1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RVL 200 configuration problem to enable SSL VPN with firewall

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by tronegeden, Jan 19, 2009.

  1. tronegeden

    tronegeden Addicted to LI Member

    Hi guys,
    I have had hard times configuring a RVL 200 router.
    My goal is to set up SSL VPN tunnels with a RVL 200 router installed within my home network.

    My ISP (DSL) provided me with a modem/router.
    Put simply this device handles the Internet connection.
    It has a WAN IP adress and a LAN IP adress (192.168.0.1).
    It is my default gateway.

    Recently I bought a Linksys RVL200 router.
    This device is physically just behind the Internet Modem/router.
    The RVL200 WAN (Internet) port is linked to the Internet Modem/router LAN IP port.
    Its IP adress is the following 192.168.0.2 (static adress)

    On the other side, one of the Ethernet port of the RVL200 goes to a switch were all my internal network devices (printer, nas, pc, ...).
    The RVL200 is configured in router mode.

    I turned on the firewall with default rules. SSL vpn is enabled.
    Unfortunatly I was unbale to open a tunnel.
    It's has been a long time before I discovered that to be able to open a SSL tunnel I had to disable the firewall.

    Doing so the remote SSL connection works fine at once.
    Putting back the firewall on allowed me tu use SSL tunnel for 2 days but unfortunately the problem came back.
    I must disable the firewall.

    I tried to download the lastest firmawre version v1.1.9 .1 but it doesnt helps

    Who could help ?
    any clues ?

    Thank you very much in advance
     
  2. Ducati_Boy

    Ducati_Boy Addicted to LI Member

    It's possible that the fact you have the linksys router behind another router is causing an issue.

    First I would download the latest 1.1.10.1 firmware
    http://www.linksysinfo.org/forums/showthread.php?t=59681
    I've been using it for a couple months now and have been very pleased with it.

    Second, take your modem/router and put it into bridge mode. I'm sure your ISP can help you with that.

    Third turn off the static WAN port on your linksys router and put it back on DHCP and see if it pulls your IP address from the modem (now no longer a router). It should be a "weird" IP address, something like 71.52.125.8 or something weird. Or better yet, set the linksys router to default settings, and then you will need to go in and enable SSL VPN, but the rest of the defaults should be good.

    I would be a little "worried" about what's being passed through your modem/router so best bet is make your modem/router in to just a modem by putting it into bridge mode.
     
  3. tronegeden

    tronegeden Addicted to LI Member

    Firewall blocking SSL vpn on RVL200

    Thank you for your response.

    Unfortunately my modem/router is a modem router only and cannot be reconfigured as a bridge. A shame but I have no choice.

    Put simply it's a box providing triple play access (téléphone over dsl, television and Internet access). I could replace it by another device for a test purpose but I would be without phone and tv.

    to follow up I did downloaded the latest firmware you told me about and flashed the RVL200. I made a factory reset and then re configured the RVL200.
    I proceeded simply in leaving default setting as much as i could

    The configuration works as a gateway (it's a router anyway)
    I don't see actually difference.
    VPN ssl feature is turned on.
    Firewall is on too.

    and it works....

    Don't know how much time it will last

    Something i forgot to tell.

    In the Log menu I checked the box "enable e-mail alert"with the the Mail server to smtp.orange.fr (my ISP provider) and my mail adress. when clicking to save settings a pop up warning is on the screen

    It reads "please enter user name" !
    It seems the authentication needs to be provided

    what about that ?
     
  4. Ducati_Boy

    Ducati_Boy Addicted to LI Member

    I would be worried about the log email alert feature. I tried to enable it and I my throughput was cut in half for internet traffic. I turned it off and my speed went back to normal. Don't know what I did, but I figured I didn't need logging that much. :)

    But I don't remember exactly but what I set it up was the outgoing settings for an email account I had. So I would assume it's looking for your username and password for that email account (assuming the smtp server needs authentication).

    It's odd that it couldn't be configured as a bridge, but I have no experience with those triple play boxes. There is no requirement for there to be an Ethernet router in order to enable the box to also serve up phone and TV, but it's all based on what they want to do and let you do with that box. But as long as you pass the right ports to the RVL it should be ok... I just was thinking that would take it out of the equation.

    Hopefully it will keep working for you.
     

Share This Page