallOffice Network Guru Member

    Folks,

    I appreciate the helpful ideas and prompt responses.

    Here are my replys:

    You could try lowering the MTU on both routers from the default to something like 1400, see if that helps.

    Not attempted yet.

    NetMeeting using dynamically assigned ports and the H.323 protocol to initiate the conferencing.

    My understanding of NetMeeting and VPN's is that you do not need to specificially forward ports when running NetMeeeting over a VPN connection. The Ports are automatically forwarded. This type of configuration has worked for me in the past. In any case, let's try to get the file sharing working.

    What OS are you using to run your network?

    Windows XP Pro (SP1 and SP2) - Win Firewall is off (No entries in Security Events Log)

    Are you running a workgroup or a domain?

    Workgroup

    If you're running XP-SP2, have you enabled File & Printer Sharing in Windows Firewall?

    Win Firewall is off

    Are you able to ping the workstation(s) that you are trying to file share?

    Yes

    If so, do appropriate security and sharing priviledges in the OS exist for the file sharing to occur?

    Yes. (This worked with the previous router configuration.)

    On the workstation(s) you are trying to file share, have you made sure that the IP settings were not manually set from a previous network setting?

    I copied the previous networks setting exactly. In the previous network configuration the VPN network was on a separete subnet (i.e. 10.1.1.xx) insetad of being on the same subnet (i.e. 192.168.1.x). I understand that the RV082 cannot do a separate VPN subnet for the PPTP server.

    Is the msnmsrvc service (or msnmsrvc.exe) on the workstation(s) running? You'll need this to enable Desktop Sharing. Have you considered using Remote Desktop which is a little more secure than running a service and allowing remote desktop sharing? Allowing NetMeeting Desktop sharing makes your workstation(s) vulnerable to DoS attack - make sure you apply security patch.

    We proposed that we get back to this after getting the file sharing working.

    Here are some entries from the System Log on the RV082:

    Mar 31 11:00:03 2005 System Log VPN PPTP Incoming Connection from xx.xx.xx.xx, john

    Mar 31 11:00:03 2005 System Log [ppp201] : ip xx.xx.xx.1 mask 255.255.255.255 remote xx.xx.xx.202 gateway xx.xx.xx.202 flag 0x0 metric 50 mtu 1460 dns1 0.0.0.0 dns2 0.0.0.0

    Mar 31 11:00:03 2005 Failed to add rule File exists

    Mar 31 11:00:03 2005 Failed nat control SIOCADNAT - Illegal seek

    Mar 31 11:00:03 2005 Dynamic NAT configuration failed

    Mar 31 11:00:03 2005 NAT configuration failed

    * IP addresses have been replaced with xx

    We are seeing the same entries from two different remote computer users. It appears that the tunnel is being made, but the NAT configuration is not being updated. Has anyone else seen this problem?

    Do I need to enable UPnP functions?

    Thanks

    Joel
     
  13. toofgib

    toofgib Network Guru Member

  14. SmallOffice

    SmallOffice Network Guru Member

    Problem solved...

    Folks,

    We are not exactly sure what we changed to the router to make the PPTP server functionality to work, but it appears to be working now after a reboot.

    Thanks for your assistance.

    Joel
     

Share This Page