Question about D-Link Express EtherNetwork DI-804HV Router (DI804HVB)

1 Answer

Site to Site VPN between DI 804HV and Sonicwall TZ190.

We are not able to establish site to site vpn between Dlink vpn router and Sonicwall utm box.
Error logs on dlink.
WAN Type: Static IP Address (V1.44)
Display time: Tuesday January 29, 2008 14:10:12
Tuesday January 29, 2008 14:10:01 Send IKE (INFO) : delete [192.168.0.0|202.70.200.22]-->[202.70.195.14|10.22.1.0] phase 2
Tuesday January 29, 2008 14:10:01 IKE phase2 (IPSec SA) remove : 192.168.0.0 <-> 10.22.1.0
Tuesday January 29, 2008 14:10:01 inbound SPI = 0xc000010, outbound SPI = 0x0
Tuesday January 29, 2008 14:10:01 Send IKE Q1(QINIT) : 192.168.0.0 --> 10.22.1.0
Tuesday January 29, 2008 14:10:01 Receive IKE Q2(QRESP) : [10.22.1.0|202.70.195.14]-->[202.70.200.22|192.168.0.0]
Tuesday January 29, 2008 14:10:05 Blocked access attempt from 202.70.86.58:49025 to TCP port 135
Tuesday January 29, 2008 14:10:05 Receive IKE Q2(QRESP) : [10.22.1.0|202.70.195.14]-->[202.70.200.22|192.168.0.0]
Tuesday January 29, 2008 14:10:06 IKED re-TX : QINIT to 202.70.195.14
Tuesday January 29, 2008 14:10:11 IKED re-TX : QINIT to 202.70.195.14

Error logs on Sonicwall

01/29/2008 01:50:27.336 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:50:34.096 - Notice - Network Access - TCP connection dropped - 202.70.251.198, 1326, WAN - 202.70.195.15, 445, WAN - TCP SMB
01/29/2008 01:50:37.304 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:50:57.256 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:50:58.256 - Info - VPN IKE - IKE Responder: Received Quick Mode Request (Phase 2) - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:51:03.144 - Notice - Network Access - ICMP packet dropped - 202.70.202.126, 15898, WAN - 202.70.195.14, 8, WAN - ICMP Echo, Code: 0
01/29/2008 01:51:03.256 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:51:07.656 - Notice - Network Access - UDP packet dropped - 172.25.2.75, 49371, WAN - 224.0.0.252, 5355 - UDP Port: 5355
01/29/2008 01:51:08.240 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:51:18.208 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:51:28.192 - Warning - VPN IKE - Received packet retransmission. Drop duplicate packet - 202.70.200.22, 500 - 202.70.195.14, 500 - VPN Policy: IOLHDQ
01/29/2008 01:51:35.576 - Notice - Network Access - TCP connection dropped - 68.205.153.225, 38696, WAN - 202.70.195.14, 22117, WAN - TCP Port: 22117

Posted by lalitahire on

  • 2 more comments 
  • eborisov Apr 09, 2008

    Hello,



    I am having identical problem with identical configuration: D-Link to SonicWall with the same errors. Openning port 500 is not the solution unfortunately.



    Thank you



    Eugene

  • Anonymous Nov 19, 2008

    hello, i have a similar problem but with a CISCO, i can conect one tunnel, but the others don´t make conection, i have 7 tunnels in the DI 804, and is the same configuration of the tunnel up.

  • Anonymous Jan 01, 2009

    yes the same

  • Anonymous Mar 29, 2014

    changed email password at request of gmail. i was requested to supply a telephone number to receive a number to complete the secure number. i received a 4 digit number. when i placed the 4 digit number in the box i noticed it requested a 6 digit number. i could not complete this entry. i can no longer use this gmail account.

×

Ad

1 Answer

Anonymous

Open port udp 500

Posted on Apr 08, 2008

Ad

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

Vpn site to site


you need to create an IPSec tunnel between the router and windows server 2003 (run secpol.msc). From the dlink router, you need to set the IP address of the VoIP gateway as part of the LAN that is included on the VPN tunnel. Since it is the server 2003 that has a static IP, you need to initiate the connection from the Dlink router.

Jun 23, 2009 | D-Link Express EtherNetwork DI-LB604...

1 Answer

How to routing router static ip address and local


Use the Sonicwall configuration wizard..

Please find below is to configure what ever you want.

Setup Wizard - This wizard will help you quickly configure the SonicWALL to secure your Internet connection. Once completed, you can use the SonicWALL Web Management Interface for additional configuration.

Registration & License Wizard - This wizard will help you register you and your firewall with mysonicwall.com and obtain licenses for additional Security Services features.

PortShield Interface Wizard - Segment and configure the integrated managed LAN switch of the SonicWALL.

Public Server Wizard - Quickly configure your SonicWALL to provide public access to an internal server.

VPN Wizard - Create a new site-to-site VPN Policy or configure the WAN GroupVPN to accept connections from the SonicWALL Global VPN Client
Thanks
..

Apr 22, 2009 | SonicWALL TZ170 (01-ssc-5740) Firewall

1 Answer

VPN tunnel between two DLINK VPN DIR-130


- Logon to the configuration page of your D-Link.
- Go to Advanced tab
- And Click on Firewall Settings on the left side
- Under that look for Application Gateway Level at the bottom and you must uncheck at the box on it and click on save settings at the top.

Mar 02, 2009 | D-Link (DIR-130) Router

1 Answer

Dlink WBR 2310 cannot connec to internet


Try to bypass the router and connect to your modem. Make sure you have Internet connection.
>If you have Internet connection. connect back your modem to the router.
>access the configuration page of your router.
>If you are given a specific IP by your Internet Service Provider, use that one.
>Login to your Dlink (type in on the address bar 192.168.0.1)
>Click Setup and Internet > Click on Manual Configure
>My Internet connection would be Static IP
>Type in your IP address, Subnet Mask, Default Gateway, Primary and Alternate DNS
>Click on Save Setting on top.

but if your Internet Service Provider did not provide you those informations
> Under My Internet connection Type choose DYNAMIC IP
>Click on Clone Your PC MAC address
>Click on Save Settings
>If it ask you to reboot, click on Reboot.

>At the very top click on Status
>Under Status look for WAN
>Under WAN look for IP address
>If you have values beside from zero it means you have Internet connection otherwise, call your dlink manufacturer for manual configuring your router for Internet connection.

Jan 30, 2009 | D-Link 802.11g Wireless Router WBR-1310...

2 Answers

I want to create site to site vpn with sonicwall tz170+ 2003serv


Complete documentation is available on the below link

http://www.sonicwall.com/us/support/3134.html#heading_3139

Nov 17, 2008 | Sonicwall TZ 170 NFR (01-ssc-5564)...

1 Answer

No wan light


If no wan light bypass the dlink router and check if ethernet cable connected to wan port is working. Once you are able to go online through modem connect cable to WAN if light does not go on log into oruter and clone mac address and save settings.If doesnt work powercycle router and turn modem on first then router next if doesnt work upload latest firmware.

Sep 05, 2008 | D-Link AirPlus DI-524 Wireless Router

1 Answer

Cannot connect with SonicWall VPN Client with GigaFast EE420 R


sonic is sitting on the gateway. so dont matter where u are still u cant get outside

Jul 29, 2008 | Computers & Internet

1 Answer

Wireless access point connecting to router...


The question is how do you want to cable the netgear and what do you want to do with it.

If you cable a lan port of the DLink to the Netgear WAN port you will have two subnets that must be addressed differently. Opening up and forwarding the ports for XBox could be difficult.

I believe cabling the Netgear as an access point makes more sense. CONFIGURE THE NETGEAR BEFORE CABLING. This is achieved by wiring a lan port on the DLINK to a lan port on the netgear and ignoring the wan port on the netgear. This will involve configuring several router items that should be completed before the devices are cabled together. You will need to remember the Netgear's new network address and probably use a static IP address from a computer to configure it back into being a router after these changes, if required. Or reset the configuration to factory default following the users guide.

First the Netgear needs DHCP turned off as it will be part of the DLink's network and not a separate subnet - the DLink will perform the DHCP services.

Second the LAN side of the Netgear will need a static IP address in the DLink's network. This is where it may get tricky for you. Verify the DLink has an IP Address like 192.168.0.1 and a subnet mask like 255.255.255.0. That means all IP Addresses in your network start 192.168.0.??? where ??? is unique for your network. Verify your DLink router has a set of addresses reserved in the DHCP setup for dynamic address assignment these addresses like 192.168.0.100 to 192.168.0.199. If the above is true or with the information you extract from you DLink router you need to determine where you can create static IP addresses -- in the above case 192.168.0.2 to 192.168.0.99 are available. You need to assign one of those like 192.168.0.2 to the LAN side of the NetGear Router. You will probably want to assign another to the XBox == like 192.168.0.20. You will probably need to deal with opening ports or placing the XBox into the DMZ of the DLINK router which will require a static IP Address.

Now cable the devices

When considering the XBox Configuration below the DLink is the router that must be configured to allow the open ports or DMZ access to the Xbox == the netgear is not functioning as a router in this configuration.


Check out the following links on XBox Configuration if required.

The second link may be the best to start with.

The generic connection and configuration document
http://www.microsoft.com/windowsxp/using/networking/setup/xbox.mspx

This is a good description of possible router2.gif options.
http://www.ianarchbold.com/xboxlive/index.html

If you need assistance setting this up in your environment leave a comment on this problem and I will respond.

Dec 27, 2007 | NetGear MR314 (MR314NA) Wireless Router

1 Answer

How can I establish a bridge with WRTSL54GS Router?


To bridge yoyr router.. contact your dsl internet service provider (isp) and ask then to brigde your modem.. and get the exact user name and passwd.. and config your router for a pppoe mode and that will fix your problem..

Dec 05, 2007 | Linksys Wireless-G WRT54GS Router...

Not finding what you are looking for?
D-Link Express EtherNetwork DI-804HV Router (DI804HVB) Logo

5,240 people viewed this question

Ask a Question

Usually answered in minutes!

Top D-Link Computers & Internet Experts

Mike

Level 3 Expert

4369 Answers

Jeffrey Groves
Jeffrey Groves

Level 3 Expert

573 Answers

RockTheHood

Level 2 Expert

176 Answers

Are you a D-Link Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...