1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WRV200 to WRV200 VPN tunnel is OK, but the routers think it isn't!

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by Baro, Apr 29, 2007.

  1. Baro

    Baro LI Guru Member

    I set up an IPSec VPN tunnel between two WRV200. I can ping and print between the two networks, but both WRV200s think that the tunnel is in the "T" state :

    "T: Try to connect to Remote Peer."

    I'm running 1.0.29 on both.

    The configuration looks like this on both sides:
    Key Exchange Method: AUTO
    Operation Mode: MAIN
    ISAKMP Encryption Method: 3DES
    ISAKMP Authentication Method: MD5
    ISAKMP DH Group: Group2
    ISAKMP Key Lifetime (s): 28800
    PFS: Disabled
    IPSec Encryption Method: 3DES
    IPSec Authentication Method: MD5
    IPSec DH Group: The group is the same as ISAKMP.
    IPSec Key Lifetime(s): 3600

    Did I miss anything?
    Thanks for your help.
     
  2. Sfor

    Sfor Network Guru Member

    I noticed, the tunnels are entering T state after a reboot or a CFG file load. The IPSec log does not work correctly, as well. But, I was not checking if the tunnel works, in such a case.

    I'll check it now......

    No it does not work, after a reset. But, the tunnel is between a 1.0.32.2 and a 1.0.29 WRV200 versions.
     

Share This Page