NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
IP-Sec VPN not working anymore after firmware upgrade
I've been using this router for several weeks having configured several IP-Sec VPNs and they were all running well. Several VPNs were done with other Netgear Routers and also Sophos UTM.
After upgrading the router to the latest firmware version 4.3.4.-2 no VPN is working anymore.
Even a firmware downgrade did not resolve the problem.
I changed almost all possible parameters but i cannot make it work anymore.
Here a sample of the error log:
ue Jan 03 14:43:17 2017 (GMT +0100): [FVS336GV3] [IKE] INFO: Using IPsec SA configuration: 192.168.11.0/24<->192.168.8.6-192.168.8.7
Tue Jan 03 14:43:17 2017 (GMT +0100): [FVS336GV3] [IKE] INFO: FOUND
Tue Jan 03 14:43:01 2017 (GMT +0100): [FVS336GV3] [IKE] ERROR: Phase 1 negotiation failed due to time up for 85.93.207.129[4500]. 24a832a5878da190:b03d8a59ac711ff9
Tue Jan 03 14:42:59 2017 (GMT +0100): [FVS336GV3] [IKE] ERROR: Phase 2 negotiation failed due to time up waiting for phase1. ESP 85.93.207.129->192.168.178.2
Tue Jan 03 14:42:53 2017 (GMT +0100): [FVS336GV3] [IKE] ERROR: Could not find configuration for 88.207.169.115[4500]
Tue Jan 03 14:42:51 2017 (GMT +0100): [FVS336GV3] [IKE] INFO: Received Malformed packet of payload length 39027 and total length 40.
Tue Jan 03 14:42:40 2017 (GMT +0100): [FVS336GV3] [IKE] ERROR: Could not find configuration for 83.99.95.63[500]
Tue Jan 03 14:42:31 2017 (GMT +0100): [FVS336GV3] [IKE] INFO: Received Malformed packet of payload length 39027 and total length 40.
Tue Jan 03 14:42:30 2017 (GMT +0100): [FVS336GV3] [IKE] ERROR: Could not find configuration for 83.99.95.63[500]
Is there anybody that can help ?
Thanks a lot
Serge
Hi DaneA
Sorry for my late reply as i have been sick lately.
Well Netgear sent me a new device. I installed all stored VPN settings and they are working fine. Then i did the firmware upgrade as well and the VPNs are still working.
So i think there must have been a hardware problem. I sent the other device back and probably Netgear will investigate the problem.
So they made me really happy as a customer and for sure i will remain a customer.
Thanks again to all you you involved to resolve may problems
Regards,
Serge
13 Replies
Replies have been turned off for this discussion
Hi Sergek,
Welcome to the community! :)
Kindly answer the questions below:
a. Have you tried to delete the IKE and VPN policies then re-create it via the VPN Wizard after upgrading the firmware?
b. Did you factory reset the FVS336Gv3 after doing a firmware upgrade?
Regards,
DaneA
NETGEAR Community Team
Hi DaneA
Yes i did delete all Policies and reconfigured them completely new. I did not use the wizzard to configure the VPNs but did all manually.
I also did the factory reset and put my saved configs o the router, this did not work either.
Now i am able to reconnect a VPN with aonther Netgear device such as the FVS336GV2 but it still does not work with my Sophos UTM9
Thanks for your help
Regards,
Serge
It seems you have isolated the problem. Since you got the VPN tunnel established between the FVS336Gv2 and FVS336Gv3 then it means that got the configuration right on both VPN firewall routers. You might need to check the VPN configuration on the Sophos UTM.
Regards,
DaneA
NETGEAR Community Team
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
