Gateway to Gateway VPN Issues

Hello to all,
I want to setup a site to site VPN using RV016 for the Head Office and RV042G for the branch offices.
I managed to configure the VPN using cisco tutorials. Status on both routers shows connected.
However cannot ping remote IPs and access remote resources. Your help will be highly appreciated.
Thank You

i suggest that you change the local ip address of the RVL200 to 192.168.2.1 instead of using 192.168.0.1. please check also the encryption and the security on both ends of the tunnel. make sure that you use the same encryption and same authentication. you may also want to start with low encryption and security to make sure that it is not the problem.

Similar Messages

Can't find the option to disable "Default Gateway" of a VPN.

Whenever I try to go to the "Networking" tab of a VPN connection. I get the following error.: "Unable to allow the editing of networking components at this time because they are currently being modified elsewhere" This prevents me from
disabling the default gateway of a VPN. Any help is greatly appreciated!

Whenever I try to go to the "Networking" tab of a VPN connection. I get the following error.: "Unable to allow the editing of networking components at this time because they are currently being modified elsewhere" This prevents
me from disabling the default gateway of a VPN. Any help is greatly appreciated!
I have got the same issue using Windows 10 Insider Preview build 10074, please could somebody show us an alternative method to disable the use of the remote default gateway through a VPN ? Thanks.
Edit - From that post : https://social.technet.microsoft.com/Forums/en-US/709f9e02-d903-41a8-b5f8-d0f46d4685bf/how-to-disable-default-gateway-remote-in-vpm-with-windows-10-tp-10049?forum=WinPreview2014General
it seems to be possible to use a PowerShell command to modify this option, by setting "RouteIPv4TrafficOverRAS" to "False" instead of "True" (which is WIndows Default), but I do not know how to do that. Could somebody explain

RV042 Gateway to Gateway VPN Losing network connection

I have an branch office RV042 version 1 connected via ADSL with less that 5 workstations (Vista - Win7 - Outlook) and VOIP/SIP to our main office RV042 version 4 via Charter Cable Modem...Tunnel is Gateway to gateway. We are experience random disconnects to our Windows servers in main office through the tunnel. We have isolated it down to the VPN tunnel. Our internet connections have tested out good. Our main server is a SBS 2008. Is there any issue with the Tunnel between two RV042's on different versions...

Hello MP:
Thanks for the reply. I did doublecheck both routers and all the netmask are 255.255.255.0. On the insides of both LAN's, I can ping devices. On the routers, I can ping each other, but not any devices inside the Remote LAN.
Most of the devices on each LAN are "digital radios" so they don't have any antivirus or firewall software. In addition to the radios, there are 2 computers on each LAN, each with the firewalls off and we disabled the AV software.
Both RV042's are running version 4.0.0.07-tm that was dated Aug 19 2010.
These were bought from the radio vendor and their tech support says the current config should work.
Definately a head scratcher.
...DOUG
KD4MOJ

RV016 / Windos Server 2012 - Gateway to Gateway Vpn.

We have two sites and have on one site (main one) windows 2012 server as the DC on the network and it is also a gateway through which employees connect to the company network. On our other site we do not have servers set up and e had purchased RV016 hoping we could set up a continious gateway to gateway vpn connection. We had so far no luck on getting it to work, which begs the question - is it possible? Thank you.

tekliu,
I actually found and tried this solution last night, but below is how my routing table looks on my RV042. When I do a tracert to www.google.com or whatever I can see that the traffic basically hits my router then out through the Comcast modem. If I do anything on the main office subnet 172.16.1.0 then I can see it hit both routers.
Should I maybe reset the router to default and do this from the start? As you can see below all 0.0.0.0 traffic is set to go out through the Comcast gateway 74.94.253.10.
Routing Table Entry List
Destination IP Address
Subnet Mask
Default Gateway
Hop Count
Interface
74.94.253.8
255.255.255.252
40
ixp1
74.94.253.8
255.255.255.252
45
ipsec0
192.168.3.0
255.255.255.0
50
ixp0
192.168.2.0
255.255.255.0
74.94.253.10
10
ipsec0
192.168.2.0
255.255.255.0
50
ixp0
172.16.1.0
255.255.255.0
50
ixp0
default
0.0.0.0
74.94.253.10
40
ixp1
I can send you all of my config data when if you need it.
Thanks!

RV016 Gateway to Gateway VPN Internet Traffic

I have a RV016 router in place that has numerous Gateway to Gateway VPNs connected to various sites over Comcast Cable. I would like to funnel all traffic through the RV016, but I am only seeing the tunnel traffic going between each.
I think I saw some posts eluding to the fact that since the RV016 only deals with layer 3 that this is impossible. What if I added a route to each of my workstations that router all 0.0.0.0 traffic through the RV016 router. Would this work even if it's really ugly?
What I am trying to avoid is having an open Internet connection at all of my sites. I would rather be able to control it here at the main office's RV016.
Thanks in advance!

tekliu,
I actually found and tried this solution last night, but below is how my routing table looks on my RV042. When I do a tracert to www.google.com or whatever I can see that the traffic basically hits my router then out through the Comcast modem. If I do anything on the main office subnet 172.16.1.0 then I can see it hit both routers.
Should I maybe reset the router to default and do this from the start? As you can see below all 0.0.0.0 traffic is set to go out through the Comcast gateway 74.94.253.10.
Routing Table Entry List
Destination IP Address
Subnet Mask
Default Gateway
Hop Count
Interface
74.94.253.8
255.255.255.252
40
ixp1
74.94.253.8
255.255.255.252
45
ipsec0
192.168.3.0
255.255.255.0
50
ixp0
192.168.2.0
255.255.255.0
74.94.253.10
10
ipsec0
192.168.2.0
255.255.255.0
50
ixp0
172.16.1.0
255.255.255.0
50
ixp0
default
0.0.0.0
74.94.253.10
40
ixp1
I can send you all of my config data when if you need it.
Thanks!

Any ideas how to better troubleshoot VPN issue?

Hi,
I've recently upgraded my WLAN router to a brand new AVM FRITZ!Box WLAN 7390, in part for its VPN capabilities.
So far, I've been unable to create a working connection.
AVM's VPN is based on Cisco IPSec, and they provide a step-by-step procedure on how configure a Mac-based VPN connection (http://www.avm.de/de/Service/Service-Portale/Service-Portal/VPN_Interoperabilita et/16206.php - unfortunately only available in German, sorry). Following it, I still can't get it to work. Contacting their support I got first the same procedure and after pointing out I already followed it a "we don't support other vendors".
Funny enough, I got a second VPN connection to my work's VPN server just fine, though admittedly there we have a true Cisco box.
My initial setup was based on a 192.x.x.x net on my AVM, I could establish a VPN connection but coudn't ping/ssh/http/you-name-the-protocol in either direction. Our companies net is a 10.x.x.x net so, and as I have also VMware fusion running on my Mac with DHCP enabled on a different 192.x.x.x net plus a third 192.x.x.x net from my Wifi access I decided to reconfigure my AVM net to a 172.x.x.x net and stop VMware services for the tests (ie simplify as much as I could to help troubleshoot).
Alas, instead of being able to establish a non-working VPN connection, now I ain't able to get the tunnel up. IKE Phase 1 completes but Phase 2 doesn't.
Here's the relevant section from kernel.log:
Dec 30 11:47:57 jupiter configd[16]: IPSec connecting to server <myservernameismybusiness>.dyndns.info
Dec 30 11:47:57 jupiter configd[16]: SCNC: start, triggered by SystemUIServer, type IPSec, status 0
Dec 30 11:47:57 jupiter configd[16]: IPSec Phase1 starting.
Dec 30 11:47:57 jupiter racoon[1910]: IPSec connecting to server 77.x.x.x
Dec 30 11:47:57 jupiter racoon[1910]: Connecting.
Dec 30 11:47:57 jupiter racoon[1910]: IPSec Phase1 started (Initiated by me).
Dec 30 11:47:57 jupiter racoon[1910]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).
Dec 30 11:47:58 jupiter racoon[1910]: IKEv1 Phase1 AUTH: success. (Initiator, Aggressive-Mode Message 2).
Dec 30 11:47:58 jupiter racoon[1910]: IKE Packet: receive success. (Initiator, Aggressive-Mode message 2).
Dec 30 11:47:58 jupiter racoon[1910]: IKEv1 Phase1 Initiator: success. (Initiator, Aggressive-Mode).
Dec 30 11:47:58 jupiter racoon[1910]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 3).
Dec 30 11:47:58 jupiter racoon[1910]: IKE Packet: transmit success. (Information message).
Dec 30 11:47:58 jupiter racoon[1910]: IKEv1 Information-Notice: transmit success. (ISAKMP-SA).
Dec 30 11:47:58 jupiter racoon[1910]: IPSec Phase1 established (Initiated by me).
Dec 30 11:47:58 jupiter racoon[1910]: IPSec Extended Authentication requested.
Dec 30 11:47:58 jupiter configd[16]: IPSec requesting Extended Authentication.
Dec 30 11:48:01 jupiter configd[16]: IPSec sending Extended Authentication.
Dec 30 11:48:01 jupiter racoon[1910]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 11:48:01 jupiter racoon[1910]: IPSec Extended Authentication sent.
Dec 30 11:48:02 jupiter racoon[1910]: IKEv1 XAUTH: success. (XAUTH Status is OK).
Dec 30 11:48:02 jupiter racoon[1910]: IPSec Extended Authentication Passed.
Dec 30 11:48:02 jupiter racoon[1910]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 11:48:02 jupiter racoon[1910]: IKEv1 Config: retransmited. (Mode-Config retransmit).
Dec 30 11:48:02 jupiter racoon[1910]: IPSec Network Configuration requested.
Dec 30 11:48:03 jupiter racoon[1910]: IPSec Network Configuration established.
Dec 30 11:48:03 jupiter racoon[1910]: IKE Packet: receive success. (MODE-Config).
Dec 30 11:48:03 jupiter configd[16]: IPSec Network Configuration started.
Dec 30 11:48:03 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-ADDRESS = 172.77.7.14.
Dec 30 11:48:03 jupiter configd[16]: IPSec Network Configuration: SAVE-PASSWORD = 1.
Dec 30 11:48:03 jupiter configd[16]: IPSec Network Configuration: DEFAULT-ROUTE = local-address 172.77.7.14/32.
Dec 30 11:48:03 jupiter configd[16]: host_gateway: write routing socket failed, command 2, No such process
Dec 30 11:48:03 jupiter configd[16]: IPSec Phase2 starting.
Dec 30 11:48:03 jupiter configd[16]: IPSec Network Configuration established.
Dec 30 11:48:03 jupiter configd[16]: IPSec Phase1 established.
Dec 30 11:48:03 jupiter configd[16]: event_callback: Address added. previous interface setting (name: en1, address: 192.168.43.242), current interface setting (name: utun0, family: 1001, address: 172.77.7.14, subnet: 255.255.255.255, destination: 172.77.7.14).
Dec 30 11:48:03 jupiter racoon[1910]: IPSec Phase2 started (Initiated by me).
Dec 30 11:48:03 jupiter racoon[1910]: IKE Packet: transmit success. (Initiator, Quick-Mode message 1).
Dec 30 11:48:03 jupiter configd[16]: network configuration changed.
Dec 30 11:48:03 jupiter configd[16]: IPSec port-mapping update for en1 ignored: VPN is the Primary interface. Public Address: ac4d070e, Protocol: None, Private Port: 0, Public Port: 0
Dec 30 11:48:03 jupiter configd[16]:
Dec 30 11:48:03 jupiter configd[16]: setting hostname to "jupiter.local"
Dec 30 11:48:03 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:06 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:07 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:09 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:09 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:12 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:13 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:15 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:15 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:18 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:18 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:21 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:21 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:24 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:25 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:27 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:27 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:30 jupiter racoon[1910]: IKE Packet: transmit success. (Phase2 Retransmit).
Dec 30 11:48:30 jupiter racoon[1910]: IKE Packet: receive success. (Information message).
Dec 30 11:48:33 jupiter configd[16]: IPSec disconnecting from server 77.x.x.x
Dec 30 11:48:33 jupiter racoon[1910]: IPSec disconnecting from server 77.x.x.x
Dec 30 11:48:33 jupiter racoon[1910]: IKE Packet: transmit success. (Information message).
Dec 30 11:48:33 jupiter racoon[1910]: IKEv1 Information-Notice: transmit success. (Delete ISAKMP-SA).
Dec 30 11:48:33 jupiter configd[16]: SCNC Controller: service_ending_verify_primaryservice, waiting for PrimaryService. status = 1
Dec 30 11:48:33 jupiter configd[16]:
Dec 30 11:48:33 jupiter configd[16]: network configuration changed.
Dec 30 11:48:33 jupiter configd[16]: SCNC Controller: ipv4_state_changed, done waiting for ServiceID.
Dec 30 11:48:33 jupiter configd[16]:
Dec 30 11:48:33 jupiter configd[16]: setting hostname to "jupiter"
When connecting to my work-place it looks like:
Dec 30 12:33:14 jupiter configd[16]: IPSec connecting to server <mycompanyismybusiness>.ch
Dec 30 12:33:14 jupiter configd[16]: SCNC: start, triggered by SystemUIServer, type IPSec, status 0
Dec 30 12:33:14 jupiter configd[16]: IPSec Phase1 starting.
Dec 30 12:33:14 jupiter racoon[1976]: IPSec connecting to server 62.x.x.x
Dec 30 12:33:14 jupiter racoon[1976]: Connecting.
Dec 30 12:33:14 jupiter racoon[1976]: IPSec Phase1 started (Initiated by me).
Dec 30 12:33:14 jupiter racoon[1976]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).
Dec 30 12:33:14 jupiter racoon[1976]: IKEv1 Phase1 AUTH: success. (Initiator, Aggressive-Mode Message 2).
Dec 30 12:33:14 jupiter racoon[1976]: IKE Packet: receive success. (Initiator, Aggressive-Mode message 2).
Dec 30 12:33:14 jupiter racoon[1976]: IKEv1 Phase1 Initiator: success. (Initiator, Aggressive-Mode).
Dec 30 12:33:14 jupiter racoon[1976]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 3).
Dec 30 12:33:14 jupiter racoon[1976]: IPSec Phase1 established (Initiated by me).
Dec 30 12:33:15 jupiter racoon[1976]: IPSec Extended Authentication requested.
Dec 30 12:33:15 jupiter configd[16]: IPSec requesting Extended Authentication.
Dec 30 12:33:21 jupiter configd[16]: IPSec sending Extended Authentication.
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Extended Authentication sent.
Dec 30 12:33:21 jupiter racoon[1976]: IKEv1 XAUTH: success. (XAUTH Status is OK).
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Extended Authentication Passed.
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 12:33:21 jupiter racoon[1976]: IKEv1 Config: retransmited. (Mode-Config retransmit).
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Network Configuration requested.
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Network Configuration established.
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: receive success. (MODE-Config).
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration started.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-ADDRESS = 10.100.1.18.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-MASK = 255.255.255.0.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: SAVE-PASSWORD = 1.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-DNS = 10.100.1.129.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: SPLIT-INCLUDE.
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration: DEF-DOMAIN = iw.local.
Dec 30 12:33:21 jupiter configd[16]: host_gateway: write routing socket failed, command 2, No such process
Dec 30 12:33:21 jupiter configd[16]: installed route: (address 10.100.1.0, gateway 10.100.1.18)
Dec 30 12:33:21 jupiter configd[16]: IPSec Phase2 starting.
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Phase2 started (Initiated by me).
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: transmit success. (Initiator, Quick-Mode message 1).
Dec 30 12:33:21 jupiter configd[16]: IPSec Network Configuration established.
Dec 30 12:33:21 jupiter configd[16]: IPSec Phase1 established.
Dec 30 12:33:21 jupiter configd[16]: event_callback: Address added. previous interface setting (name: en1, address: 192.168.43.242), current interface setting (name: utun0, family: 1001, address: 10.100.1.18, subnet: 255.255.255.0, destination: 10.100.1.18).
Dec 30 12:33:21 jupiter configd[16]: network configuration changed.
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: receive success. (Initiator, Quick-Mode message 2).
Dec 30 12:33:21 jupiter racoon[1976]: IKE Packet: transmit success. (Initiator, Quick-Mode message 3).
Dec 30 12:33:21 jupiter racoon[1976]: IKEv1 Phase2 Initiator: success. (Initiator, Quick-Mode).
Dec 30 12:33:21 jupiter racoon[1976]: IPSec Phase2 established (Initiated by me).
Dec 30 12:33:21 jupiter configd[16]: IPSec Phase2 established.
An earlies test in a Starbucks around here had the same result, during looking at the netstat -nr output I found I got onto a 10.x.x.x net on the Wifi and still could connect to the (different) 10.x.x.x net at work.
My TCP/IP Networking course was around 2000, but the default route seen in the non-working log section looks like bullsh*t to me anyhow: DEFAULT-ROUTE = local-address 172.77.7.14/32
On the other hand, the Phase 2 message seem to indicate a different mode for Phase 2 between the working and the non-working one.
This is from the exported config of my AVM box:
**** CFGFILE:vpn.cfg
* /var/flash/vpn.cfg
* Wed Dec 28 16:01:09 2011
vpncfg {
        connections {
                enabled = yes;
                conn_type = conntype_user;
                name = "[email protected]";
                always_renew = no;
                reject_not_encrypted = no;
                dont_filter_netbios = yes;
                localip = 0.0.0.0;
                local_virtualip = 0.0.0.0;
                remoteip = 0.0.0.0;
                remote_virtualip = 172.77.7.14;
                remoteid {
                        key_id = "<mykeyismybusiness>";
                mode = phase1_mode_aggressive;
                phase1ss = "all/all/all";
                keytype = connkeytype_pre_shared;
                key = "<mykeyismybusiness>";
                cert_do_server_auth = no;
                use_nat_t = no;
                use_xauth = yes;
                xauth {
                        valid = yes;
                        username = "<myuserismybusiness>";
                        passwd = "<mypasswordismybusiness>";
                use_cfgmode = no;
                phase2localid {
                        ipnet {
                                ipaddr = 0.0.0.0;
                                mask = 0.0.0.0;
                phase2remoteid {
                        ipaddr = 172.22.7.14;
                phase2ss = "esp-all-all/ah-none/comp-all/no-pfs";
                accesslist =
                             "permit ip 172.22.7.0 255.255.255.240 172.22.7.14 255.255.255.255";
        ike_forward_rules = "udp 0.0.0.0:500 0.0.0.0:500",
                            "udp 0.0.0.0:4500 0.0.0.0:4500";
// EOF
**** END OF FILE ****
I also noticed an extra "IPSec port-mapping update for en1 ignored" message in the non-working log section, but I'm not sure a) how significant that might be, and b) how to find out what the ignored update might have been to decide whether not ignoring it would help.
A quick test with the AnyConnect Client from Cisco didn't help either, apparently it establishes an https connection first as I got a window which certificate details from my QNAP behind the AVM Box (I got a port forward for https to it)
So I'm looking for any ideas how to better troubleshoot this VPN issue...
Many thanks in advance!
BR,
Alex

Ok, found a small typo in my config (had at one point a 172.77.7.14 instead of the 172.22.7.14), no I can also connect from the 172.x.x.x net but still no ping etc. The relevant section of the log looks now like this:
Dec 30 16:44:27 jupiter configd[16]: IPSec connecting to server <myservernameismybusiness>.dyndns.info
Dec 30 16:44:27 jupiter configd[16]: SCNC: start, triggered by SystemUIServer, type IPSec, status 0
Dec 30 16:44:28 jupiter configd[16]: IPSec Phase1 starting.
Dec 30 16:44:28 jupiter racoon[2183]: IPSec connecting to server 77.x.x.x
Dec 30 16:44:28 jupiter racoon[2183]: Connecting.
Dec 30 16:44:28 jupiter racoon[2183]: IPSec Phase1 started (Initiated by me).
Dec 30 16:44:28 jupiter racoon[2183]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).
Dec 30 16:44:28 jupiter racoon[2183]: IKEv1 Phase1 AUTH: success. (Initiator, Aggressive-Mode Message 2).
Dec 30 16:44:28 jupiter racoon[2183]: IKE Packet: receive success. (Initiator, Aggressive-Mode message 2).
Dec 30 16:44:28 jupiter racoon[2183]: IKEv1 Phase1 Initiator: success. (Initiator, Aggressive-Mode).
Dec 30 16:44:28 jupiter racoon[2183]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 3).
Dec 30 16:44:28 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:44:28 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (ISAKMP-SA).
Dec 30 16:44:28 jupiter racoon[2183]: IPSec Phase1 established (Initiated by me).
Dec 30 16:44:28 jupiter racoon[2183]: IPSec Extended Authentication requested.
Dec 30 16:44:28 jupiter configd[16]: IPSec requesting Extended Authentication.
Dec 30 16:44:31 jupiter configd[16]: IPSec sending Extended Authentication.
Dec 30 16:44:31 jupiter racoon[2183]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 16:44:31 jupiter racoon[2183]: IPSec Extended Authentication sent.
Dec 30 16:44:32 jupiter racoon[2183]: IKEv1 XAUTH: success. (XAUTH Status is OK).
Dec 30 16:44:32 jupiter racoon[2183]: IPSec Extended Authentication Passed.
Dec 30 16:44:32 jupiter racoon[2183]: IKE Packet: transmit success. (Mode-Config message).
Dec 30 16:44:32 jupiter racoon[2183]: IKEv1 Config: retransmited. (Mode-Config retransmit).
Dec 30 16:44:32 jupiter racoon[2183]: IPSec Network Configuration requested.
Dec 30 16:44:33 jupiter racoon[2183]: IPSec Network Configuration established.
Dec 30 16:44:33 jupiter racoon[2183]: IKE Packet: receive success. (MODE-Config).
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration started.
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-ADDRESS = 172.22.7.14.
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration: SAVE-PASSWORD = 1.
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration: INTERNAL-IP4-DNS = 172.22.7.1.
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration: DEFAULT-ROUTE = local-address 172.22.7.14/32.
Dec 30 16:44:33 jupiter configd[16]: host_gateway: write routing socket failed, command 2, No such process
Dec 30 16:44:33 jupiter configd[16]: IPSec Phase2 starting.
Dec 30 16:44:33 jupiter racoon[2183]: IPSec Phase2 started (Initiated by me).
Dec 30 16:44:33 jupiter racoon[2183]: IKE Packet: transmit success. (Initiator, Quick-Mode message 1).
Dec 30 16:44:33 jupiter configd[16]: IPSec Network Configuration established.
Dec 30 16:44:33 jupiter configd[16]: IPSec Phase1 established.
Dec 30 16:44:33 jupiter configd[16]: event_callback: Address added. previous interface setting (name: en1, address: 192.168.43.242), current interface setting (name: utun0, family: 1001, address: 172.22.7.14, subnet: 255.255.255.255, destination: 172.22.7.14).
Dec 30 16:44:33 jupiter configd[16]: network configuration changed.
Dec 30 16:44:33 jupiter racoon[2183]: IKE Packet: receive success. (Initiator, Quick-Mode message 2).
Dec 30 16:44:33 jupiter racoon[2183]: IKE Packet: transmit success. (Initiator, Quick-Mode message 3).
Dec 30 16:44:33 jupiter racoon[2183]: IKEv1 Phase2 Initiator: success. (Initiator, Quick-Mode).
Dec 30 16:44:33 jupiter racoon[2183]: IPSec Phase2 established (Initiated by me).
Dec 30 16:44:33 jupiter configd[16]: IPSec Phase2 established.
Dec 30 16:44:43 jupiter racoon[2183]: IKE Packet: receive failed. (MODE-Config).
Dec 30 16:44:48 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:44:48 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:44:48 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:44:48 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:44:48 jupiter racoon[2183]: IKE Packet: receive success. (Information message).
Dec 30 16:45:03 jupiter configd[16]: setting hostname to "jupiter.local"
followed by lots of:
Dec 30 16:45:03 jupiter racoon[2183]: IKE Packet: receive failed. (MODE-Config).
Dec 30 16:45:08 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:45:08 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:45:08 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:45:08 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:45:08 jupiter racoon[2183]: IKE Packet: receive success. (Information message).
Dec 30 16:45:28 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:45:28 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:45:28 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:45:29 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:45:29 jupiter racoon[2183]: IKE Packet: receive success. (Information message).
Dec 30 16:45:49 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:45:49 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:45:49 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:45:50 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:45:50 jupiter racoon[2183]: IKE Packet: receive success. (Information message).
Dec 30 16:46:10 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:46:10 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:46:10 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:46:10 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:46:10 jupiter racoon[2183]: IKE Packet: receive success. (Information message).
Dec 30 16:46:30 jupiter racoon[2183]: IKE Packet: transmit success. (Information message).
Dec 30 16:46:30 jupiter racoon[2183]: IKEv1 Information-Notice: transmit success. (R-U-THERE?).
Dec 30 16:46:30 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: request transmitted. (Initiator DPD Request).
Dec 30 16:46:30 jupiter racoon[2183]: IKEv1 Dead-Peer-Detection: response received. (Initiator DPD Response).
Dec 30 16:46:30 jupiter racoon[2183]: IKE Packet: receive success. (Information message).

H.323 Security: Gateway to Gateway

Friends,
In voip setup i want to secure my h323 traffic between gateway to gateway
without using ipsec tunnel (site-to-site vpn). I study about h235 security
but that is between gateway and gatekeeper. Please suggest me any technique
you know.
Thanks and Regards

Friend,
Thank you for the link. I am already using SRTP for streaming As you know CRTP does not with IPSec. Now I have the same issue my h323 session is not secure. I have 25 sites and all have gateways so according to that document, i have to configure all 25 sites for IPSec tunnel. if a user A of site 1 will call user of site2, a tunnel will be establish for a single call and then same time mores of site1 call to users of other sites, it means ipsec tunnel will be establish per call. This will not eat all my router's resources. My all sites connected with each other like partial mesh.
Please suggest me what to do in this situation.
Regards

RV220W, problem with Gateway-to-Gateway and tunneling

I have created a connection gateway-to-gateway between RV220W and RVL200, is doing without any problems.
For example, I can ping the gateway on the other side. But when I connect trough RV220W QuickVPN (or PPTP) I can not reach the gateway (RVL200) or any host behind it.
[192.168.0.1] RV220W <----- G2G -----> RVL200 [192.168.8.1]
                          |
                          |
                 [192.168.0.10]
[192.168.0.1] RV220W <----- G2G --x--> RVL200 [192.168.8.1] <no connection>
                          |
                          |
         tunnel (QuickVPN or PPTP)
                 [192.168.3.10]

Te-Kai Liu - How would you propose creating this site-to-site tunnel for the PPTP client? Can you share specific setup for this router with this scenario in mind? Thanks for your help on this...I'm having this issue as well.
Thomas - Did you ever find a solution to your issue with the VPN Clients connecting through the tunnel?

Linksys RV42 Gateway to gatewaye tunnel

I have 2 RV42 routers ,one in the main office and the other in branch office ,my WAN connection is ADSL 1M in bothes ,i create VPN tunnnel gateway to gateway using DDNS and the connection is done stuts connected , but after litewhile the connection loste but when i disconnect the tunnel it come bakc again and so on pleas help me

Check to make sure that you have the Keep Alive and Dead Peer Detection options enabled under the Advanced section of
the tunnel setup. This keeps the connection stable after a long period of time being connected.
THANKS
Rick Roe
Cisco Small Business SUpport Center

RV016 gateway to gateway rv082 won't connect

Dear Gurus
New hardware here, requesting a bit of your knowledge
We are tryingin to setup a simple gateway to gateway VPN
HomeA Has an RV016 with a public static IP
Local Group Security Gateway type is IP Only with the IP
Local Security Group Type is Subnet, with the local IP class 192.160.0.0
Remote Security Gateway Type: Dynamic + Email
Email address [email protected]
Remote Security Group Type: Subnet
IP Address 192.168.1.0
IPSec Setup as default with nice password.
HomeB has an RV082 with a dynamic ADSL link
Local Group Security Gateway type is DynamicIP +Email
Email address [email protected]
Local Security Group Type is Subnet, with the local IP class 192.160.1.0
Remote Security Gateway Type: IP Only
Remote Security Group Type: Subnet
IP Address 192.168.0.0
IPSec Setup as default with nice password.
The idea is for HomeB which has a dynamic IP, to reach HomeA, which has a static IP and connect.
But they just wont. I have not clue what's wrong, I followed the instructions, maybe i miss interpreted something.
I could share the VPN logs for both., Im getting a lot of errors there.
All pointers or suggestions are appreciated.
Im pasting here a snap of the receiving end HomeA, when i press connect on HomeB
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: responding to Quick Mode
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] Inbound SPI value = 3b08f98f
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] Inbound SPI value = 3b08f98f
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] Outbound SPI value = fdb78f39
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] Outbound SPI value = fdb78f39
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] >>> Responder send Quick Mode 2nd packet
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: [Tunnel Negotiation Info] >>> Responder send Quick Mode 2nd packet
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:51:41 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:51:51 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:51:51 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:51:51 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:51:51 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2562: max number of retransmissions (2) reached STATE_QUICK_R1
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2562: max number of retransmissions (2) reached STATE_QUICK_R1
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: [Tunnel Negotiation Info] <<< Responder Received Quick Mode 1st packet
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: [Tunnel Negotiation Info] <<< Responder Received Quick Mode 1st packet
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: esp_ealg_id=2-2,esp_ealg_keylen=0, key_len=64,esp_aalg_id=1-1.
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: esp_ealg_id=2-2,esp_ealg_keylen=0, key_len=64,esp_aalg_id=1-1.
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: You should NOT use insecure ESP algorithms [ESP_DES (64)]!
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: You should NOT use insecure ESP algorithms [ESP_DES (64)]!
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: responding to Quick Mode
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] Inbound SPI value = 88cbdfad
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] Inbound SPI value = 88cbdfad
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] Outbound SPI value = bdcdfc69
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] Outbound SPI value = bdcdfc69
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] >>> Responder send Quick Mode 2nd packet
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: [Tunnel Negotiation Info] >>> Responder send Quick Mode 2nd packet
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:51:56 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:52:06 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:52:06 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2564: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:52:06 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:52:06 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
Mar 10 11:52:11 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:52:11 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2563: discarding duplicate packet; already STATE_QUICK_R1
Mar 10 11:52:11 2012
VPN Log
(g2gips0)[1] 187.179.136.229 #2558: ignoring informational payload, type PAYLOAD_MALFORMED
thanks

Alejandro,
Any chance you could share your solution? I am having the exact same problem on a tunnel between two RV082s.

Remote access Vpn issue

Dear All,
I have configured remote access vpn without using split tunnel.Everything is working fine.I can access all the inside network which is allowed in acl.
I am facing strange issue now. I have created a pool for remote access vpn with a range 192.168.5.8/29.I can access my internal subnets 10.10.0.0/16.
I have below acess-list for acl-in.
access-list acl-in extended permit ip object-group vpnclients 192.168.5.8 255.255.255.248
object-group network vpnclients
network-object host 10.110.100.26
network-object host 10.106.100.15
network-object host 10.10.10.6
network-object host 10.10.20.82
network-object host 10.110.100.48
network-object host 10.10.20.53
network-object host 10.10.20.54
network-object host 10.60.100.1
network-object host 10.10.10.75
network-object host 10.10.20.100
network-object host 10.10.130.136
network-object host 10.106.100.16
network-object host 10.106.100.9
network-object host 10.170.100.1
network-object host 10.170.100.2
network-object host 10.170.100.21
network-object host 10.101.100.20
network-object host 10.170.100.25
So whichever IPs i have called in vpnclient group is able to access via RA vpn.Issue is when i try to access internal network of 192.168.198.0/24, i am able to access it without adding in vpnclient group. Even for 192.168.197.0/24,192.168.197.0/24 the same. But for 10.10.0.0/16 we can access only after adding in vpnclient group. Any one has face this issue before. Is this because of same network i mean 192.168.0.0 something like that.There is no other staement in acl-in for 192.168.0.0
Regards
-Danesh Ahammad

Hi,
If i read correctly you made the RA vpn "without" split tunnel, correct? if that is the case, all of the traffic will traverse the vpn connection (tunnel all) , the access-list "acl-in" is of no use to it.
try converting it to use split tunnel, i am sure that way you can not access resources that are not mentioned in the list.
~Harry

SAPGUI Java 7.20 Rev 6 download and VPN issue

Dear SAP friends please help.
We are trying to connect to SAP via a Mac running Lion and a VPN with SAPGUI for Java Rev 5. We get the logon successfully but never get further than the licence message. We have updated to the latest Java and also tried it in 32 bitz mode. We are unable to download the latest Rev 6 (due to my user authorisation) but we still think this is a VPN issue. Can you please help? I enclose the trace which shows the point at which is stops.
Many thanks
Andrew
16.11. 17:36:05.118 CALL:     <CONTROL SHELLID="101">
16.11. 17:36:05.118 CALL:       <PROPERTY VALUE="0" NAME="120"/>
16.11. 17:36:05.118 CALL:       <PROPERTY VALUE="0" NAME="300"/>
16.11. 17:36:05.118 CALL:     </CONTROL>
16.11. 17:36:05.118 CALL:   </CONTROLS>
16.11. 17:36:05.118 CALL:   <COPY id="copy">
16.11. 17:36:05.118 CALL:     <GUI id="gui">
16.11. 17:36:05.118 CALL:       <METRICS id="metrics" X3="1440" X2="7" X1="7" X0="283" Y3="900" Y2="20" Y1="12" Y0="283"/>
16.11. 17:36:05.118 CALL:     </GUI>
16.11. 17:36:05.118 CALL:   </COPY>
16.11. 17:36:05.118 CALL: </DATAMANAGER>
16.11. 17:36:05.119 CALL: Call 1042: #3#.setMoreDataIndicator(true);
16.11. 17:36:05.122 CON: GuiNiNetConnection: sending DIAG data to writer thread for modus 0
ERROR #############################
16.11. 17:37:10.018 ERROR: GuiNiReaderThread: read failed: Error: connection to partner '172.23.200.109:3200' broken
16.11. 17:37:10.018 ERROR:
16.11. 17:37:10.018 ERROR: Wed Nov 16 17:37:10 2011
16.11. 17:37:10.018 ERROR: Release 720
16.11. 17:37:10.018 ERROR: Component NI (network interface), version 40
16.11. 17:37:10.018 ERROR: rc = -6, module nixxi.cpp, line 5087
16.11. 17:37:10.018 ERROR: Detail NiIRead: P=172.23.200.109:3200; L=10.64.10.112:53387
16.11. 17:37:10.018 ERROR: System Call recv
16.11. 17:37:10.018 ERROR: Error No 60
16.11. 17:37:10.018 ERROR: 'Operation timed out'
ERROR #############################
16.11. 17:37:10.018 CON: -
16.11. 17:37:10.018 CON: GuiNiNetConnection: sending DIAG data to connection for modus -1
ERROR #############################
16.11. 17:37:10.234 ERROR: GuiConnection: Connection closed
16.11. 17:37:10.234 ERROR: Error: connection to partner '172.23.200.109:3200' broken
16.11. 17:37:10.234 ERROR:
16.11. 17:37:10.234 ERROR: Wed Nov 16 17:37:10 2011
16.11. 17:37:10.234 ERROR: Release 720
16.11. 17:37:10.234 ERROR: Component NI (network interface), version 40
16.11. 17:37:10.234 ERROR: rc = -6, module nixxi.cpp, line 5087
16.11. 17:37:10.234 ERROR: Detail NiIRead: P=172.23.200.109:3200; L=10.64.10.112:53387
16.11. 17:37:10.234 ERROR: System Call recv
16.11. 17:37:10.234 ERROR: Error No 60
16.11. 17:37:10.234 ERROR: 'Operation timed out'
ERROR #############################
ERROR #############################

Hello Andrew,
some version of the VPN client on Lion seems to have a known issue according to SAP internal discussions.
I found someone telling, that with F5 SSL VPN Plugin 7000.2011.0907.01, it is working again.
It seems to be available from https://connectfp.sap.com.
For uninstalling old F5 version, see http://support.f5.com/kb/en-us/solutions/public/3000/800/sol3826.html
(many "seems", because I am still on Snow Leopard and can not talk about this issue from my own experience)
Regarding user authorization for downloading software in Service MarketPlace, please refer to [note 1037574|https://service.sap.com/sap/support/notes/1037574].
Best regards
Rolf-Martin

Airport Extreme 802.11n New Firmware Release (VPN ISSUE)

The info accompanying the release of today's firmware upgrade makes no mention of a fix to the VPN problems. Does anyone know if the new firmware had any effect on the problem?
Mac Pro Mac OS X (10.4.9) 4 GB Ram

Our VPN is now working (checkpoint)
For me the firmware update initially seemed to fix the VPN issue, but after closer inspection there still seems to be something wrong with it. (We are using CheckPoint.) My Wintel-box that has been provided by my employee is still having issues with connecting to our exchange server and the network drives do not seem to be working all that realiable. Probably a configuration issue, but do you have any ideas on where to start looking for a solution?
br,
-Joose

RVO42 GATEWAY TO GATEWAY VPN IS NOT CONNECTING

Dear all,
When I try to create vpn connectivity between two RV042 routers, It showing waiting for connection
I am using DDNS in both gateways.
Firmware versions are different
1.
Serial Number :
NKS17350412
Firmware Version :
v4.2.2.08 (Apr 26 2013 19:12:26)
PID VID :
RV042 V03
Firmware MD5 Checksum :
9f4450cc2cc023dc0e9d6aef842afd48
LAN
WAN1
WAN2
IP Address :
217.165.146.236
IP Address :
0.0.0.0
Default Gateway :
217.165.146.1
Default Gateway :
0.0.0.0
DNS :
213.42.20.20
DNS :
0.0.0.0
Dynamic DNS :
Dyndns Enabled : Dynamic DNS is updated successfully.
AUHDUBAI
waiting for connection
DES/MD5/1
192.168.10.0
255.255.255.0
192.168.1.0
255.255.255.0
tedfor
0.0.0.0
N/A
2.
Serial Number : NKS10202121 Firmware version : 1.3.12.19-tm (Feb 13 2009 13:03:21)
CPU : Intel IXP425-266 DRAM : 32M Flash : 8M
System up time : 0 Days 11 Hours 12 Minutes 24 Seconds (Now: Thu Jan 8 2015 07:13:53 )
is it a issue of a firmware different ?
Thanks & regards
Ajay Jose K

Hello ajay1komban,
First double check your configuration on both sides of the tunnel and make sure everything matches.
You then could try checking to make sure your DDNS is resolving to your WAN IP addresses.
Lastly what I have noticed for initial site to site tunnel configurations if it doesn't connect right away or after you press connect you could try a power cycle on both routers to see if the tunnel will establish itself.
Regards,
Thank you,

Integration Gateway - JDBC - Character Encoding Issue

Hello,
I'm using SMP 3.0 SP06 and I'm getting data from MS SQL using JDBC interface and I can get all data successfully.
The problem is:
there is a column in database contain "Arabic" data "right-to-left" language.
and when executing the OData service, for example, if the data in arabic is "هذه للتجربة" it is getting to me "Ù‡Ø°Ù‡ Ù„Ù„ØªØ¬Ø±Ø¨Ø©"
I think this is the same data but in a different encoding/decoding.
Do you have any idea ?
Thanks
Hossam

By the way, I have checked it again it is working fine when requesting data in XML format "default"
The problem occurs only when requesting the service with format parameter "?$format=json"
and it is even working fine when calling it from "Advanced REST client"
so I think it is just a problem in the browser while displaying the data, specially chrome as it is working fine with IE, as chrome is displaying json files as plain text without any formatting or decoding, but IE is saving the file on PC and if I tried to open it by notepad++ I find data correctly decoded.
It seems it is not an SMP nor Integration gateway issue, sorry for confusing

Gateway to Gateway VPN Issues

Similar Messages

Maybe you are looking for