NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

SCCHANG's avatar
SCCHANG
Tutor
Dec 11, 2022
Solved

Site to site iPSec VPN with two BR500 VPN router

Need help! We're an elementary non-profit school with 2 small campuses. We have been using Netgear SRX5308 router in one campus and a Netgear BR500 router on the other campus. It has been running fine for the last 3 years+ with an IPSec VPN. We recently had problems with the SRX5308 and replaced it with an used BR500. Although we set up the replacement BR500 with the same settings as the other one, it would not establish the VPN. We checked and tried the following already without any success: 1) Firmware on both routers are the same at V5.10.0.5. 2) We had a slight custom Phase 1 and 2 VPN parameter settings but changed it to the default ones per the Netgear user manual. 3) We changed each site as Initiator and Responder combinations 4) Both routers are behind Comcast modem/router and we tried opened the firewall completely.

 

We would appreciate any suggestions what we may have missed.

 

Thank you in advance for the help!

 

Sun

Firmware
Hardware
Installation
  • DaneA's avatar
    DaneA
    Dec 21, 2022

    SCCHANG,

     

    You may want to downgrade the firmware to an earlier version in order to isolate the problem.  Just be reminded that downgrading the firmware will not have the enhancements and bug fixes of the later (or latest) firmware version.  

     

    You can check the older BR500 firmware version here.


    If ever you are not yet aware as this might be related with the VPN issue you encountered, let me share the article below:


    Security Advisory for Multiple Security Vulnerabilities on BR200 and BR500, PSV-2021-0286

     


    Regards,

     

    DaneA

    NETGEAR Community Team

7 Replies

Replies have been turned off for this discussion
    • SCCHANG's avatar
      SCCHANG
      Tutor
      Dec 19, 2022

      Hi DaneA,

      You replied back to me before about my problem. At about the same time, I received a reply message from another Netgear support admin which I overlooked. I thought about it a few days ago (I'm travelling and currently out of the country now.) as the message came with a link to Version 5.6.... firmware without any other information. At that time I didn't think more about it as I have been running Ver 5.10.... firmware already. Is it possible that I should download an older version firmware to make the site to site iPSec VPN work? I searched on the Netgear community site and also in my email account, but could not locate that message again. Could you please help to confirm that:

      1. Should I download the older version firmware?

      2. What version is it? I can only remember it is ver 5.6... but don't know the exact version.

      3. Would there be any problem if I replace the latest firmware with an older firmware?

      Thank you in advance for your help.

      Sun

       

       

      • DaneA's avatar
        DaneA
        NETGEAR Employee Retired
        Dec 21, 2022

        SCCHANG,

         

        You may want to downgrade the firmware to an earlier version in order to isolate the problem.  Just be reminded that downgrading the firmware will not have the enhancements and bug fixes of the later (or latest) firmware version.  

         

        You can check the older BR500 firmware version here.


        If ever you are not yet aware as this might be related with the VPN issue you encountered, let me share the article below:


        Security Advisory for Multiple Security Vulnerabilities on BR200 and BR500, PSV-2021-0286

         


        Regards,

         

        DaneA

        NETGEAR Community Team

    • SCCHANG's avatar
      SCCHANG
      Tutor
      Dec 13, 2022

      DaneA,

      I read through the entire manual section of the Netgear BR500 IPSec VPN set up section and also looked at that KB article you suggested. Everything matched between the two BR500 routers and I double checked a few times already to make sure I didn't miss anything. With the BR500 IPSec settings previously worked with the Netgear SRX 5308 router which I copied to the second BR500, it should then worked, but it didn't. Changing to the default IPSec VPN settings suggested by the manual which is basically the same as the KB article but it still did not work...

      Did anyone have similar experience or have two BR500 working site to site in a IPSec VPN connection? I would appreciate sharing with me what you have/configure to get it working.

       

      Thank you for the help.

       

      Sun

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More