[vpn-help] FVS338 tunnel established but can't ping remote IP's/SSH/DNS etc.
kevin vpn
klmlk at hotmail.com
Tue Jan 11 12:28:46 CST 2011
Hi David,
To me it looks like you have a policy mismatch ("No policy found" error in the Netgear log) which is preventing Phase2 negotiations from completing properly. Double check that the IP ranges that you have told Shrew to tunnel match those that the gateway expects.
> From: david.borges at skitter.tv
> To: vpn-help at lists.shrew.net
> Date: Tue, 11 Jan 2011 10:57:03 -0500
> Subject: [vpn-help] FVS338 tunnel established but can't ping remote IP's/SSH/DNS etc.
>
>
> Shrew Soft Version 2.1.5
> Netgear FVS338
> Ubuntu 11.04
>
> Below is my shrew soft client config:
>...
> s:policy-list-include:10.1.1.0 / 255.255.255.0
>
>
> Netgear FVS338 VPN Log
> ...
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Responding to new phase 2
> negotiation: x.yy.57.73[0]<=>xx.yy.216.191[0]_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Using IPsec SA configuration:
> 10.1.1.0/24<->10.1.2.0/24_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] No policy found: 10.1.2.150/32[0]
> 10.1.1.0/24[0] proto=any dir=in_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Failed to get proposal for
> responder._
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20110111/527bb2df/attachment-0002.html>
More information about the vpn-help
mailing list