NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

HankLambert's avatar
HankLambert
Aspirant
Jul 22, 2015

FVS338 VPN wont accept client VPN on WAN port, only LAN

I have an FVS338 with a single WAN connection. We have Bright House Business Internet, and their modem is in bridge mode passing our public address to the firewall. I have a Gateway to Gateway VPN established on this firewall which works great. I am trying to set up a salesman with a VPN connection using the Netgear Prosafe VPN client and cannot get the FW to accept the connection. However, when I test it in house, the FW accepts the VPN connection immediately on the LAN side. I have gone to multiple sites outside of our network to try it and it won't connect. It seems like I must be missing something very simple, but I can't see it.

 

I set up the client following the instructions from Netgear on setting up a client to box VPN connection. Any help you can provide is greatly appreciated.

 

Thanks!

 

 

Security
Troubleshooting

5 Replies

  • adit's avatar
    adit
    Mentor
    Jul 22, 2015

    Did you check the logs on both the client and the router?

  • fordem's avatar
    fordem
    Mentor
    Jul 23, 2015

    Is there an error message when the VPN client does not connect?  Do you know where to find the logs?

    • HankLambert's avatar
      HankLambert
      Aspirant
      Jul 24, 2015

      It's fixed. Unfortunately I made so many changes that I'm not sure which one fixed it. Thanks for the replies. I'm sorry about the delay, work has been overwhelming. I went through the VPN Client logs, I only got the following entries before the tunnel closed:

      20150724 10:09:24:588 Default (SA Ikev 1Gateway-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID] [VID] 

      20150724 10:09:29:593 Default (SA Ikev 1Gateway-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID] [VID] 

      20150724 10:10:44:597 Default (SA Ikev 1Gateway-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID] [VID] 

       

      I made 1 change and got error messages about bad cookies. I'm not sure exactly what I did, but I finally got a tunnel. I then remoted into another laptop in a different city, copied the configuration, and acquired a tunnel.

       

      Thanks for the replies and pointing me to the tutorial on the logs. Now I have something to fall back on if I run into another problem.

       

      --Hank Lambert

       

      • DaneA's avatar
        DaneA
        NETGEAR Employee Retired
        Jul 26, 2015

        Hi HankLambert,

         

        I am glad that its now fixed.  :smileyhappy:  

         

         

        Regards,

         

        DaneA

        Netgear Community Team

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More