#1  
Old January 10th, 2007, 09:35 AM
Garnerd Garnerd is offline
Junior Member
NETGEAR Newbie
 
Join Date: Jan 2007
Posts: 1
Garnerd is on a distinguished road
Default Prosafe VPN client to Netgear DG834G

Hi,

I am having a few problems setting this up and I think im not alone in this either!

My Client is a Windows XP machine running the Prosafe v10 client. This is behind a NAT firewall which is connecting to a remote DG834G router running v4.3.

The conifguration for the netgear router is as follows which works :-
Remote VPN endpoint - Dynamic IP
Local Lan - 192.168.3.1 subnet 255.255.255.0 (the Local address range of the target router)
Remote Lan - Single Address 192.168.1.82 (the local address of the client im connecting from which is behind a router - hence a private IP).
Exchange - Main Mode
Local Identity type - WAN IP
Remote identity type - IP Address
Encryption Algorithm - 3DES
Preshared key - *********
SA Life Time - 3600
Enable PFD not checked

The prosafe Client
Remote Party Identity and Addressing
ID Type IP Subnet
Subnet 192.168.3.1
Mask 255.255.255.0
Protocol All
connect using secure Gateway Tunnel
IDType IP Address
*.*.*.* (the IP address of the router above)

Security Policy tab - Main Mode
PFS not checked
Enable Replay detection checked

My Identity tab - Select Certificate set to None
Pre-shared Key set to shared key of router policy
ID type - IP Address
Virtual Adapter disabled

Authentication tab -
MEthod - Pre-Shared Key
Encrypt Alg Triple Des
Hash Alg SHA-1
SA Life - unspecified
Key Group - Group 2

Key Exchange - SA Life Unspecified
Comrpession None
Encapsulation Protocal (ESP)
Encrypt Alg Triple Des
Gash Alg SHA-1
Encapsulation tunnel

I can succesfully connect if I specify the IP of the client in the VPN policy on the router i.e. Single IP from x.x.x.x (the private lan ip of the client not the WAN ip) however this will constantly change depending where the PC is so how do I get it to allow for the client to connect without specifiying the IP address? Choosing the Single PC, No subnet option doesnt work or settign a subnet range i.e. 192.168.1.1 with 255.255.255.0.

The error I get on the router is
responding to main mode from unknown peer x.x.x.x (WAN IP of the router the client is behind not the IP of the target router)
no suitable connection for peer 192.168.1.82 (Local IP of the client - behind router with ip above) - sending notification INVALID_ID_INFORMATION to 0.0.0.0:500

Has anyone managed to do this without specifying a Client IP? If so could they let me know how?

Many Thanks in advance
Dan.
Reply With Quote
  #2  
Old January 16th, 2007, 09:40 AM
Netgear1-9A-Z's Avatar
Netgear1-9A-Z Netgear1-9A-Z is offline
Senior Member
NETGEAR Addict
 
Join Date: Nov 2006
Posts: 2,875
Netgear1-9A-Z is on a distinguished road
Default Re: Prosafe VPN client to Netgear DG834G

Moving to 802.11g routers.
Reply With Quote
  #3  
Old February 26th, 2007, 08:05 AM
JasonWills JasonWills is offline
Junior Member
NETGEAR Newbie
 
Join Date: Feb 2007
Posts: 2
JasonWills is on a distinguished road
Default Re: Prosafe VPN client to Netgear DG834G

Hi Dan, did you ever get this sorted?

i have the same issue and am a bit stuck as to how to get round it.

Thanks For Any Help

Jason
Reply With Quote
  #4  
Old February 26th, 2007, 09:15 AM
jmizoguchi's Avatar
jmizoguchi jmizoguchi is offline
Junior Member
 
Join Date: Feb 2007
Location: Kentucky, USA
Posts: 0
jmizoguchi is an unknown quantity at this point
Default Re: Prosafe VPN client to Netgear DG834G

vist my site.. don't DG case for vpn client but most setup are same as other profafe routers
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



All times are GMT -8. The time now is 02:35 PM.