NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
VPN IPsec work fine but i cant see any other PC
hi ,
my Problem :
I connect my Notebook via VPN IPsec to my Netgear srx5308 !
I use IKE + Policies ( no modeConfig ).
The connecttion work fine but i cant ping any other PC and also it isnt possible to ping the SRX !
WAN1 217.xxx.xxx.xxx
VLan1
192.168.1.0 / 255.255.255.0
- SRX -> 192.168.1.1
VLan 2
192.168.21.0 / 255.255.255.0
- PC1 -> 192.168.21.100
- DS1812 -> 192.168.21.250
VPN-Client SHREW ( and also Netgear Client , same Situation)
- VPN-Client -> 172.xx.xx.2 (vodafone / iphone share )
( Active IPsec SA(s) .. )
( i can chnage it .. to self selcted IP 10.0.10.2 etc. but also no effect )
Why i cant ping any other device !?
any idea ... ?
PS:
more info
SRX - VPN Poilcies
Traffic Selection
192.168.1.1
255.255.255.0
Remote IP : ANY
FQDN : remote.com
my Problem :
I connect my Notebook via VPN IPsec to my Netgear srx5308 !
I use IKE + Policies ( no modeConfig ).
The connecttion work fine but i cant ping any other PC and also it isnt possible to ping the SRX !
WAN1 217.xxx.xxx.xxx
VLan1
192.168.1.0 / 255.255.255.0
- SRX -> 192.168.1.1
VLan 2
192.168.21.0 / 255.255.255.0
- PC1 -> 192.168.21.100
- DS1812 -> 192.168.21.250
VPN-Client SHREW ( and also Netgear Client , same Situation)
- VPN-Client -> 172.xx.xx.2 (vodafone / iphone share )
( Active IPsec SA(s) .. )
( i can chnage it .. to self selcted IP 10.0.10.2 etc. but also no effect )
Why i cant ping any other device !?
any idea ... ?
PS:
more info
SRX - VPN Poilcies
Traffic Selection
192.168.1.1
255.255.255.0
Remote IP : ANY
FQDN : remote.com
43 Replies
- Read my LAN Subnets NOT to Use tutorial. Change traffic selector to .0 and try again. Just like a regular VPN, you need additional VPN policies for each additional LAN subnet.
- hi ,
i also try it with .0
same result !
if you use the wizard he fill it auto. with 192.168.1.1 ...
but i wasnt sure its correct .. thats the reason why i also try it with .0 !
any other idea !??
and thx for the tip with ... single polic. for each VLan !! - Test with Internet connection other than iPhone. Your carrier may be blocking VPN. You have to test from outside of your LAN as well.
- hmmm..
ok , but it also dosent work with a client from landline !
and i dont think that the carrier block VPN ...
but i will check this also .. again
but today it will be not possible - PS:
but the connection are working well !!!
normaly the carrier maybe can block to build up a VPN !!
but he cant block the connection to my internal ... network PCs!
or iam wrong !? - I would suggest posting screenshots of the setup and log copies. If you can't ping the SRX, then the setup is wrong.
- see my FVS336 and shrew case study
- ;)
i used the case study !!
but this dosent help me !
the connection work fine with Netgear Client and also with shrew !
2 sec. and i am connected ! But i cannt see the other PCs ...
at you case study are no infos how i can solve such problems or why i face such problems ! - You need to trust opposite ip on pc's firewall.
- hmm
you are sure !?
firewall are not installed on synology ds1812 and how i should do it on the srx5308 ... normally a ping after a VPN connection are online should be possible ! or not ? i actived ping ok from Lan and Wan at srx !
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
