1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RVS4000 QuickVPN connection problem

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by vikingwarrior, Oct 24, 2006.

  1. vikingwarrior

    vikingwarrior LI Guru Member

    QuickVPN connection hangs at "Verifying Network" but, I can still access remote LAN (session stays up until I hit "ok" on "remote gateway not responding" message". So, technically it works...but, not like it's supposed to.

    I have no VPN tunnel settings. IPSec passthrough enabled. PPTP and L2TP are enabled as well on the VPN Passthrough page. IPS is on.

    Below are some of the packets captured during a connect attempt using QuickVPN. I'm not really sure what some of it means, but if anyone else does, please let me know what might be preventing a full "connect" via QuickVPN.

    Packet number: 1
    Timestamp: 14:50:26.229
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: TCP->Https
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 2954
    Port destination: 443
    Seq: 2053884894
    Ack: 0
    Packet length: 62

    Packet number: 2
    Timestamp: 14:50:26.259
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: 00:30:84:31:98:3E
    Frame: IP
    Protocol: TCP->Https
    IP Source: x.x.x.78
    IP Destination: 10.157.37.100
    Port source: 443
    Port destination: 2954
    Seq: 1363237778
    Ack: 2053884895
    Packet length: 62

    This continues for a while.... then...

    Packet number: 19
    Timestamp: 14:50:41.331
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: UDP->Bootps
    IP Source: 10.157.37.100
    IP Destination: 10.157.37.1
    Port source: 68
    Port destination: 67
    Seq: 0
    Ack: 0
    Packet length: 342

    Then....

    Packet number: 20
    Timestamp: 14:50:41.341
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: FF:FF:FF:FF:FF:FF
    Frame: IP
    Protocol: UDP->Bootpc
    IP Source: 10.157.37.1
    IP Destination: 255.255.255.255
    Port source: 67
    Port destination: 68
    Seq: 0
    Ack: 0
    Packet length: 590

    and then....

    Packet number: 21
    Timestamp: 14:50:44.436
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: UDP->Isakmp
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 500
    Port destination: 500
    Seq: 0
    Ack: 0
    Packet length: 258

    Packet number: 22
    Timestamp: 14:50:44.466
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: 00:30:84:31:98:3E
    Frame: IP
    Protocol: UDP->Isakmp
    IP Source: x.x.x.78
    IP Destination: 10.157.37.100
    Port source: 500
    Port destination: 500
    Seq: 0
    Ack: 0
    Packet length: 162

    This goes back and forth for few packets...then...

    Packet number: 29
    Timestamp: 14:50:45.087
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: ESP
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 0
    Port destination: 0
    Seq: 0
    Ack: 0
    Packet length: 102

    Packet number: 30
    Timestamp: 14:50:45.097
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: UDP->Isakmp
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 500
    Port destination: 500
    Seq: 0
    Ack: 0
    Packet length: 94

    Packet number: 31
    Timestamp: 14:50:45.437
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: ESP
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 0
    Port destination: 0
    Seq: 0
    Ack: 0
    Packet length: 102

    Quite a few of these packets.... then...

    Packet number: 69
    Timestamp: 14:52:50.297
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: FF:FF:FF:FF:FF:FF
    Frame: IP
    Protocol: UDP->Netbios-dgm
    IP Source: 10.157.37.100
    IP Destination: 10.157.37.255
    Port source: 138
    Port destination: 138
    Seq: 0
    Ack: 0
    Packet length: 243

    and back to....

    Packet number: 70
    Timestamp: 14:52:50.907
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: ESP
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 0
    Port destination: 0
    Seq: 0
    Ack: 0
    Packet length: 102

    This exact packet repeats for quite awhile....with no apparent response from the remote router...

    Then...

    Packet number: 83
    Timestamp: 14:53:33.539
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: FF:FF:FF:FF:FF:FF
    Frame: IP
    Protocol: UDP->Netbios-ns
    IP Source: 10.157.37.100
    IP Destination: 10.157.37.255
    Port source: 137
    Port destination: 137
    Seq: 0
    Ack: 0
    Packet length: 92

    and back to....

    Packet number: 85
    Timestamp: 14:53:34.460
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: ESP
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 0
    Port destination: 0
    Seq: 0
    Ack: 0
    Packet length: 102

    Packet number: 86
    Timestamp: 14:53:35.031
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: FF:FF:FF:FF:FF:FF
    Frame: IP
    Protocol: UDP->Netbios-ns
    IP Source: 10.157.37.100
    IP Destination: 10.157.37.255
    Port source: 137
    Port destination: 137
    Seq: 0
    Ack: 0
    Packet length: 92

    Packet number: 87
    Timestamp: 14:53:37.965
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: ESP
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 0
    Port destination: 0
    Seq: 0
    Ack: 0
    Packet length: 102

    This packet repeats for a few....then...

    Packet number: 95
    Timestamp: 14:55:05.541
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: UDP->Domain
    IP Source: 10.157.37.100
    IP Destination: x.x.x.162 <-------- my DNS server
    Port source: 2955
    Port destination: 53
    Seq: 0
    Ack: 0
    Packet length: 76

    Packet number: 96
    Timestamp: 14:55:05.561
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: 00:30:84:31:98:3E
    Frame: IP
    Protocol: UDP->Domain
    IP Source: x.x.x.162 <-------- my DNS server
    IP Destination: 10.157.37.100
    Port source: 53
    Port destination: 2955
    Seq: 0
    Ack: 0
    Packet length: 278

    This goes back and forth for a bit and then.... a strange one:

    Packet number: 101
    Timestamp: 14:55:11.640
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: TCP->Http
    IP Source: 10.157.37.100
    IP Destination: 81.52.202.118 <------- Not my WAN or remote WAN
    Port source: 2958
    Port destination: 80
    Seq: 4036735765
    Ack: 0
    Packet length: 62

    Packet number: 102
    Timestamp: 14:55:11.650
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: 00:30:84:31:98:3E
    Frame: IP
    Protocol: TCP->Http
    IP Source: 81.52.202.118 <------- Not my WAN or remote WAN
    IP Destination: 10.157.37.100
    Port source: 80
    Port destination: 2958
    Seq: 1663787155
    Ack: 4036735766
    Packet length: 62

    Apparently the 81. address is owned by RIPE Network Coordination Centre in Amsterdam.... Huh? not sure where it came from, but it was in the capture.
    It continues for awhile with packets like the above....

    Then, just before the QuickVPN client gives the "remote gateway not responding" message.......

    Packet number: 140
    Timestamp: 14:55:52.238
    MAC Source: 00:30:84:31:98:3E
    MAC Destination: 00:0F:66:92:F4:30
    Frame: IP
    Protocol: UDP->Isakmp
    IP Source: 10.157.37.100
    IP Destination: x.x.x.78
    Port source: 500
    Port destination: 500
    Seq: 0
    Ack: 0
    Packet length: 110

    and

    Packet number: 141
    Timestamp: 14:55:52.258
    MAC Source: 00:0F:66:92:F4:30
    MAC Destination: 00:30:84:31:98:3E
    Frame: IP
    Protocol: UDP->Isakmp
    IP Source: x.x.x.78
    IP Destination: 10.157.37.100
    Port source: 500
    Port destination: 500
    Seq: 0
    Ack: 0
    Packet length: 110

    Anyway....that's the end of the capture. If I don't hit the "OK" button on the "remote gateway not responding message" I am able to keep my session up and browse the remote LAN by searching on IP address of the remote computers. I can transfer files and access shared folders.... although it is a bit slow at times.

    Any ideas?

    Thanks,

    Sam
     

Share This Page