VPN between Tiger Mac and WRV200?

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by KRAFTiMAC, Jul 24, 2006.


    KRAFTiMAC LI Guru Member

    Sunday, July 23, 2006

    Hello, All.

    I just bought the WRV200, and I upgraded the firmware to 1.0.12.

    I'd like to use the WRV200's VPN features to connect from an Apple MacBook running Tiger (Mac OS X version 10.4.7).
    Tiger has a built-in VPN client that supports L2TP over IPSec.

    Both Apple and LinkSys say that an L2TP/IPSec connection can be established, but neither offer instructions.
    So here I am. Reaching out to this community to help me work on a solution.

    Here's what I've done so far.

    On the WRV200, I created a tunnel:
    [I suppose that the following are typical settings for a tunnel that will accommodate a remote peer logging on from a public wireless hotspot.]

    NAT-Traversal = Enabled
    Local Secure Group = [Entire] Subnet
    Remote Secure Group = Any
    Remote Secure Gateway = Any
    Key Management all options = Auto
    Pre-shared Key = <an 8 to 12 character string>
    PFS [Perfect Forward Secrecy] = Enabled
    Global NAT-Traversal = Enabled

    On the Mac, I'm not sure what to do, but I tried creating a VPN configuration as follows:

    Method = L2TP over IPSec
    Server Address = <WAN IP address of WRV200; actually, I use dyndns.org>
    Account Name = <I don't know what this should be. The tunnel name from above, or blank? In the meantime, I've left it blank>
    Password = <I imagine this is the same as the Pre-Shared Key from above>

    Should the above set up work for me?
    Am I missing something?
    Is there a simpler way?
    Must I connect my MacBook to another network to test the connection?
    Or can I set up a simulated connection directly between the MacBook and WRV200?

    I'm a VPN newbie. Thanks for your understanding.

  2. eric_stewart

    eric_stewart Super Moderator Staff Member Member

    Sorry to be the bearer of bad news but it won't work. The WRV200 supports IPSec VPNs only. L2TP/IPSec will not work *to* the WRV200, though you should be able to connect *through* the WRV200 to such a server by setting up VPN Passthrough.

    The Linksys QuickVPN client (Windows only I'm afraid) will allow you to create a client-initiated VPN to the WRV200.

    I'm pretty sure the Linksys techs misunderstood you. You're right about the documentation...it's sparse to say the least.

    (been there, done that)

    KRAFTiMAC LI Guru Member

    Hey, Eric.

    Yeah. I learned about the WRV200's lack of L2TP from a second LinkSys tech.
    So I took the WRV200 back and got a refund--bummer.

    On the LinkSys forums, one user suggested that I can turn off L2TP in the Mac OS's built-in VPN client by hacking the configuration files. However, I don't really want to hack my MacBook, it's so pretty and new.
    Although I just might do it if I get desperate enough.

    In the meantime, I'm hoping that LinkSys might soon add L2TP to a firmware upgrade.

  4. donwest

    donwest Guest


    KRAFTiMAC LI Guru Member

    Hi. Thanks, Don.

    I know about Equinox's "VPN Tracker" software, and I understand that it's very good (plus it's available as a Universal binary and so it can run natively on Intel Macs), but I'd rather not spend [on top of a router] USD $89 on VPN client software if my Mac already has a client built-in.

    I'll either wait for LinkSys to add layer-two security to the WRV200, or I'll find a competing product that works.

    Thanks again.

  6. TazUk

    TazUk Network Guru Member

    I think that's unlikely :indifferent:

    That would be your best bet :wink1:

    KRAFTiMAC LI Guru Member

    Hi, Taz.

    I've been shopping around.

    To LinkSys's credit, they're tech support is far better than their competition's.

    Oh, well. The competition has Layer-two security, and so now I'm wrestling with them to demonstrate that it works *before* I buy their product.

    KRAFTiMAC w/o L2TP
  8. eric_stewart

    eric_stewart Super Moderator Staff Member Member

    Does the MAC have a PPTP VPN Client? If so, you could use DD-WRT on a WRT54G/S/L or a WRT300N (yes, it supports this box now, too) and setup a PPTP server on them. Since the MAC OS is based on Unix (a Berkely Sockets Distribution) it should support it...even if you have to install your own in a shell.

    Just thoughts.....

    Too bad the RVL200 won't work for you. It supports SSL VPNs, but unfortunately only in a Window$ environment.

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice