Discussion in 'Cisco Small Business Routers and VPN Solutions' started by netec, Aug 2, 2007.

    I am hoping that someone would be kind enough to add a tutorial for the RV082's. I purchased two and would like to know what the best configuration would be to connect the two to complete a hardware to hardware vpn tunnel.


    I will make a $20 donation for a great tutorial that works
    Trust me, your not the first to ask this question. I am sure that there is already a tutorial out there somewhere. I would probably just tell you, but I have never had an rv082 so my vpn skills are limited to openvpn, and MS pptp connections.
    Thank you for the response, if you find any tutorials please push them my way. I am in need of a tutorial that works with these units as stated, and I just want it to work without playing with the variables in settings....

    feel free to comment on this emulator
    Well a vpn is a vpn is a vpn. If you have setup an ipsec vpn on anything you have the understanding of how to make it work. There are several tutorials around this site if you look around and DocLarge even have a video presentation somewhere. Its not RV082 specific but all the components are there. Basically all setting needs to match on both sides except for the trusted networks which have to be different on either side i.e. cant be on both internal networks, you will have to change one to something else.
    Understood, but one thing that you mentioned throws me
    "Basically all setting needs to match on both sides except for the trusted networks which have to be different on either side i.e. cant be on both internal networks, you will have to change one to something else"

    I understand that the 3rd octet needs to change, but does the subnet need to be different aswell?

    my plans were to use the at the main site as it sits now
    and create the new site with at the remote site, but I was thinking that they could both be on the subnet can I do it in this manner?

    Thank you for your time
    Wow Thank You so much,,,, Which do you think I should use for the simplest RV082 to RV082, using IP to IP?

    Donation will be made for this help:biggrin:
    Your subnets can be the same as long as they do not overlap via IP. Your proposed networks will work just fine.
    That depends on whether static IPs will be used on each end or will there be dynamic IPs in the mix?

    Edit: The whole purpose of this paper was to test various IPSec configurations with the RV082. Under the subset of gateway to gateway scenarios if you compare the "Function Testing" category in the scenarios, you will see that they have varied some aspect of the set up for each scenario. You have to pick the scenario that best matches what you want to do or can do with your two routers.
    Yes they are static IP's.

    Thanks for your help.
    Then I think Scenario 1 would be your choice. Many of the other scenarios test the use of FQDNs and USER_FQDNs in addition to the static IP. I'm not sure what advantage this would bring to the set ups? Perhaps some increased security? A strong (read long and unguessable) PSK would give plenty of security.

    Note these are only the basic settings in each scenario. In addition to those settings, you will probably also want to enable Keep-Alive and Dead Peer Detection under the Advanced button in order to have the routers automatically rebuild the tunnel should it ever go down.
    Phenomenal. I will be building the first site this saturday and the other site sunday... I will report on my findings on Monday... Unless I have trouble then I may reply to this on Sunday when I try to connect the two....

    Thanks again I will report wih my findings either way on Monday, and will donate at the same time.

    Have great one folks, and again many thanks.
    If the site locations are widely separated so that there is much traveling between, it might be advisable to set up the routers before hand in the same building.

    Connect the primary WANs of each RV082 with a switch to mimic the "internet". Give each router's WAN a static IP in the same subnet so that traffic will pass between the two through your switch "internet". Then you can configure the VPN settings on each router. Don't be surprised if your first tunnel doesn't come on the first try. It is easy to flub a setting or PSK value and VPNs are not at all forgiving of tiny errors. :)

    It is much easier to compare settings and correct them if the routers are in the same room, than if across town or across the country. Once you get the tunnel working, you can then take the routers to their final sites and set the actual static IPs into them before you connect then to the the modems.
