Access internet through FVS336G from FVS318G in VPN Tunnel

[Longevity]

Hi,

I have searched all over internet for a solution but without success. There are similar cases but often without a posted solution. Anyways, I am hoping someone here could help me.

What I am trying to do is to tunnel all internet traffic (from FVS318G - 192.168.1.1) to one router (FVS336G - 192.168.2.1). VPN tunneling is setup and connected. I can ping 192.168.2.1 and vice versa. I see traffic between the two routers but when accessing internet, the traffic still routes through their respective local VPN router. In other words, internet traffics for all devices (PC etc) behind FVS318G still go through it even when VPN tunnel is established.

I have given a PC a static IP address (192.168.1.101) with subnet (255.255.255.0) and gateway (192.168.2.1). When the internet is set to 192.168.2.1, which is the remote gateway IP, there is no internet. VPN tunnel is still up. When set back to 192.168.1.1, there is internet access. Everything else is set as default.

Here are my setting for each router.

FVS318G
IP: 192.168.1.1
Dynamic IP (WAN) using FQDN (through dns.com)

IKE Policy:
Mode Configuration: No
Policy Name: MyVPN
Direction: Both
Exchange Mode: Main
Local Identifier: FQDN (xxx.dyndns.org)
Remote Identifier: XXX.XXX.XXX.XXX
Encryption: AES-256
Authentication: SHA-1
Pre-shared key: xxxxxxxx
DH Group: Group 2
SA-Lifetime: 28800
Enable Dead Peer: Yes
Detection Period: 120s
Reconnect: 3 try
XAuth Configuration: None

VPN Policy
Policy Type: Auto
Remote end point: IP Address XXX.XXX.XXX.XXX
Enable NetBIOS: Yes
Enable Keep Alive: Yes
Ping IP Address: 192.168.2.1
Detection Period: 120s
Reconnect count: 3
Traffic Selection
Local IP: Subnet
Start IP: 192.168.1.0
End IP: 0.0.0.0 (greyed out)
Subnet Mask: 255.255.255.0
Remote IP: Subnet (greyed out)
Start IP: 192.168.2.0
End IP: 0.0.0.0 (greyed out)
Subnet Mask: 255.255.255.0
Manual Policy (all greyed out)
Auto Policy Parameter
SA Life time: 3600s
Encryption AES-256
Integrity: SHA-1
PFS Key Group: DH Group2
Selected IKE: MyVPN

----------------------
FVS3336G
IP: 192.168.2.1
Static IP (WAN)

IKE Policy:
Mode Configuration: No
Policy Name: MyVPN
Direction: Both
Exchange Mode: Main
Select Local Gateway: WAN1
Local Identifier: Local Wan IP
Remote Identifier: FQDN (xxx.dyndns.org)
Encryption: AES-256
Authentication: SHA-1
Pre-shared key: xxxxxxxx
DH Group: Group 2
SA-Lifetime: 28800
Enable Dead Peer: Yes
Detection Period: 120s
Reconnect: 3 try
XAuth Configuration: None

VPN Policy
Policy Type: Auto
Remote end point: FQDN (xxx.dyndns.org)
Enable NetBIOS: Yes
Enable Rollover: No
Enable Keep Alive: Yes
Ping IP Address: 192.168.1.1
Detection Period: 120s
Reconnect count: 3
Traffic Selection
Local IP: Subnet
Start IP: 192.168.2.0
End IP: 0.0.0.0 (greyed out)
Subnet Mask: 255.255.255.0
Remote IP: Subnet (greyed out)
Start IP: 192.168.1.0
End IP: 0.0.0.0 (greyed out)
Subnet Mask: 255.255.255.0
Manual Policy (all greyed out)
Auto Policy Parameter
SA Life time: 3600s
Encryption AES-256
Integrity: SHA-1
PFS Key Group: DH Group2
Selected IKE: MyVPN

[adit]

I am not aware of this ever working via site to site IPSec in Netgear routers.

SSL VPN supports full tunnel mode, but that is PC to router.