+ Post New Thread
Results 1 to 5 of 5
Internet Related/Filtering/Firewall Thread, LAN to LAN VPN - Draytek/Cisco in Technical; Hi all, I'm a little bit of a novice when it comes to VPN so do bear with me. I'm ...
  1. #1

    Join Date
    Apr 2012
    Location
    Southport
    Posts
    19
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    LAN to LAN VPN - Draytek/Cisco

    Hi all,

    I'm a little bit of a novice when it comes to VPN so do bear with me.

    I'm trying to set up a LAN to LAN VPN connection from our office to our hosting provider. At their end is a Cisco ASA box and we have a Vigor 2850n.

    Our provider gave us the Cisco VPN client, which when I use works perfectly, when connected I can RDP to the VM sat behind the Cisco. What I want to do us use our 2850n instead of the Cisco VPN Client. I have set the LAN to LAN connection up, the connection is established OK but I there is very little traffic being transmitted out and zero traffic coming back in.

    It works flawlessly through the Cisco software, so I expect is something not configured correctly on my side.

    Any pointers as to where I should be looking?

    Many thanks!

  2. #2

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,076
    Thank Post
    853
    Thanked 2,676 Times in 2,270 Posts
    Blog Entries
    9
    Rep Power
    769
    Have you checked that it is a compatible setup with the vendor, Cisco tunnels are a massive pain whe anything else is in the way and their implementation may not comply with all the same standards. I have had simmilar issues trying to use cisco tunnels through ISA (using their client software) as ISA wated to enforce TCP/IP rules and the Cisco implementation wanted to break all of them, this lead to half ope tuels or ones that were stable for only a few secods while traffic was beig passed through, a cotiuious ping would keep these open though. I can't remember what finally solved this as it was a combo of allowing a stack of protocols through ISA without any sanitising or inspection alog with a software update of both the client and server side. TBH it may be cheaper and easier just getting a little Cisco 800 series router to use as a gateway for it that speaks the same language. At any rate check with them if they have had that work and if they ca set it up with a more universal VPN type if they can to give that a try. Also check for any firmware updates for the Draytek and ask them to do the same at their end just in case.

  3. #3

    Join Date
    Apr 2012
    Location
    Leeds
    Posts
    296
    Thank Post
    0
    Thanked 63 Times in 51 Posts
    Rep Power
    35
    What kind of VPN are you using from the Draytek? I presume it's a dial-in? is it PPTP, IPSEC or a.n.other?

    Dave


    Quote Originally Posted by Graeme1978 View Post
    Hi all,

    I'm a little bit of a novice when it comes to VPN so do bear with me.

    I'm trying to set up a LAN to LAN VPN connection from our office to our hosting provider. At their end is a Cisco ASA box and we have a Vigor 2850n.

    Our provider gave us the Cisco VPN client, which when I use works perfectly, when connected I can RDP to the VM sat behind the Cisco. What I want to do us use our 2850n instead of the Cisco VPN Client. I have set the LAN to LAN connection up, the connection is established OK but I there is very little traffic being transmitted out and zero traffic coming back in.

    It works flawlessly through the Cisco software, so I expect is something not configured correctly on my side.

    Any pointers as to where I should be looking?

    Many thanks!

  4. #4

    Join Date
    Apr 2012
    Location
    Southport
    Posts
    19
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Its IPsec.

    The Draytek is here at the office, and the Cisco is at Rise's (Fasthosts) Datacentre. I have the Draytek set to Dial Out to the Cisco. The VPN is established but no traffic comes back from the other end. Using the Cisco VPN client its flawless, but can't get the Draytek to work.

  5. #5

    Join Date
    Apr 2012
    Location
    Southport
    Posts
    19
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Eventually figured this out and am kind of kicking myself a bit for wasting so much time on it when there was a quick fix.

    The VM was deployed before I'd configured the Site-to-Site details on the Rise Control Panel, so the static routes were not applied to the VM. Redeployed the VM and all working great

SHARE:
+ Post New Thread

Similar Threads

  1. VOIP LAN to Internal Phone line
    By jamesfed in forum AV and Multimedia Related
    Replies: 2
    Last Post: 1st October 2009, 01:55 PM
  2. Remote Access to LAN PCs over Internet
    By Asif in forum Network and Classroom Management
    Replies: 15
    Last Post: 5th September 2009, 08:56 PM
  3. Fujitsu Desktop not booting to LAN with PXE2.1
    By DAckroyd in forum Hardware
    Replies: 1
    Last Post: 6th April 2009, 03:03 PM
  4. No access to LAN behind SonicWALL
    By jimothy in forum Wireless Networks
    Replies: 5
    Last Post: 28th April 2008, 01:18 PM
  5. Ghost casting slows LAN to a crawl
    By m2d2 in forum Wireless Networks
    Replies: 13
    Last Post: 22nd February 2008, 06:15 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •