1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

permanent VPN windows 2003 - router

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by tineln, Jan 28, 2008.

  1. tineln

    tineln LI Guru Member

    Hello,
    Scenario:
    - one win2003 server with 1 NIC with public IP, publicIP1 and one NIC for the LAN, with intIP1.
    - one Linksys Wrvs4400N with a public IP, publicIP2 and behind a PC with intIP2.

    I am trying to establish a permanent VPN between the win 2003 server and the Linksys router, but it seems that I miss something. Any ideas?

    On the 2003 server there is already a permanent VPN connection towards another 2003 server.
    I have followed this link from microsoft:
    http://support.microsoft.com/kb/816514 on the 2003 server and on the Linksys, I have configured it also.
    Thankx!
     
  2. ifican

    ifican Network Guru Member

    Are the server and the router on the same link, internet connection?
     
  3. tineln

    tineln LI Guru Member

    Hi ifican,
    No, I am talking about 2 different cities. On one side there is the windows 2003 server with the 2 NICs, one of whom having a public IP (static) and on the other side, in another city, there is the Linksys router with a static public IP.
     
  4. DocLarge

    DocLarge Super Moderator Staff Member Member

    What's the configuration of your 2003 Server "and" the Linksys router? Change your IP's if need be if you post your config; posting this information will allow better review of your problem :)
     
  5. tineln

    tineln LI Guru Member

    Hi DocLarge!
    It`s becoming annoying!:)
    For the 2003 server, I have a public IP, publicIP1 and a second NIC with the internal 10.x.x.x IP. For the router, there is a public IP publicIP2 and behind it there is a LAN 192.x.x.x.
    I was wondering if there is somewhere a link for a doc with this kind of config: permanent VPN windows server 2003-to-router (no matter the type of the router as long as it support IPSec)
    Thank you!
     
  6. tineln

    tineln LI Guru Member

    I forgot: the goal - to be able to ping from 10.x.x.x the servers in 192.x.x.x and viceverse, with the real adresses. Example: From 10.1.1.1 do a ping to 192.168.1.1 and to work :)
     
  7. DocLarge

    DocLarge Super Moderator Staff Member Member

    I believe I've seen such a document on the netgear website. Let me look around and see. I'm "sure" someone has done this before...
     
  8. tineln

    tineln LI Guru Member

    any news, any luck, DocLarge?
     
  9. tineln

    tineln LI Guru Member

    Hi again,
    it seems that i advanced a little bit. I can not yet do the connection starting form the windwos 2003 server, but it`s a little bit better from the Linksys router. However, eventhough on the router page it shows connected, I can not ping the internal IP and in the logs, on the router, i have:
    Feb 4 14:21:06 - [VPN Log]: "name" #4: STATE_QUICK_I2: sent QI2, IPsec SA established {ESP=>0xb6af0579 <0x60962f38 xfrm=3DES_0-HMAC_SHA1 NATD=none DPD=none}
    Feb 4 14:21:06 - [VPN Log]: "name" #4: IKE message has the Commit Flag set but Pluto doesn't implement this feature; ignoring flag
    Feb 4 14:21:06 - [VPN Log]: "name" #4: message ignored because it contains an unexpected payload type (ISAKMP_NEXT_HASH)
    Feb 4 14:21:06 - [VPN Log]: "name" #4: sending encrypted notification INVALID_PAYLOAD_TYPE to IPaddress

    ........
     

Share This Page