[vpn-help] Netgear FVS336G connects, but fails to see behind vpn

Richard Sargent rsargent at invisibleborders.com
Mon Jul 5 12:37:06 CDT 2010


I have setup the DHCP on my Netgear FVS336G to use a 10.10.1.0 subnet. I can
connect to the VPN, but when I try to ping or use remote desktop to a
computer (10.10.1.2) behind the VPN it fails. I can ping the Netgear router
itself (10.10.1.1).

 

Any suggestions?

 

I have setup the Netgear FVS336G using the standard settings from the VPN
Wizard:

 

I am using the following Shrew Soft configuration:

 

n:version:2

n:network-ike-port:500

n:network-mtu-size:1380

n:network-natt-port:4500

n:network-natt-rate:30

n:network-frag-size:540

n:network-dpd-enable:1

n:client-banner-enable:0

n:network-notify-enable:1

n:client-wins-used:0

n:client-wins-auto:0

n:client-dns-used:0

n:client-dns-auto:0

n:client-splitdns-used:0

n:client-splitdns-auto:0

n:phase1-dhgroup:2

n:phase1-life-secs:3600

n:phase1-life-kbytes:0

n:vendor-chkpt-enable:0

n:phase2-life-secs:3600

n:phase2-life-kbytes:0

n:policy-nailed:0

n:policy-list-auto:0

n:client-addr-auto:1

s:network-host:192.168.1.42

s:client-auto-mode:disabled

s:client-iface:direct

s:network-natt-mode:enable

s:network-frag-mode:enable

s:auth-method:mutual-psk-xauth

s:ident-client-type:fqdn

s:ident-server-type:fqdn

s:ident-client-data:fvs_remote.com

s:ident-server-data:fvs_local.com

b:auth-mutual-psk:cGFzc3dvcmQ=

s:phase1-exchange:aggressive

s:phase1-cipher:3des

s:phase1-hash:sha1

s:phase2-transform:esp-3des

s:phase2-hmac:sha1

s:ipcomp-transform:disabled

n:phase2-pfsgroup:0

s:policy-list-include:10.10.1.0 / 255.255.255.0

 

 

Richard Sargent

WorldPak, Inc.

rsargent at invisibleborders.com

(703) 893-6202 x7103

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20100705/26ee057b/attachment-0001.html>


More information about the vpn-help mailing list