Reply
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Re: connect Win7 VPN client to DGND3700 server
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2012-04-29
02:22 PM
2012-04-29
02:22 PM
connect Win7 VPN client to DGND3700 server
Having No Joy connecting Windows7 (or Android 2.3.6 or 3.1.?) VPN clients to DGND3700 VPN server.
Typical DGND3700 log from Win7 connection attempt (the Android logs also get to INVALID_ID_INFORMATION):
The VPN policies for this connection, from /etc/ipsec.conf, with WAN IP obscured:
I'm guessing, from some other spelunking, that right=%any means that any remote ID should be accepted. I've tried this with every combination of Authentication methods Win7 offers (PAP, CHAP, MS-CHAPv2, EAP...) and with garbage, a valid ID on the far net, and the DGND3700 admin/password. Still No Joy.
Any insights/thoughts appreciated.
Typical DGND3700 log from Win7 connection attempt (the Android logs also get to INVALID_ID_INFORMATION):
Sun, 2012-04-29 14:27:44 - [myvpn] responding to Main Mode from unknown peer 192.168.1.34
Sun, 2012-04-29 14:27:44 - [myvpn] sent MR3, ISAKMP SA established
Sun, 2012-04-29 14:27:44 - [myvpn] Dead Peer Detection (RFC 3706): not enabled because peer did not advertise it
Sun, 2012-04-29 14:27:45 - [myvpn] sending encrypted notification INVALID_ID_INFORMATION to 192.168.1.34:500
Sun, 2012-04-29 14:27:46 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:27:49 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:27:54 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:02 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:18 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:34 - [myvpn] sending encrypted notification INVALID_MESSAGE_ID to 192.168.1.34:500
Sun, 2012-04-29 14:28:49 - [myvpn] received Delete SA payload: deleting ISAKMP State #26
The VPN policies for this connection, from /etc/ipsec.conf, with WAN IP obscured:
conn myvpn
rekeymargin=0
rekeyfuzz=100%
esp=3des
authby=secret
left=xx.xxx.xxx.xxx
leftid=xx.xxx.xxx.xxx
leftsubnet=192.168.1.0/24
right=%any
ikelifetime=28800s
keylife=3600s
ike=3des
pfs=no
dpddelay=10
dpdtimeout=10
dpdaction=restart
leftsourceip=192.168.1.254
auto=add
I'm guessing, from some other spelunking, that right=%any means that any remote ID should be accepted. I've tried this with every combination of Authentication methods Win7 offers (PAP, CHAP, MS-CHAPv2, EAP...) and with garbage, a valid ID on the far net, and the DGND3700 admin/password. Still No Joy.
Any insights/thoughts appreciated.
Message 1 of 5
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2012-04-29
02:32 PM
2012-04-29
02:32 PM
Re: connect Win7 VPN client to DGND3700 server
andriod will not work of the ipsec client
win7 native vpn client will not work
see my site for "url links" for all the compatible VPN client.
win7 native vpn client will not work
see my site for "url links" for all the compatible VPN client.
Message 2 of 5
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2012-04-29
03:07 PM
2012-04-29
03:07 PM
Re: connect Win7 VPN client to DGND3700 server
I was afraid you were going to say that. Any particular reasn, do you suspect, that NETGEAR refuses to work with such mainstream platforms?
Message 3 of 5
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2012-04-29
03:09 PM
2012-04-29
03:09 PM
Re: connect Win7 VPN client to DGND3700 server
Have no clue
iPhone is supported in prosafe routers
iPhone is supported in prosafe routers
Message 4 of 5
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2012-04-29
04:52 PM
2012-04-29
04:52 PM
Re: connect Win7 VPN client to DGND3700 server
Screwed around with shrew client for two hours. Never even got any logging of anything on the VPN server side. Who knows what its problem was? "Negotiation timeout"...
Life is too short. I guess it wasn't meant to be. Delete, uninstall, cleanup, move on...
Thanks for your help.
Life is too short. I guess it wasn't meant to be. Delete, uninstall, cleanup, move on...
Thanks for your help.
Message 5 of 5
Announcements
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more