help with linksys easy VPN and the RV082 router

[hibyte]

I have two RV082 router that have operational site to site connections. I am however having a difficult time in getting the RV082's to operate with the easy VPN utility.

During the configuration process, we established vpn groups, and defined vpn user access client ID's.. However still no luck. The client authenticates with the router, butall we can do is make web based access to applications.

Applications like ping, just doesn't work.

Are there any suggestions that anyone can provide.

 

[smah]

Are you using the QuickVPN client software?
[ol]
[li]Make sure the clients are using a different IP address range[/li]
[li]Be sure that you're using the most recent verion of QuickVPN client software (currently 1.0.38)[/li]
[li]Set username & password in the router's VPN/VPN Client Access section, not Client to Gateway section.[/li]
[li]Enable HTTPS in the router's Firewall/General section[/li]
[li]Use the client to connect to one of the router's WAN ip addresses[/li]
[/ol]

 

[hibyte]

Thanks for the fees back.. More info..

1.) the remote site is on a different logical network.
2.) we are using the latest version of Easy VPN..
3.) username & passwords were set first.
4.) https is enabled..
5.) we use the wan address to authenticate.

All of these items were addressed, bu tit stil is not working.

When we invoke the clinet, it authenticates with the router. A pop up states that we are connected, but we are unable to ping to any device on the LAAN side of teh router. If, however we try to get to a system using http, or https it works. It seemas as if it is a firewall restriction..

 

[smah]

I misunderstood. So you do get connected. How are you trying to ping - by name or IP? If you do not have an internal DNS server, normal name resolution will not occur across the VPN. If this is a name resolution problem, on the client computer, add an entry to the lmhosts file with the servername & lan IP address.

 

[hibyte]

More information..

I discovered that I can telnet to devices that are on the LAN. Therefore I am assuming that I can perform most tasks. I just can't ping. Do you think that because I am blocking icmp replies on the wan interface it also configures the lan interface the same way?

Since the RV082 doesn't issue my client a local IP address I am unable to use traditional NetBios, to see windows shares.. Is there a solution for that?

 

[smah]

The WAN interface setting should have any effect once the VPN is established. The pings could be blocked by any local software firewall on the lan machines.

You mean that you want to 'see' the shares in Network Places?. A DNS server on the network may help with this, but I'm not sure - I've never tested for that. You could always map drive letters to the shares, then you'd see them in Windows Explorer & My Computer.

 

[hibyte]

Ok,,, you raised two very interesting questions that I need to follow up.

Additional Info..

When my lap-top is on the same logical network, I can ping all devices. However, when I connect to the network by using the RV082, I am unable to ping any device.

However, if I invoke an application to that system, like ftp, or ssh, or any port 80 or 443 request, it works.. For some reason ping is just not working.

The other item is that it seems as if this Easy VPN utility is configured as a split tunnel. Since I am looking for a single tunnel utility, is there one that you can recomend?

 

[mmendes]

Ping is being blocked by your local desktop Windows XP firewall. Try truning it off before you connect via QuicVPN. However, as long as you have access to everything, do you really need ping to function?

 

[rflanary]

If you want to map drives with the netbios name. You will have to setup a WINS Server. NetBios is a non routable protocol.

I am interested in the VPN you have setup. Is it a LAN TO LAN VPN. So you have one VPN Connection to the office? Are you able to see all the computers together. Are you using NAT?

I have a CISCO VPN 3005 Concentrator and we are looking at taking some of our properties off Frame Relay and using VPN but I dont want the users to have to do anything different. Seemless. Am I on the right track with VPN?

Thanks

Robert