1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

VPN Setup Problem ( WAG54G V2 )

Discussion in 'Networking Issues' started by cmw1969, Oct 19, 2006.

  1. cmw1969

    cmw1969 Guest

    Hi

    I am new to setting up vpn's. I hav the following config

    Remote User with Greenbow client (broadband or dialup access)
    |
    |
    |
    WAG54G V2 with VPN setup as follows

    WAN Address = 220.x.x.x
    VPN tunnel name = test1
    local secure group= subnet 192.168.1.0,255.255.255.0
    local securoty gateway=pvc1
    remote secure group = any (just until i get it working)
    remote secure gateway = any (just until i get it working)
    encryption = 3des
    auth = sha
    key management =auto ike
    pfs =enabled
    pre shared key = test
    key life = 3600

    under advanced ipsec I have
    phase 1
    main mode ticked

    proposal 1
    encryption = 3des
    auth = sha
    group = 768 bit
    key life= 3600

    phase 2

    encryp = 3des
    auth = sha
    pfs = on
    group = 768 bit
    key life = 3600

    also netbios broadcast is on

    |
    |
    |
    Next I have a pc with 2 Nics and Norton internet security

    Nic 1 ( connected to linksys ) is 192.168.1.10

    Nic 2 ( connected to local network) is 192.168.10.10

    |
    |
    next I have my local network

    My remote laptop connects to the VPN via a broadband connection through a adsl modem
    My Greenbow config on my remote laptop is

    phase1 (auth)
    Tunnel name=test1
    interface=192.168.0.201
    remote gateway=220.x.x.x same as router
    pre shared key=test

    ike
    encryp=3des
    auth=sha
    group=dh768

    phase2 (ipsec)

    Tunnel name = test1
    vpn client address (192.168.0.201)

    address type subnet
    remote lan address 192.168.1.0
    subnet 255.255.255.0

    esp
    encryp = 3des
    auth = sha
    mode=tunnel
    pfs=dh768

    MY PROBLEMS ARE:

    WITH ALL THESE SETTINGS I CLICK ON OPEN TUNNEL AND THE TUNNEL OPENS ONCE ONLY AND AFTER I CLOSE THE TUNNEL I CANNOT GET IT TO OPEN AGAIN UNTIL THE ROUTER IS REBOOTED

    ALSO

    ONCE I HAVE THE TUNNEL OPENED I DONT SEEM TO BE ABLE TO DO ANYTHING.
    I HAVEN'T TRIED TURNING OFF NORTON INTERNET SECURITY YET TO SEE IF I CAN PING THE LOCAL ADDRESSES BEHIND THE ROUTER.


    ONCE I HAVE THE TUNNEL OPENED DOES THIS PUT ME ON THE LOCAL NETWORK BEHIND THE ROUTER ????

    DO I NEED TO SETUP ANY STATIC ROUTES OR SOMETHING LIKE THAT ON THE REMOTE MACHINES THAT ARE CONNECTING TO THE VPN ???

    ANY HELP WOULD BE GREATLY APPRECIATED

    Craig
     
  2. DocLarge

    DocLarge Super Moderator Staff Member Member

    Here's a greenbow setupguide that my help you a little:

    http://www.linksysinfo.org/portal/forums/showthread.php?t=48394

    First point: is there another router across the internet you're trying to connect? From what I'm seeing, it looks like you have a router configured for vpn that doesn't have a router to connect to on the opposite side.

    Second point: the way you've explained your setup, it's garbled; what is placed where? :)

    Sooooo,

    1) Where is the "physical location" of your routers?

    (Ex: Router A is at my job; Router B is at my house)

    2) What is handling the vpn connection?

    (Ex: RouterA is tunneling to RouterB or PC1 (which is behind RouterA) is just going to connect through RouterA to RouterB on the other side of the tunnel

    Additionally, if you have another linksys router, you don't need a pc with two NICs. The only time a PC with two NICs would be required is if "that PC" were going to be routing your internet connection "in place of" a router. In that scenario, you would have a modem with cat5 going to NIC #1 (your internet/"WAN" connection); NIC #2 would be your "LAN" connection were you would then place a switch "or" a router as your "uplink" (don't plug cat5 in the WAN port but instead into one of the four LAN ports to get connection to your gateway device (your router); if you look at your router that's connected to the internet, the two NIC configuration of your PC "is the exact same thing" as your router except the router comes with more ports and available functions.

    In short, if you're going to do vpn, place a router in two separate locations (again, as an example, one at work/friend's house, the other at your home) and configure them to talk to each other; your other choice is to configure a vpn client (such as greenbow) to connect from "behind" a router and to a router that has the ability to host vpn sessions.

    Let me know if this is overload...


    Jay
     

Share This Page