1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RV042 IPSEC VPN WITH ISA 2006 Behind NAT

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by bbgump, Oct 15, 2008.

  1. bbgump

    bbgump Addicted to LI Member

    Hi,
    I have an ISA 2006 firewall behind cisco router.
    On cisco router activate nat with 500 and 4500 udp translation to isa. The ISA ext. address is an private address.
    In other side there is an RV042. I want to setup site-to-site vpn connection betwen isa and linksys. After make the "proper" settings in rv042 log i see this error:
    We require peer to have ID 'CISCO_EXT_PUBLIC_ADDRESS', but peer declares 'ISA_EXT_private_ADDRESS' :(
    Anyone can help me how can i resolve this problem.
    Thanks.
     
  2. Sfor

    Sfor Network Guru Member

    This kind of G2G tunnel works correctly with RV042 on one side and WRV200 behind the NAT on the other side.

    But, the NAT router the WRV200 is hidden behind has to support IPSec passthrough. Does your Cisco router support IPSec passthrough?
     
  3. bbgump

    bbgump Addicted to LI Member

    On cisco router i'm using nat-t with propaget esp protocol on external interface. I think this mean IPSEC passthrough.
     
  4. Sfor

    Sfor Network Guru Member

    In my case the RV042 does have the NAT-T option turned on and the aggresive mode turned off.

    Also, the older firmware revisions did not work with the NAT traversal correctly. So, I had to upgrade the firmware. What firmware version do you have in the RV042?
     

Share This Page