Cisco VPN passthrough for 'IPSec over UDP (NAT / PAT)'

[alzadude]

Hi there,

I recently purchased an 8800NL for use with PlusNet Fibre Broadband (FTTC VDSL).

Everything is working fine so far, except for my girlfriend's work VPN connection (Cisco 'IPsec over UDP NAT/PAT').

The error message from the Cisco VPN client is:
Secure VPN Connection terminated locally by the Client.
Reason 412: The remote peer is no longer responding.

I upgraded from a 7800N, and she could connect to the VPN without any error using that router. I also tried to connect to the VPN bypassing the 8800NL (by tethering to my phone's 3g connection) and I could connect to the VPN without any error.

Could anyone confirm whether the current firmware for the 8800NL supports IPsec VPN passthrough (2.32d.dh14), and if any further configuration is needed in the router?

Thanks

Alex.

[billion_fan]

Try the attached firmware,

1. Upgrade the firmware using the attached firmware file
2. Reset back to factory default settings
3. Setup the device eg WAN settings etc
4. Disable ALG>> IPSEC as shown on the attached screen shot
5. Test your VPN client again.

Thanks

[alzadude]

Hi there,

Thanks for this - is it a beta or pre-release firmware? It doesn't seem to be available on Billion's website..

If I have a problem with this firmware, will I be able to rollback to my current firmware (2.32d.dh14)? I don't want to brick it.

Thanks

Alex.

[billion_fan]

Hi there,

Thanks for this - is it a beta or pre-release firmware? It doesn't seem to be available on Billion's website..

If I have a problem with this firmware, will I be able to rollback to my current firmware (2.32d.dh14)? I don't want to brick it.

Thanks

Alex.

Yes you can roll back the firmware, also you don't need to worry about bricking the device, as there is a bootrom recovery process that can be used to recover your device.

This firmware is pre-release, and future firmware will have this change

[mikeyd1973]

I had exactly the same issue. I've tested this pre-release firmware and can confirm that I can now use the Cisco VPN client from behind the router (to connect to my workplace).

[alzadude]

Hi there,

I tested with the pre-release firmware provided, and after setting the described option (under Configuration -> NAT -> ALG), I can also confirm the Cisco VPN passthrough is now working.

Many thanks for your help!

Alex.

[dasminc]

Does anyone use SNMP with this firmware ?

I upgraded from 2.32d.dh14 to 2.32d.dm12 to get my Cisco VPN working (which it now does) but since then the SNMP monitoring has stopped.
Nothing else changed, the community string was the same yet PRTG can no longer connect to the 8800.

This was after re-applying all config after the firmware upgrade as I reset to factory settings during the upgrade.

[bogmonster]

Looks like I need this - just installing as we speak. I also want to use the DLNA server and I see there is a different firmware for that. Can anybody confirm if either firmware supports IPSec VPNs and DLNA server simultaneously?

OK, can conform that the VPN now works - great, that was the top priority as my employer might have gotten slightly miffed. I can't get the DLNA server working with this firmware though but have not tried very hard yet.

BM

[billion_fan]

Looks like I need this - just installing as we speak. I also want to use the DLNA server and I see there is a different firmware for that. Can anybody confirm if either firmware supports IPSec VPNs and DLNA server simultaneously?

OK, can conform that the VPN now works - great, that was the top priority as my employer might have gotten slightly miffed. I can't get the DLNA server working with this firmware though but have not tried very hard yet.

BM

Try loading firmware 2.32d.dh37 it has the DNLA fix and also the VPN pass through fix

[dasminc]

HI,

Where do we get firmware 2.32d.dh37 from ?
I can't see it on the download page nor in the Test Firmware area

Thanks.

[edit] - Never mind - I found it in the DLNA thread :-/