NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
VPN MacOS client setup
Working to setup up a IPv4 Client-to-Gateway VPN tunnel for MacOS clients configuring the MacOS native VPN client (Network Settings, VPN Interface, Cisco IPSec type). It appears I have been successful, using an IKE Policy (though no VPN Policy appears to exists) and Mode_Config to define the pool of IPv4 addresses assigned to connecting clients. (This pool is separate from the pool of local addresses assigned by the VPN Firewall's DHCP service.) I can connect the client and see the assigned IPv4 address within the pool. I can send/receive email and browse through the tunnel.
But I cannot see any other resources on the local network behind the VPN Firewall, such as my NAS, or share screen or files with local computers, all which I can do with client directly connecting to the local network. I wonder if the VPN connection is not added to the default VLAN, so cannot see local devices connected on the VLAN. I would greatly appreciate any direction to solve this problem of device access over the tunnel!
- Ken M
I apologize for this is the only time I got back on this. Is your network setup as well as the settings on your FVS336Gv3 and MAC OS X Sierra the same as indicated on the article below?
Mac OS X VPN Client install with ProSAFE VPN Firewall/Router
Regards,
DaneA
NETGEAR Community Team
16 Replies
Replies have been turned off for this discussion
Hi morrisonkena,
Kindly answer the questions below:
a. Was it working fine before?
b. Does same problem occurs if you will established a VPN tunnel using other MACbook or iMAC?
c. What is the specific MAC OS are you using?
d. What is the current firmware of the FVS336Gv3?
Kindly post screenshots of the settings you have configured on the FVS336Gv3 and the MAC OS VPN client.
Regards,
DaneA
NETGEAR Community Team
Hi Dane,
Thank you for the reply.
I am setting this up for the first time, so I can't say it was working fine before. I have tried the VPN tunnel on only one MacBook Pro. But I plan to try today or tomorrow on an iOS device as well.
The current firemware of the FVS336Gv3 is 4.3.4-2, which I believe is current. S/N 3NJ252530021B .
The client environment is a MacBook Pro, 13", 2016, Four Thunderbolt 3 ports, 16 GB 2133 MhZ LPDDR3 memory, 1 TB SSD disk, 3.3 GHz Intel Core i7 processor, Intel Iris Graphics 550 w/ 1536 MB. The MacBook is running MacOS Sierra, 10.12.3.
Thank you and regards,
- Ken (morrisonkena)
I apologize for this is the only time I got back on this.
Kindly check if the VPN policy is configured to allow access to all of the network and not just the client. To check, on the web-GUI of the FVS336Gv3, go to VPN > IPSec VPN > VPN Policies then select the corresponding VPN policy then click Edit. The start IP Address in the Traffic Selection section should have 0 in the last octet, to allow access to the entire network.
Also, kindly ensure that the local IP address of the MacOS native VPN client is in a different LAN subnet than what is indicated on the LAN subnet of FVS336Gv3, if this is not possible you should use Mode Config. For example, if the existing LAN subnet of the FVS336Gv3 is on 192.168.1.x network, then the LAN IP address of the computer where you are using the MacOS native VPN client should be on a different LAN subnet such 10.10.10.x or 192.168.9.x network.
Regards,
DaneA
NETGEAR Community Team
Hi Ken -
I would be interested in hearing about your experiences.
I tried the same type of connection a few months back (we have an SRX5308), with assistance of Netgear support (there is a KB article that describes the setup), and though it worked (including accessing resources - perhaps you need to do something about DNS resolution), the connection would always terminate after 5 minutes,even if I was actilvely using it. I tried changing various settings (I believe I opened a support ticket), but was never successful in resolving this. It became a lower priority (because we have alternate methods of accessing the VPN) but it remains an issue for us.
I was also trying to connect iOS devices (iPhone & iPad) and got the same 5 min disconnect behavior. Here is the KB article for that:
http://kb.netgear.com/app/answers/detail/a_id/25836?cid=wmt_netgear_organic
Hi sqv,
I configured my FVS336Gv3 and my Mac's VPN client using a Netgear Application Notes document titled "How to Configure UTM with Apple OSX and iOS Devices for IPsec VPN", dated 2011. I can't recall how I stumbled upon this document but you could search for it.
As I said, I can connect from my Mac laptop to my FVS336Gv3 over the VPN, and I can send/receive email and web browse, but I cannot yet access LAN resources, such as my network storage. I am certain the solution is some configuration adjustment on the FVS336Gv3 (perhaps DNS resolution as you suggest) but I have not had the time to experiment and have not received any reply from Netgear or any other community member.
What I have not experienced is the timeouts you are seeing. The tunnel appears to stay up until I close it.
I have not yet configured iOS devices, as that is less critical to me that MacOS. Thank you for the KB article!
- Ken
I just want to follow-up on this. Were you able to try the suggestions?
Regards,
DaneA
NETGEAR Community Team
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
