Wiser over cisco anyconnect vpn on IPAD

Have a Wiser that is setup for LAN only works fine over wifi on IPAD

install cisco anyconnect VPN and then connect with 3G and VPN back to premisis.

IPAD gets and IP address on the same subnet as wiser. IPAD can ping WISER

run the WISER APP is says "network connectivity OK" and then stops. only way to continue is to "close the app" with the equiv of an "End Task"

Does the message "Network connectivity OK" mean is talking to the wiser ?

 

Hi,

Everytime I have seen wiser app with message "Network connectivity OK" is when wiser app is not able to talk to Wiser but does have a WIFI connection with some other router.

Is your wiser connected through Wan port / Bus bar / Option A OR Lan port / Option B? are you able to launch web interface of wiser from a pc while connected through your current setup?

 

I am using OPTION B.

I tried using a PC and not the IPAD

the webservice connects and asks for the username and password

and then says connecting to wiser

but then the message unable to connect appears.

 

I have attached a picture to make things clearer.

THe wiser project in piced as the gateway set as 192.168.1.1

 

I seem to recall that someone solved the problem by also connecting the Wiser WAN port to the switch. Making sure that only one DHCP was on the main router and that only a small segment was allocated to DHCP and the rest was all fixed IP.

 

I can ping the wiser no problems and it initally connects.

is all the communication just to the wiser ?? or does some go to the CNI. I http://cni address and the device has the same default gateway.

WISER IS LAN DEVICE

I have static IP on the CNI and the WISER


If I have a PC connected to 192.168.1.0/24 network all works ok
If I have a PC connected to 192.168.2.0/24 can ping wiser and cni. when you connect you get asked for the username and password and then says authenticating socket and then the "Unable to connect to wiser"

Dont think it has anything to do with the vpn if just does not like talking via a router.
Any ideas ?

 

I have to wonder if the primary router (the router for the internet provider) is forwarding the port numbers you need.

I realise that VPN is different to DDNS but I was wondering.

What happens if you use Teamviewer on a LAN based PC and connect through that ?

 

nothing to do with ports. all open

teamview accross the router works fine.

might be time for a wire shark trace..

 

What is the subnet mask ? Class C or Class B ?

 

all class C

What I am not understanding is why it initially connects (ie gets the start page and logs in ok) but then stops.

Can some one explain how the comms work in wiser. Are all comms to the wiser IP

 

I could be wrong but my interpretation was that, if you wish to pass data from 192.168.2.xxx to 192.168.1.xxx you would have advantages in using a Class-B on all sides of the configuration.

A subnet with
255.255.255.0 would in theory be unable to resolve the difference between 192.168.2.50 and 192.168.1.50 or similarly prevent a software routing table to be established in the WISER which would make sense to the remote site.

Once again I stress that I dont know your hardware or its higher capabilities.But my first move would be to open the subnet mask to class B.

 

This is not the case. This is what routers are for. If not on the local subnet then traffic gets sent to the default gateway. Opening the subnet mask to b class is not the answer

 

Correct, I am sure you've checked this already but just make sure your return path also knows how to get back to the source. Being directly attached networks it usually works as-is BUT being a virtual interface that only comes up when a VPN is setup it MIGHT be nessasary to check the routing from both ends.

Your best option is to do that sniffer trace and see what is being sent/received from wiser. If it was me I would put a PC on one side and a Laptop on the other, make sure they get the same IP's as your Wiser setup and then do the traces on both to see where things go wrong.

Good luck.

 

You can nominate which gateway is being used by which group of devices but I might be missing something in that I cant see how you are translating the VPN IP addresses. Does the external VPN address have a local address in a lookup table ?

 

It has nothing to do with the VPN. I have tested with a pc connected on the other side of the router just to rule out the VPN

see picture.

I can ping it OK so the routing and network is good.

Connect from windows PC get the wiser web screen. (so networking is working)
Then log in.
Then fails.

From IPAD on 192.168.2.0/24 network the App connects and says "NETWORK OK" then hangs.


Can some one confirm all comunication is between the flash or ipad app and the wiser IP address and not the CNI ?

Charles

 

Yes, all communication generated by the Adobe Flash and/or iPad/iPhone app is to/from the Wiser IP address. From external, the ports typically exposed are the http server (typically external is port 8080) and the Wiser port (port 8888).

 

Ports

Just want to confirm that you have opened all ports as set out on page 40 of the Wiser Home Control Installation Instructions.

Without setting these ports up correctly you will be able to VPN in & get an IP & ping the Wiser, however you will not be able to do much else.
Correct router port set up is required to get full Wiser control.

Just as a matter of conformation can you post a screen dump of the port config page?

 

NOTE: I have NO WAN CONNECTION

Forget the VPN part does not work via a router with a PC. (second diagram)

What I find confusing is why does the initial WISER screen come up.

It prompts and then accepts authentication

then says can not communicate with C-BUS.

for the first 2 steps to happen I must have the network and ports ok.

the router is NOT blocking any ports.

Can some one explain why the first bit works...

 

I have made the network simple and removed all the complexity and just have 1 router just to prove the problem. (router is just a router no firewall and no port blocking) Wireless disabled

WISER is in LAN MODE

Laptop A http://10.57.1.90 has no problems and works fine

Laptop B http://10.57.1.90 Connects. Authenticates. then says unable to connect to wiser. (see pictures in next post as reached the limit in this one)