Cisco Rv042 VPN

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by David Dunn, Mar 23, 2012.

  1. David Dunn

    David Dunn Networkin' Nut Member

    Hi, I am a employed at a credit union with 17 branches. We have a mpls circuit connecting the branches to our main office. I setup DSL as a backup connection.
    I have 17 RV042 Cisco VPN Routers. I created a secure vpn tunnel for every branch to the main office. I made a delayed route in our main router to fail over to the VPN, in case the mpls failed.
    Almost everything works great except our ATM's are required to connect to a router at our main office to a different subnet than the tunnel is connecting, therefore not routing through the tunnel. I've tried creating another tunnel but only works with one of the branches, cause I get a conflict at the main office when I try a second tunnel with the same ip network. Also I tried routing all the traffic through the vpn by putting in the address subnet, at the branch site. But I can only do that for one branch, The Downtown Cisco won’t let me create another tunnel with that setting.
    Any help would be appreciated​
  2. Sfor

    Sfor Network Guru Member

    First: Wwhat version of RV042 are you using. The v1 is quite different from v3, when it comes to the backup tunnel abilities.

    Second: I have serious problems understanding, your network topology. I see no reason for the addressing conflict between Remote LAN and ISP to happen, in a plain situation.

    To create a backup tunnel with the same remole LAN adress in RV042 v1, you have to disable the main tunnel first. Then to define the backup tunnel, then to enable the main tunnel. All these steps are necesary to go around the protection blocking definition of two tunnels with the same remote lan address space.
  3. David Dunn

    David Dunn Networkin' Nut Member

    I am using RV042 version one as the main that has all the tunnels setup. Rv042 v3 for the remotes
    I've attached a elementry drawing of the topology
    My main network is running on MPLS, I am using the the dsl just for backup, and that works good. The only thing that does not work is the ATM's when the dsl is active, It trys to communicate with the visa/dps router on the other side of the firewall. It is a 10.222.x.x network and if I try trace routing to that network from the branch side, it trys to go out the internet, not the tunnel.

  4. Sfor

    Sfor Network Guru Member

    I'm sorry, but the construction of this network does not seem to be understandable for me. The MPLS is something I do have little knowledge of.

    In any case. RV042 was designed to work as dual WAN router with smart link backup system. The idea is to set RV042 as a gateway, while the traffic is sent through WAN1 or WAN2 VPN, depending on what WAN is currently working. This system seems to be working quite well with the RV042 v1. But, I had some serious issues with RV042 v3, trying to get it done with RV082 v1 on the other end.

    So, which version of RV042 is on which end? It could be important, since the new version of RV042 does not seem to be doing well with its network service detection functions.
  5. David Dunn

    David Dunn Networkin' Nut Member

    RV042 v1 is on the downtown side and the RV042 v3 is on the branch side
  6. Sfor

    Sfor Network Guru Member

    Do you want to pass the traffic to the APN through VPN to the main office RV042, then to go out through the WAN port in the main office? If so it is not possible by RV042 design. The APN would have to be by the LAN side of the main office RV042. It is not possible to access internet remotely through RV042 VPN.

    The only solution would be to use a proxy server in the main office RV042 LAN address space, in such a case.
