GS724Tv2 Preventing IPsec tunnel

Question

Hi everyone,I hope I'm posting this in the correct location. The TL;DR is that I have a GS724Tv2 that appears to be preventing IPsec tunnels from fully establishing. I can tell it to connect, I get the expected MFA phonecall, the system tells me that the connection was successfully authenticated and hangs up, but then the VPN tunnel fails to connect.&nbsp;My network path was ISP ONT -&gt; DIY pfSense Router -&gt; Netgear GS724Tv2 -&gt; Wired LAN/2 Ubiquiti AC/LR APs. Back in the end of Sept my wife's work decided to switch to using an IPsec VPN for remote access. She was unable to connect and eventually I landed on using an ISP supplied wireless router. Then they added SSL options so I switched back to running my original network. I started a new job a week ago and they also use an IPsec VPN for remote access, and I couldn't get it to work no matter what I tried. I tried my pfSense, an old Netgear router I had laying around and the ISP router, but nothing worked, After tons of troubleshooting I wound up going back to the ISP wireless router and it worked. I was confused and frustrated as to why it was suddenly working until it hit me while laying in bed last night.&nbsp;I removed the GS724Tv2 from the equation..............&nbsp;So today I tried connecting my work issued computer through the switch and the VPN didn't work. I moved it back to the LAN port on the ISP router and it works just fine. I have dug through the menu for the switch and I can't find anything that should be preventing the VPN from connecting. Does anyone here have any idea as to what in the switch's configuration could possibly be killing the tunnel? I'm well beyond angry and frustrated and at this point I just want to understand "why". Lol!Thanks!

DaneA · Answer

DevilishBooster,
&nbsp;
Welcome to the community! :)&nbsp;
&nbsp;
Is the GS724Tv2&nbsp;just being used as an unmanaged switch?
&nbsp;
Are there VLANs or ACLs configured on the&nbsp;GS724Tv2?
&nbsp;
What is the current firmware version of the GS724Tv2?&nbsp;
&nbsp;
&nbsp;
Regards,
DaneA
NETGEAR Community Team

DevilishBooster · Answer

Thankyou for replying DaneA&nbsp;I have a GS724Tv2, not the GS724TPv2, and yes it is being used as an unmanaged switch at this time. I had a VLAN configured at one point, but as part of my troubleshooting I removed the VLAN and then went a step further and performed a factory reset to make sure it was a vanilla config. I have never configured an ACL. The firmware is at the latest version that I have been able to find, 1.0.3_35.

jcdutton · Answer

DevilishBooster&nbsp;wrote:Hi everyone,&nbsp;So today I tried connecting my work issued computer through the switch and the VPN didn't work. I moved it back to the LAN port on the ISP router and it works just fine. I have dug through the menu for the switch and I can't find anything that should be preventing the VPN from connecting. Does anyone here have any idea as to what in the switch's configuration could possibly be killing the tunnel? I'm well beyond angry and frustrated and at this point I just want to understand "why". Lol!Thanks!Hi,&nbsp;It might be MTU problems.Try setting MTU on your PC to something low like 1000.See if IPSEC VPN then works.If it then works, try increasingly larger MTU values until it stops working, then leave it at the highest value that worked.&nbsp;Kind Regards&nbsp;James&nbsp;&nbsp;

Forum Discussion

GS724Tv2 Preventing IPsec tunnel

3 Replies

Related Content

Création du tunnel

Loop detection and prevention

Prevent iphone from 5GHz

CM2050V - Latest Firmware Preventing 2.5 Gbps Passthrough on Ethernet Port

GS724Tv2 Invalid access IP address

NETGEAR Academy

ProSupport for Business