Hi David,
To me it looks like you have a policy mismatch ("No policy found" error in the
Netgear log) which is preventing Phase2 negotiations from completing properly.
Double check that the IP ranges that you have told Shrew to tunnel match those
that the gateway expects.
> From: [email protected]
> To: [email protected]
> Date: Tue, 11 Jan 2011 10:57:03 -0500
> Subject: [vpn-help] FVS338 tunnel established but can't ping remote
> IP's/SSH/DNS etc.
>
>
> Shrew Soft Version 2.1.5
> Netgear FVS338
> Ubuntu 11.04
>
> Below is my shrew soft client config:
>...
> s:policy-list-include:10.1.1.0 / 255.255.255.0
>
>
> Netgear FVS338 VPN Log
> ...
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Responding to new phase 2
> negotiation: x.yy.57.73[0]<=>xx.yy.216.191[0]_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Using IPsec SA configuration:
> 10.1.1.0/24<->10.1.2.0/24_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] No policy found: 10.1.2.150/32[0]
> 10.1.1.0/24[0] proto=any dir=in_
> 2011 Jan 11 10:00:09 [FVS338] [IKE] Failed to get proposal for
> responder._
>
_______________________________________________
vpn-help mailing list
[email protected]
http://lists.shrew.net/mailman/listinfo/vpn-help
