[vpn-help] Having trouble with VPN

Josh O'Guin Josh.OGuin at OARcorp.com
Tue Nov 23 10:01:51 CST 2010


I am currently using a Windows XP Home edition laptop with ShrewSoft VPN Client 2.1.7 installed.  I am connecting to an offsite Adtran NetVanta 3448. The NetVanta 3448 is configured with the settings recommended from the shrew support website.   I load the policy and access manager says that I am connected.  My laptops ipconfig -all shows the virtual adapter with a 192.168.5.1 address with the correct dns server, but I cannot ping anything on the internal network that I'm trying to connect to.    Any help with this would be great.  The access manager is giving me this output:

Under the Connect tab:

Config loaded for site '64.89.121.74'
Configuring client settings....
Attached to key daemon...
Peer configured
Iskamp proposal configured
Esp proposal configured
Client configured
Local id configured
Remote id configured
Pre-shared key configured
Bringing up tunnel....
Network device configured
Tunnel enabled

Under the Network tab:

Security associations
                Established - 0
                Expired         - 0
                Failed            - 1

Tunnel:
                Status                                   - Connected
                Remote Host                     - 64.89.121.74
                Transport Used                 -NAT-T/IKE|ESP
                IKE Fragmentation           -Disabled
                Dead Peer Detection      -Enabled

I am also using the Trace Utility and capturing this:

Under the Secuirty Policy tab:

8              IN           64.89.121.74/32                192.168.22.85/32              NONE

9              OUT       192.168.22.85/32              64.89.121.74/32                NONE

10           IN           192.168.22.1/332              192.168.5.1/32                   NONE

11           OUT       192.168.5.1/32                   192.168.22.1/32                NONE

12           IN           192.168.0.0/24                   192.168.5.1/32                   IPSEC                     ESP/TUNNEL/64.89.121.74-192.168.22.85/UNIQUE:1

13           OUT       192.168.5.1/32                   192.168.0.0/24                   IPSEC                     ESP/TUNNEL/192.168.22.85-64.89.121.74/UNIQUE:2


Under the Firewall Rules tab:

0              2/2         RECV     DIVERT                 IP/UDP                 64.89.121.74:IKE               192.168.22.85:85                               1

1              2/2         RECV     DIVERT                 IP/UDP                 65.89.121.74:NATT           192.168.22.85:NATT                        42

2              3/0         SEND     MIRROR               ARP                        ANY                                       ANY                                                       4

3              4/9         SEND     ACCEPT                IP                            ANY                                       64.89.121.74                                       0

4              4/11       SEND     ACCEPT                IP                            ANY                                       192.168.22.1                                       0

5              4/13       SEND     DIVERT                 IP                            192.168.5.1                         192.168.0.0/24                                   0


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20101123/fd9430c9/attachment-0001.html>


More information about the vpn-help mailing list