thought i'd put this up cos netgear are linux based and in the spirit of
sharing etc....
setting a VPN between a sonicwall router and a netgear FVS318 was a bit
tricky.
mainly because the netgear FVS318 VPN router can not connect directly to
ADSL.
i have a netgear DG632 which acts as an initial (ADSL enabled) router - this
is connected on the WAN side to ADSL and on the LAN side to the FVS318's
WAN side - and then the LAN side of the FVS318 is the local network.
then on the DG632 the DMZ option is ticked and the (WAN) address of the
FVS318 (192.168.0.2) is set as the DMZ server. this means that all traffic
which hits the DG632 is immediately forwarded to the FVS318.
for set up first of all refer to
http://www.commodon.com/support/sonicwall/index.htm
to find a pdf with excellent instructions
however - on the latest netgear FVS318 (v3) it is not possible to manually
set the Local Identity Type - it always defaults to the IP address assigned
- in my case 192.168.0.2
this means that when the negotiation is carried out the sonicwall gets the
wrong local identifier on the FVS318 side - it is obviously set to the
external IP address which is on the DG632.
the trick is to go to the sonicwall configuration and find the
'IPSec Secondary Gateway Name or Address:'
- put in there the WAN ip address of the FVS318 (i.e. 192.168.0.2)
it seems that if the first identity fails the sonicwall will try the second
one.
obviously it needs the first one to find the location of the router - but
then falls back to using the second one when authenticating.
HTH kev
http://www.freewayprojects.com
