[waldojim]

OK, I doubt I can expect much of an answer - but here goes.

Lets assume for a moment that I need to set up a VPN whereby folks from Ohio could log into my network at home. Lets take a moment to say that it is necessary for certain tasks we wish to accomplish.

Now we move on to assume that neither end has static IPs.

And lets factor in a router (the Netgear SRXN3205) that supposedly handles those functions for me...

How do you make it work?

There are two freaking chapters on this in my manual - both go through the "wizard" without explaining what the heck it is doing! At this point I am beyond confused, and just hoping you guys can help me out.

The manual. Chapters 6 and 7 contain the relevant information.

[smax013]

waldojim, on 01 August 2012 - 03:54 PM, said:

OK, I doubt I can expect much of an answer - but here goes.

Lets assume for a moment that I need to set up a VPN whereby folks from Ohio could log into my network at home. Lets take a moment to say that it is necessary for certain tasks we wish to accomplish.

Now we move on to assume that neither end has static IPs.

And lets factor in a router (the Netgear SRXN3205) that supposedly handles those functions for me...

How do you make it work?

There are two freaking chapters on this in my manual - both go through the "wizard" without explaining what the heck it is doing! At this point I am beyond confused, and just hoping you guys can help me out.

The manual. Chapters 6 and 7 contain the relevant information.

So, what you are saying is the first sentence of Chapter 6 has some truth?!?

Quote

Configuring a VPN tunnel connection requires that all settings and parameters on both sides of the
VPN tunnel match or mirror each other precisely, which can be a daunting task.

(emphasis mine)

On a more serious note, I will see if I can find some time to read through it and see if it makes any sense to me.

This post has been edited by smax013: 03 August 2012 - 12:39 AM

[waldojim]

Daunting it most certainly is. This is actually made far worse by other factors.

First up: The client. Netgear gives you ONE license to the LITE client. This is farking stupid on a good day. Made worse, by having the thing call home to its server during install. It won't let you restart the machine first to ensure the drivers don't KILL your windows installation. Which they did. Now my license is tied up in an install of Windows that cannot be used. The bright side, is that it was in a virutal machine, so it didn't hurt any of my actual Windows installs, but the only removal option was "safe mode without network", and Netgear didn't include a DELAYED license release that would wait until the next reboot to remove the license either. This ended in a phone call to Netgear support - and Tier 3 escalation - just to free up my license. Which I am still waiting on...

Second: The settings don't make any sense. Eventually, I managed a VPN connection. And somehow, ended up with a 10.10.x.x address assigned to my client. Where did this address even come from? Netgear support couldn't even explain where this came from!!! They did give me a place to make changes, and attempt to force an IP pool... when I have another working client, I will try again. I will state, the documentation did not suggest anything like this until far later, in a little tiny blurb about manually assigning IP addresses to remote users (which is a LOT different than it sound).

Anyhow... I am currently trying to install Linux on a VM so that I can try a 3rd party client.

Anyone know where I can find an IPSEC client that is worth its salt?

[itsolutions]

if neither end has static ip then you have to ask the ip address of the destination computer each time you want to connect vpn to that computer.

[waldojim]

itsolutions, on 09 February 2013 - 02:59 AM, said:

if neither end has static ip then you have to ask the ip address of the destination computer each time you want to connect vpn to that computer.

To this end, I now have a DNS name to resolve to the IP, still no go.