Side-to-Side VPN connects, but i cannot ping the other side
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Hardware Version :
Firmware Version :
ISP :
Hi there,
i have some problems with my vpn connection.
i have 2 tplink router i will connection together to a side-by-side connection.
the two models are:
- tplink vr900v v1
- tplink vr 1600v v1
coniguration vr900v
ipsec vpn
remote gateway: dynamic dns adress, successfully registrated and activated
ip for vpn: 192.168.1.0/24 (local ip network)
ip for vpn: 192.168.0.0/24 (remote ip network)
automatic (ike)
pre-shared-Key: ideticaly on both sides
perfect forward secrecy activated
Main Mode
AES 256 -> MD5
DHE: 4096bit
time-to-life: 3600
coniguration vr1600v
ipsec vpn
remote gateway: dynamic dns adress, successfully registrated and activated
ip for vpn: 192.168.0.0/24 (local ip network)
ip for vpn: 192.168.1.0/24 (remote ip network)
automatic (ike)
pre-shared-Key: ideticaly on both sides
perfect forward secrecy activated
Main Mode
AES 256 -> MD5
DHE: 4096bit
time-to-life: 3600
extendes routing:
vpn to vr900v
target ip adress 192.168.0.0
Gateway 192.168.1.1
WAN interface:pppoe_ptm_7_0_d
vpn to vr1600v
target ip adress 192.168.1.0
Gateway 192.168.0.1
WAN interface:ewan_ipoe_d
The main differences between the both router ist, the vr900v is directly configured as dsl router.
the vr1600 is connected as wlan router, because it works in a cable netzwork behind a cable router. the router is configured in bridge mode, so i think there where no problems with the cable network restrictions.
the vpn connection is marked as "up" (connceted) on both sides. i configured on both sides extended routings, but i got no connection to the other lan. i tried to ping the router on the other side, a wlan and lan connection computer. i tired also a tracert and a samba connection (there are all windows based systems)
has anyone some ideas why i cannot succesfully connect a side-by-side vpn connection.
its make me creazy
thanks a lot dudes.
greetings, ravn
Sound like and HUUUUUUGE bug.
Italian Support tell me that "VPN IPSec is not tested on WAN port and my modem/router (TD-W9970) it is intended more as a modem than a router".
>>> My face 
So, I sent them this mail (brief):
==================
[...]VPN is UP, so tunnel is ok, but the traffic to remote subnet is not routed on VPN Tunnel. If I get Internet connection from DSL, traffic is routed correclty. Same router, same VPN.
Moreover, the router has an atipical behavior: when I set up the VPN, as happens on many routers, it doesn't goes up immediately, but at first traffic request. In fact, only when the first ping has sent with an IP address to remote subnet, VPN goes UP.... but this and next pings has no response.
And, magic of magic, this packets became ghosts. Packet sniffer on WAN (third parts, Ubiquiti [editor's note]) don't catch anything. Like a Black Hole.
=====================
But, no answer.
This is the sound of bug. And if there's not a bug, manual don't tell anything about this lack.
...and I bought 8 pieces of these for the company. I could never have imagined such a gap.
Deluded, deluded, deluded