NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
FVS338 routing over VPN
Is there a way to route LAN traffic over a Gateway to Gateway VPN? I want to have some IP addresses route through the VPN out the GW of the remote VPN location. (easily done on more advanced fir...
Hi B3dr0ck,
What you want to achieve is possible but it is not something supported solely on the device. You would need to setup a proxy server at the remote side, and change the local machines gateway (or use a route) to route traffic to that server, over the VPN, and then to out the WAN of the remote device and then back again. The FVS338 only provides remote subnet access. This is why a Proxy Server is needed, as the FVS338 does not have that functionality.
As far as the layer 2, though it says NetBIOS, it is only layer 3 traffic that will cross the VPN on the FVS338 (NetBIOS over TCP/IP). Layer 2 traffic has never worked and is not implemented. Regarding this, you may submit a feature request via NETGEAR Support or you may post it on the Idea Exchange for Business here.
But even then, the FVS338 is already EOL or End-Of-Life and it would not get that feature if the engineering team adds it. The feature request might be possibly implemented to NETGEAR ProSAFE VPN firewall devices that are not yet EOL.
Regards,DaneA
NETGEAR Community Team
This would allow traffic from one VPN to another sub VPN. This does not do anything for what I am trying to do.
I am trying to route specific traffic across the VPN to the other VPN as a default gateway. So that some identified traffic on one network uses the internet connection on the opposite side VPN.
I want the VPN Firewall 1 to be a proxy for some (or all if necessary) internet bound traffic from LAN2 over the VPN.
It would seem all you would need to do is put one routing statement in with a source of LAN2 IP with a Gateway of the opposite side VPN, but the only routing that can be added is a destination IP address, and I can't figure a way to do a default/catch all/wildcard address.
This basically works with the VPN client, but not with the site the site VPN.
Hi B3dr0ck,
What you want to achieve is possible but it is not something supported solely on the device. You would need to setup a proxy server at the remote side, and change the local machines gateway (or use a route) to route traffic to that server, over the VPN, and then to out the WAN of the remote device and then back again. The FVS338 only provides remote subnet access. This is why a Proxy Server is needed, as the FVS338 does not have that functionality.
As far as the layer 2, though it says NetBIOS, it is only layer 3 traffic that will cross the VPN on the FVS338 (NetBIOS over TCP/IP). Layer 2 traffic has never worked and is not implemented. Regarding this, you may submit a feature request via NETGEAR Support or you may post it on the Idea Exchange for Business here.
But even then, the FVS338 is already EOL or End-Of-Life and it would not get that feature if the engineering team adds it. The feature request might be possibly implemented to NETGEAR ProSAFE VPN firewall devices that are not yet EOL.
Regards,
DaneA
NETGEAR Community Team
Thanks for the reply.
That is what I thought. Some outside clarity helps.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
