1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need to tunnel all traffic through an RV042.

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by cpsavage, Dec 13, 2006.

  1. cpsavage

    cpsavage LI Guru Member

    I have 2 RV042's I'm trying to setup that will take all traffic and encrypt it, not just local traffic. I work for a school and we're testing VPN to see if we can use that as an alternative to a dedicated T-1 that we're currently using. I need to send all traffic through the VPN tunnel in order to filter the web traffic through our internet filter that exists at the main office. I setup the tunnels to reflect a 0.0.0.0/0.0.0.0 network on both sides, but the tunnels won't come up. Is this something the linksys is capable of doing? Other VPN routers do this, so I assumed we could do this with this router.

    Any ideas would be greatly appreciated. I am running the latest firmware on both routers. 1.3.7.10.
     
  2. ifican

    ifican Network Guru Member

    This is asked in such a way that it sounds like you want to get rid of the T-1 and just use vpn. In order to use a vpn you will need a "dedicated" internet isp. Does'nt have to be a t-1 but it will have to be a connection. Now with this connection are you not wanting to send any information out to the internet outside of the tunnel? You want to send 100% of traffic across the tunnel and if the tunnel is not up no one gets access?
     
  3. cpsavage

    cpsavage LI Guru Member

    No. We will have a T-1 as back up. But that is not the issue. I do VPN's on Cisco equipment all day long for another company. I know on those we can tunnel only traffic destined for a certain network or we can tunnel all traffic. It would appear to me that this device does split tunneling. That is all traffic going to the tunneled network goes across the VPN and the internet traffic goes out to the internet. I want to turn this off and have all of the traffic go into the tunnel. Does anyone know if this is possible?
     
  4. Toxic

    Toxic Administrator Staff Member

    can you not route all traffic to use the tunnel's remote gateway?
     
  5. ifican

    ifican Network Guru Member

    Toxic its a good point, however the machine would need to be in the same network as the other side to make it easy, and we know that cant happen. I suppose a route statement could be added to the machine as a default-network or default-route to send all 0.0.0.0 traffic to the other side, though all of my experience with linksys products dictates that there is yet no device that like to receive traffic via vpn on the same interface it sends that traffic back out to the internet and then back across the tunnel. If that makes any sense.
     
  6. TazUk

    TazUk Network Guru Member

    The WRV54G had the option of selecting VPN Tunnel or VPN Gateway, the gateway option was meant to force all traffic down the tunnel. I never tested whether it worked or not and it was removed in the later firmware.
     
  7. heidnerd

    heidnerd LI Guru Member

    Why not add a firewall rule that allows ipsec traffic, but blocks all other traffic? And in the firewall rules you could specify the ip address of the other vpn server... blocking others attempting to connect...
     

Share This Page