<html>
<body>
Fabio,<br><br>
I shouldn't need a Dynamic DNS service as I have a static IP for my
Netgear router.<br><br>
So, how would I make this work with the DG834, and what additional
software do I need? The Netgear config panels don't talk about it
being a VPN pass-through - they make it sound like a VPN
endpoint.<br><br>
If I'm going to have to buy a different router to make this work, what
router do folks like? (I need it with a DSL modem built-in
too).<br><br>
Thanks,<br>
Howard<br><br>
At 05:05 AM 3/7/2011, Fabio Cigoj wrote:<br>
<blockquote type=cite class=cite cite="">Howard,<br>
<br>
The DG834 is a VPN-passthough in first place, not a VPN-endpoint, which
would force you set up a VPN server.<br>
From my gatherings, collected from qualified people like the author of
Shrew, it seems that Netgear uses quite an old VPN stack, but there are
better and worse routers.<br>
I use a 338, which, far from being perfect for my needs is a
VPN-endpoint, I managed to make work in much a similar config as the one
you need.<br>
The trick is to register with a (free) dynamic DNS service both your
router and your laptop, so every time you connect to internet the name of
your machines has the correct IP address assigned. At that point you can
use the FQDN (fully qualified domain name) in the VPN config.<br>
It looks complicated, but it is(n't)<br>
<br>
Cheers<br>
<br>
Fabio<br><br>
On Mon, Mar 7, 2011 at 1:31 PM, Howard Spindel
<<a href="mailto:howard@sci1.com">howard@sci1.com</a>> wrote:<br>
<dl>
<dd>In all likelihood, the laptop would no be directly connected to
the internet. I would be at the mercy of whomever was providing a hot
spot.<br><br>
<dd>Is there no way to get that to work? <br><br>
<br>
<blockquote type=cite class=cite cite="">
<dd>Hi,<br><br>
<dd>You laptop is directly connected to Internet ? (no NAT). Because the
NETGEAR DG834 support only the MAIN Mode... (and the VPN is
buggy...)<br><br>
<dd>Regards,<br><br>
<dd>On Mon, Mar 7, 2011 at 11:32 AM, Howard Spindel
<<a href="mailto:howard@sci1.com">howard@sci1.com</a>> wrote:
<dl>
<dd>I'm trying to setup a VPN that will allow me to connect in to my home
network (with a Netgear DG834Gv4 facing the internet) from a Windows 7
laptop.<br>
<dd>Can anyone provide a cookbook for setting the Netgear VPN settings
and ShrewSoft VPN client that would enable the two to connect? I've
been tearing my hair trying all sorts of combinations, but can't get
anything to work. The VPN trace on the Win 7 laptop shows three
attempts to send phase1 packets before it hits "resend limit
exceeded for phase1 exchange" and aborts.<br>
<dd>I am a computer programmer with 30 years experience and lots of
networking experience, but I can't figure this one out!<br>
<dd>Thanks,
<dd>Howard<br>
<dd>Netgear policy page looks like this right now:<br>
<dd>Remote VPN Endpoint: Dynamic IP address
<dd>Local LAN: IP address is set to my local subnet
<dd>Remote LAN: IP address is set to "Single PC - no subnet"
<dd>IKE direction: responder only (only choice allowed)
<dd>Exchange mode: Main mode (only choice allowed)
<dd>DH group: auto
<dd>Local ID type: WAN IP address
<dd>Remote ID type: FQDN
<dd>Encryption algorithm: 3DES
<dd>Authentication algorithm: auto
<dd>Using a pre-shared key for authentication<br>
<br>
<br>
<dd>_______________________________________________
<dd>vpn-help mailing list
<dd><a href="mailto:vpn-help@lists.shrew.net">vpn-help@lists.shrew.net</a>
<dd>
<a href="http://lists.shrew.net/mailman/listinfo/vpn-help" eudora="autourl">
http://lists.shrew.net/mailman/listinfo/vpn-help</a><br>
</blockquote>
</dl><br><br>
<dd>_______________________________________________<br>
<dd>vpn-help mailing list<br>
<dd><a href="mailto:vpn-help@lists.shrew.net">vpn-help@lists.shrew.net</a>
<br>
<dd>
<a href="http://lists.shrew.net/mailman/listinfo/vpn-help" eudora="autourl">
http://lists.shrew.net/mailman/listinfo/vpn-help</a><br><br>
</dl></blockquote></body>
<br>
</html>