[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Netgear FVS318 & setting up VPN

Posted on 2004-08-20
4
Medium Priority
?
1,186 Views
Last Modified: 2013-11-16
I have an Netgear FVS318 firewall/VPN/router. I have a T1 line comming into my Cisco router, which then is going to my netgear and from there it reaches the network. When I create more than 1 VPN profile on my Netgear I lose internet connection. I can VPN in remotely but cannot access nor ping anything on the network in this state.

I need to be able to allow 5 incoming VPN connections & internet ability.

Thank you
0
Comment
Question by:rico
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:bbao
ID: 11863185
is your network topology like this:

internet <-> cisco router <-> netgear firewall <-> intranet
                 ^                 ^    ^                      ^
          public IP     private netowrk 1    private network 2

i seems your intranet is behind two networks, one is public, another is private, after two NAT translations. right?
0
 

Author Comment

by:rico
ID: 11893615
The netgear firewall also has a public IP

internet <-> cisco router <-> netgear firewall <-> intranet
                       ^                      ^              ^           ^
                  public IP             Public IP     private IP  private IP


I can now connect via VPN, but on the remote side I can ping all internal addresses except our AS/400, what my remote side lacks now is a LAN IP from the VPN

Local Network (AS/400 location) IP: 192.168.1.0

Remote Network IP: 66.xxx.xxx.0

Once I connect to the VPN through SafeNet SoftRemote I can ping every internal Local address (192.168.1.0), EXCEPT the AS/400.

When I connect my remote end is not given a Local IP to allow me access to the AS/400.

This is where I'm stuck now.

The problem I had originally was due to my recent Firmware upgrade, I neglected to reset the settings & reinput them, once that was done I could create 5 VPN setups & still use the internet on the local side.
0
 
LVL 37

Accepted Solution

by:
bbao earned 2000 total points
ID: 11895602
1) what OS is your remote side running? windows? if so please post its "ipconfig /all" result BEFORE and AFTER the VPN connected.

2) what is the AS/400's IP address, and please go and check its subnet mask again. is it same as the others? e.g. 255.255.255.0?

3) can other local workstations PING AS/400 well?
0
 

Author Comment

by:rico
ID: 12122410
Ok, good news & bad news here.....first to answer your questions

1) Windows XP are the remote stations
2) The AS/400's IP matches that of the local network
3) Yes local stations can ping the AS/400

First my problem was I kept the Virtual Adapter turned off, so I was connecting to the network, but not becoming *part* of the network. Once I did that I was able to ping the AS/400. I kept getting an error every few minutes, after 3 attempts it's disconnect me. I just shut off the option to retry. Anyway everything was just about done, when the plug was pulled out of the project. They brought in another hard drive for the old downed system (the reasoning behind getting the Netgear router) & repaired the install of Windows. So unfortunately it was incomplete.


I appreciate your help, your last comment is what got me working on the virutal adapter.

Thanks,

BTW....for the type of setup I was working with...I recommend going with a SonicWall, rather than a Netgear. It allows more configurations then the Netgear did. Plus better support. I spent a half hour the first day working with the Exchange server w/ Netgear to only be told "I don't know what Exchange is, sorry."
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This program is used to assist in finding and resolving common problems with wireless connections.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question