Solved

Netgear FVS318 & setting up VPN

Posted on 2004-08-20
4
1,175 Views
Last Modified: 2013-11-16
I have an Netgear FVS318 firewall/VPN/router. I have a T1 line comming into my Cisco router, which then is going to my netgear and from there it reaches the network. When I create more than 1 VPN profile on my Netgear I lose internet connection. I can VPN in remotely but cannot access nor ping anything on the network in this state.

I need to be able to allow 5 incoming VPN connections & internet ability.

Thank you
0
Comment
Question by:rico
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:Bing CISM / CISSP
ID: 11863185
is your network topology like this:

internet <-> cisco router <-> netgear firewall <-> intranet
                 ^                 ^    ^                      ^
          public IP     private netowrk 1    private network 2

i seems your intranet is behind two networks, one is public, another is private, after two NAT translations. right?
0
 

Author Comment

by:rico
ID: 11893615
The netgear firewall also has a public IP

internet <-> cisco router <-> netgear firewall <-> intranet
                       ^                      ^              ^           ^
                  public IP             Public IP     private IP  private IP


I can now connect via VPN, but on the remote side I can ping all internal addresses except our AS/400, what my remote side lacks now is a LAN IP from the VPN

Local Network (AS/400 location) IP: 192.168.1.0

Remote Network IP: 66.xxx.xxx.0

Once I connect to the VPN through SafeNet SoftRemote I can ping every internal Local address (192.168.1.0), EXCEPT the AS/400.

When I connect my remote end is not given a Local IP to allow me access to the AS/400.

This is where I'm stuck now.

The problem I had originally was due to my recent Firmware upgrade, I neglected to reset the settings & reinput them, once that was done I could create 5 VPN setups & still use the internet on the local side.
0
 
LVL 37

Accepted Solution

by:
Bing CISM / CISSP earned 500 total points
ID: 11895602
1) what OS is your remote side running? windows? if so please post its "ipconfig /all" result BEFORE and AFTER the VPN connected.

2) what is the AS/400's IP address, and please go and check its subnet mask again. is it same as the others? e.g. 255.255.255.0?

3) can other local workstations PING AS/400 well?
0
 

Author Comment

by:rico
ID: 12122410
Ok, good news & bad news here.....first to answer your questions

1) Windows XP are the remote stations
2) The AS/400's IP matches that of the local network
3) Yes local stations can ping the AS/400

First my problem was I kept the Virtual Adapter turned off, so I was connecting to the network, but not becoming *part* of the network. Once I did that I was able to ping the AS/400. I kept getting an error every few minutes, after 3 attempts it's disconnect me. I just shut off the option to retry. Anyway everything was just about done, when the plug was pulled out of the project. They brought in another hard drive for the old downed system (the reasoning behind getting the Netgear router) & repaired the install of Windows. So unfortunately it was incomplete.


I appreciate your help, your last comment is what got me working on the virutal adapter.

Thanks,

BTW....for the type of setup I was working with...I recommend going with a SonicWall, rather than a Netgear. It allows more configurations then the Netgear did. Plus better support. I spent a half hour the first day working with the Exchange server w/ Netgear to only be told "I don't know what Exchange is, sorry."
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now