<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>
Hi,<div><br></div><div>I'm using Shrew 2.2 beta2 to connect from Win7 x64 to a Netgear FVS318v3, but I'm getting a negotiation timeout.</div><div><br></div><div>The same machine (dual boot) under Ubuntu 12.04 connects fine with 2.2beta2 client.</div><div><br></div><div><b>What I've tried:</b></div><div>I exported shrew configuration from working Ubuntu client and imported it into Win7 client, so shouldn't be any problem there.</div><div><span style="font-size: 10pt; ">I've switched off both ZoneAlarm and Windows Firewall. No joy.</span></div><div>I've tried running VPN Access Manager as Administrator. No joy.</div><div><div>In case it's relevant: previously had openVPN and VirtualBox installed. I uninstalled them, rebooted Windows, uninstalled Shrew, rebooted Windows, reinstalled Shrew, rebooted Windows. Still no joy.</div><br class="Apple-interchange-newline"></div><div><b>Other information:</b></div><div>Local Area Connection Properties dialog does have a 'Shrew Soft Lightweight Filter' in the Properties dialog, and the checkbox next to it is ticked.</div><div><span style="font-size: 10pt; ">Task Manager lists the following related processes as running: ipseca.exe, ipsecc.exe, ipsect.exe</span></div><div><span style="font-size: 10pt; ">When trying to connect, Wireshark (running on the same Win7 box) doesn't detect any UDP/TCP packets on port 500, nor any packets on isakmp filter (but does detect other packets e.g. web browsing).</span></div><div>I do see isakmp packets on Ubuntu Wireshark when connecting from Ubuntu shrew client.</div><div>The FVS318 and Win7 box are on different subnets, but the connection works under Ubuntu from same machine, so I doubt the router is the problem.</div><div><br></div><div>So it seems something under Win7 x64 is stopping the packets getting out onto the network, but I'm at a loss to explain it.</div><div><br></div><div><div>I've been Googling for hours, but can't find a solution. Any help anyone could give would be gratefully received.</div><div><br></div><div>Greg</div></div><div><br></div><div><b>VPN Connect log:</b></div><div><div>attached to key daemon ...</div><div>peer configured</div><div>iskamp proposal configured</div><div>esp proposal configured</div><div>client configured</div><div>local id configured</div><div>remote id configured</div><div>pre-shared key configured</div><div>bringing up tunnel ...</div><div>negotiation timout occurred</div><div>tunnel disabled</div><div>detached from key daemon</div></div><div><br></div><div><b>VPN Trace IKE Service log:</b></div><div><div>12/09/16 20:09:09 ii : ipc client process thread begin ...</div><div>12/09/16 20:09:09 <A : peer config add message</div><div>12/09/16 20:09:09 <A : proposal config message</div><div>12/09/16 20:09:09 <A : proposal config message</div><div>12/09/16 20:09:09 <A : client config message</div><div>12/09/16 20:09:09 <A : local id 'fvs_local_grg' message</div><div>12/09/16 20:09:09 <A : preshared key message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : remote resource message</div><div>12/09/16 20:09:09 <A : peer tunnel enable message</div><div>12/09/16 20:09:09 ii : local is SHREW SOFT compatible</div><div>12/09/16 20:09:09 ii : local is NETSCREEN compatible</div><div>12/09/16 20:09:09 ii : local is SIDEWINDER compatible</div><div>12/09/16 20:09:09 ii : local is CISCO UNITY compatible</div><div>12/09/16 20:09:09 >= : cookies 8219a4a29c1c6360:0000000000000000</div><div>12/09/16 20:09:09 >= : message 00000000</div><div>12/09/16 20:09:14 -> : resend 1 phase1 packet(s) [0/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:19 -> : resend 1 phase1 packet(s) [1/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:24 -> : resend 1 phase1 packet(s) [2/2] 10.0.0.10:500 -> 192.168.0.100:500</div><div>12/09/16 20:09:29 ii : resend limit exceeded for phase1 exchange</div><div>12/09/16 20:09:29 ii : phase1 removal before expire time</div><div>12/09/16 20:09:29 DB : removing tunnel config references</div><div>12/09/16 20:09:29 DB : removing tunnel phase2 references</div><div>12/09/16 20:09:29 DB : removing tunnel phase1 references</div><div>12/09/16 20:09:29 DB : removing all peer tunnel refrences</div><div>12/09/16 20:09:29 ii : ipc client process thread exit ...</div></div><div><br></div><div><br></div><div><br></div><div><br></div> </div></body>
</html>