[vpn-help] (no subject)

Kevin VPN kvpn at live.com
Wed Mar 20 21:21:57 CDT 2013 

On 03/20/2013 10:14 PM, Kevin VPN wrote:
> On 01/30/2013 09:11 PM, Kevin VPN wrote:
>> On 01/29/2013 01:10 PM, Jim Markey wrote:
>>> I am using a netgear FVS318G VPN firewall/router. I configure
>>> multiple computers with Shrew soft client. First user connects and
>>> establishes tunnel. Second user connects, establishes tunnel and
>>> kicks the first user off. Third user connects and kicks second user
>>> off...... I have configured individual IKE and VPN policies for each
>>> individual based on the IP address assigned to the virtual adapter.
>>> FVS318G supports 5 simultaneous connections but I can only get 1. I
>>> also configured 1 client with Netgear VPN client..it attached and
>>> when I connected with Shrew client both stayed attached. I then
>>> connected second Shrew client, and first Shrew client got bounced
>>> again, while the Netgear client stayed connected. Any Ideas ?
>>>
>>
>> Hi Jim,
>>
>> Are your Shrew clients perhaps getting bounced because they're all
>> configured to use the same Local Identity (which I think is used in the
>> inital contact/Phase 1 negotiations) when connecting to the Netgear?
>>
>> If you're using XAUTH to identify the users for purposes of assigning
>> the different IP addresses to the virtual adapters, that happens kind of
>> in between Phase 1 and Phase 2, so by then the Netgear may have already
>> decided that it's dealing with a re-connection (because the Local
>> Identity info is the same) rather than a new connection.
>>
>> Just a guess.

On 02/07/2013 11:57 AM, Jim Markey wrote:
 > I assigned a different subnet/IP address to each client. Still only
 > get one Shrew user at a time. Use the Netgear VPN client with same
 > setup and get 5 users
 >

Hi Jim,

Are you sure that Shrew is using exactly the same configuration for user 
identification as the Netgear client?  I would be looking at the General 
tab->Local Host and Authentication tab->Local Identity sections in the 
Shrew configuration and comparing them to the Netgear configurations.

More information about the vpn-help mailing list