Go Back   NETGEAR Forums > Home Products > Wireless Networking Products for SOHO applications > Wireless Router & Modem Gateways > RangeMax Next Routers > DGND3700 Discussion Forums
Reload this Page connect Win7 VPN client to DGND3700 server
Register for a forum nickname FAQ Calendar Search Today's Posts Mark Forums Read

Reply
 
Thread Tools Display Modes
  #1  
Old April 29th, 2012, 01:22 PM
Dick_W Dick_W is offline
Junior Member
NETGEAR User
  
Join Date: Apr 2012
Posts: 57
Dick_W is on a distinguished road
Default connect Win7 VPN client to DGND3700 server
Having No Joy connecting Windows7 (or Android 2.3.6 or 3.1.?) VPN clients to DGND3700 VPN server.

Typical DGND3700 log from Win7 connection attempt (the Android logs also get to INVALID_ID_INFORMATION):

Quote:
Sun, 2012-04-29 14:27:44 - [myvpn] responding to Main Mode from unknown peer 192.168.1.34
Sun, 2012-04-29 14:27:44 - [myvpn] sent MR3, ISAKMP SA established
Sun, 2012-04-29 14:27:44 - [myvpn] Dead Peer Detection (RFC 3706): not enabled because peer did not advertise it
Sun, 2012-04-29 14:27:45 - [myvpn] sending encrypted notification INVALID_ID_INFORMATION to 192.168.1.34:500
Sun, 2012-04-29 14:27:46 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:27:49 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:27:54 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:02 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:18 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:34 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:49 - [myvpn] received Delete SA payload: deleting ISAKMP State #26
The VPN policies for this connection, from /etc/ipsec.conf, with WAN IP obscured:

Quote:
conn myvpn
rekeymargin=0
rekeyfuzz=100%
esp=3des
authby=secret
left=xx.xxx.xxx.xxx
leftid=xx.xxx.xxx.xxx
leftsubnet=192.168.1.0/24
right=%any
ikelifetime=28800s
keylife=3600s
ike=3des
pfs=no
dpddelay=10
dpdtimeout=10
dpdaction=restart
leftsourceip=192.168.1.254
auto=add
I'm guessing, from some other spelunking, that right=%any means that any remote ID should be accepted. I've tried this with every combination of Authentication methods Win7 offers (PAP, CHAP, MS-CHAPv2, EAP...) and with garbage, a valid ID on the far net, and the DGND3700 admin/password. Still No Joy.

Any insights/thoughts appreciated.
Reply With Quote
  #2  
Old April 29th, 2012, 01:32 PM
jmizoguchi's Avatar
jmizoguchi jmizoguchi is online now
Senior Member
NETGEAR Fanatic
  
Join Date: Feb 2007
Location: Kentucky, USA
Posts: 89,319
jmizoguchi is on a distinguished road
Default Re: connect Win7 VPN client to DGND3700 server
andriod will not work of the ipsec client

win7 native vpn client will not work

see my site for "url links" for all the compatible VPN client.
__________________
VPN Case Study (www.vpncasestudy.com)
Our Second To None VPN Related Setup Case Study
"One Stop Solution To Your Netgear VPN Connectivity"
*Visit the site for Non-VPN related Doc & Links* [Windows & Mac user/support]

Most Other Useful Docs -"General Technical Documentation", "Router Reset", "Router Setup", "Print Server Tips", "Remote Admin"
"Wireless Tips"

Forum Policy

June Mizoguchi-i....@vpncasestudy.com
Reply With Quote
  #3  
Old April 29th, 2012, 02:07 PM
Dick_W Dick_W is offline
Junior Member
NETGEAR User
  
Join Date: Apr 2012
Posts: 57
Dick_W is on a distinguished road
Default Re: connect Win7 VPN client to DGND3700 server
I was afraid you were going to say that. Any particular reasn, do you suspect, that NETGEAR refuses to work with such mainstream platforms?
Reply With Quote
  #4  
Old April 29th, 2012, 02:09 PM
jmizoguchi's Avatar
jmizoguchi jmizoguchi is online now
Senior Member
NETGEAR Fanatic
  
Join Date: Feb 2007
Location: Kentucky, USA
Posts: 89,319
jmizoguchi is on a distinguished road
Default Re: connect Win7 VPN client to DGND3700 server
Have no clue
iPhone is supported in prosafe routers
__________________
VPN Case Study (www.vpncasestudy.com)
Our Second To None VPN Related Setup Case Study
"One Stop Solution To Your Netgear VPN Connectivity"
*Visit the site for Non-VPN related Doc & Links* [Windows & Mac user/support]

Most Other Useful Docs -"General Technical Documentation", "Router Reset", "Router Setup", "Print Server Tips", "Remote Admin"
"Wireless Tips"

Forum Policy

June Mizoguchi-i....@vpncasestudy.com
Reply With Quote
  #5  
Old April 29th, 2012, 03:52 PM
Dick_W Dick_W is offline
Junior Member
NETGEAR User
  
Join Date: Apr 2012
Posts: 57
Dick_W is on a distinguished road
Default Re: connect Win7 VPN client to DGND3700 server
Screwed around with shrew client for two hours. Never even got any logging of anything on the VPN server side. Who knows what its problem was? "Negotiation timeout"...

Life is too short. I guess it wasn't meant to be. Delete, uninstall, cleanup, move on...

Thanks for your help.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


All times are GMT -8. The time now is 04:06 PM.

NETGEAR Discussion Forums - Top