asked on

What next? (FVS338 Netgear tunnel site-to-site)

Have 2 office that I need to get an always on VPN connection established. Got static IP's from my ISP and have 2 FVS338 setup, configured and communicating (according to the VPN Connection Status Page my policy is IPsec SA Established)

but...can't ping between the subnets of the 2 locations.

Do I need to do anything else besides setting up the VPN tunnel...build a route table so the traffic knows where to go??

More info can be provided if you need it!

Thanx

dpk_wal

Is the IP subnet on both the locations same? If yes, then you need to change IP subnet at one of the places.

Also, make sure that you have created policies to allow the traffic from one site to another.

Thank you.

mobious74

ASKER

Main office:192.168.1.x
Sattelite: 192.168.2.x

And the policy is setup using Netgear's VPN wizard to include remote subnet address'

:) next idea?

dpk_wal

There is no need to add routes explicitly, go ahead and delete the routes and check if that makes a difference. Try pinging the remote router's interface IPs.

Please implement and update.

Thank you.

mobious74

ASKER

So I can ping the remote routers LAN ip...but nothing else on the LAN.

I can do this from both ends....

Do I need to set the Netgear as the DHCP so it's handing out IPs so it knows where each is?

dpk_wal

Do you have personal firewall on the machines behind the devices; if yes, then turn the firewall off and then check results. There is no need of any DHCP servers for VPN.

Thank you.

mobious74

ASKER

Well...no personal firewalls on the computers...

but got it working.

Had to put everything on dhcp then back to static in order for everything to be seen...not sure why.

Other than maybe not being patient enough for the tables to update...but it's working...so I'm good!

ASKER CERTIFIED SOLUTION

dpk_wal

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial