1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need serious help. VPN drops every few days and causes havoc

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by ed001, Mar 23, 2006.

  1. ed001

    ed001 Network Guru Member

    I am using 3 WRV54g (rev.2 firmware 2.37.1) routers at 3 different locations. All three locations have static (wan) ip addresses on Verizon DSL using Westell wirespeed modems. The VPN settings are as listed below. The problem is the application that I use requires constant connection to the server (15 second update interval). When the VPN drops the application throws XP into a hissy fit.
    The symptoms are:
    1. VPN seems to disconnect on one end only. (I can quick vpn into one end and see the tunnel is "connected").
    2. Cannot use quick VPN to connect remotely.
    3. Cannot login to the GUI locally (Page not found)
    4. Only fix I can find is a reboot of the router.

    Once I reboot, the remote access, local access and VPN tunnel all come back. Doesn't seem like a big deal except for the fact that it takes me 3 to 4 minutes of phone work to get the employees running the application again, ie ctrl, alt, del > task manager, etc.

    Here's the tunnel details. Any help would be great. Thanks...
    IPsec Passthrough enabled
    PPTP Passthrough enabled
    L2TP Passthrough disabled

    Select Tunnel name Entry: "Tunnel # + name"
    VPN Tunnel enabled
    VPN gateway disabled
    Tunnel name: "tunnel name"
    Local secure Group
    Subnet
    ip address: 10.125.234.0
    mask: 255.255.255.0
    Remote Secure Group:
    Subnet
    ip address: 10.126.234.0
    mask: 255.255.255.0
    Remote secure Gateway:
    IP address
    68.x.x.x
    Encryption: 3des
    Authentication: SHA1

    Key Exchange: Auto IKE
    PFS: enabled
    RSA unchecked
    Key lifetime 3600

    Advanced VPN setup
    phase 1
    operation mode: main
    encryption: 3des
    Authentication: SHA1
    Group: 1024
    Key Lifetime: 3600

    Phase 2
    Encryption: 3des (can't change this option)
    Authentication: MD5 (can't change this option)
    Group 1024
    Key lifetime: 3600

    Other options:
    checked: NetBIOS broadcast
    unchecked: Anti-replay
    unchecked: keep alive
    unchecked: if ike failed ....

    Thanks again in advance for any help.
     
  2. DocLarge

    DocLarge Super Moderator Staff Member Member

    Your problem is the firmware (2.37.1) from what I can see because there doesn't appear to be anything wrong with your configuration at firest glance. Anyway, this release was broken from the time it hit the streets...

    You've probably noticed that the settings for encryption/algorithm don't synchronize properly in phase I and phase II of the setup.

    You need to use a more recent "beta" other than that broken official release version you have. I use beta 2.37.13, and my tunnels run for weeks on end without requiring "any" reboot. Others use 2.38, 2.38.6, and 2.38.9. Personally, I'm sticking with 2.37.13 because I've had "0" problems since the moment I loaded it about 9 months ago.

    If you want it, let me know and I'll see if toxic will upload it the download area...

    As with all beta's, I can't guarantee it will help (or tear shit up) but in my case, I've never had a bad flash with 2.37.13.

    Doc
     
  3. ed001

    ed001 Network Guru Member

    Great!!!

    I would like to try 2.37.13
    1. Where can I get it?
    2. Can I save the router's settings then flash without having to set them up by hand all over again?

    Thanks Doc.
     
  4. DocLarge

    DocLarge Super Moderator Staff Member Member

    "I" personally have never bother trying to save a config "in case" there was a configuration error hiding in the background. So, I always retype the settings so I know exactly what's going in.

    I'll email toxic and see about getting 2.37.13 on the site because there is no place I can think of that you can get it other than pestering linksys support for it. In the meantime, PM me with your email address and I'll see if I can email it to you.

    Doc
     
  5. TazUk

    TazUk Network Guru Member

    I've never had any luck with saving the config, the router goes back to factory defaults after a firmware upgrade and then restoring the old config does nothing.
     

Share This Page