Re: VPN Security Associations Quick Mode Connection

From: Steven L Umbach (n9rou_at_n0-spam-for-me-comcast.net)
Date: 08/30/04 

Date: Mon, 30 Aug 2004 21:35:16 GMT

The ipsec policy that you configure on the W2K computer must be in tunnel mode when
you create it which also requires you enter a tunnel IP address endpoint, which you
will be prompted for after you start the wizard to create a new policy. The link
below explains how to configure an ipsec tunnel mode policy in Windows 2000 which you
may be able to use as a guideline. You also need to have the same pre-shared key on
the router and the computer.--- Steve

<anonymous@discussions.microsoft.com> wrote in message
news:2f5201c48eca$e954e710$a601280a@phx.gbl...
> Sorry for my ignorance but where or what is tunnel mode.
> I don't see anything that can be set to tunnel mode on
> the router.
>
> Thanks for the assistance
>
>>-----Original Message-----
>>I had that working with my Netgear FVS318 a while back
> but don't use it anymore.
>>There used to be an article on the Netgear website as
> how to configure it. Make sure
>>you are using tunnel mode, and that the router and Ipsec
> policy have the same local
>>subnets configured. I remember that gave me a problem
> because I had a subnet
>>configured on one end and an IP address in that subnet
> on the other that did not
>>work. --- Steve
>>
>>
>>"Darth Sideous" <anonymous@discussions.microsoft.com>
> wrote in message
>>news:2d6a01c48eb0$e2265dd0$a601280a@phx.gbl...
>>>I have a vpn router that has been configured as the
>>> manufacturer has suggested and creates a Main Mode
>>> Connection. However I can not get it to make the Quick
>>> Mode connection. I have been using the built in VPN
>>> client in windows along with configuring the IPSEC
> policy
>>> as recommended by the manufacturer. No luck.... I
> have
>>> tried this on both a Linksys BEFVP41 and a Netgear
> FVS318
>>> but with the same result.....It would seem something
> else
>>> needs to be configured on the workstation/client but I
>>> can not get an answer.
>>>
>>> Any help would be appreciated.
>>
>>
>>.
>>

Relevant Pages

  • Re: Enable IPSEC on a Specific NIC only?
    ... with some subnet and drop all packets from others. ... If this needs to be done on many machines, ... IPsec policy cannot be done through group policy, ...
    (microsoft.public.security)
  • Re: Configured IPSec Policy is not working.
    ... As for the RRAS filters themselves, they're fairly basic, requiring ipsec ... and encryption will depend on the security settings of the connection. ... why exactly do you want to use l2tp without any ipsec protection rather ... > What is the default filter rule and filter policy ...
    (microsoft.public.win2000.ras_routing)
  • Re: Microsoft IPSec via group policy
    ... I have tried setting IPSec up in group policy however I'm running into some ... I go to the XP client and do ...
    (Security-Basics)
  • Re: Microsoft IPSec via group policy
    ... I have tried setting IPSec up in group policy however I'm running into some ... I go to the XP client and do ...
    (Security-Basics)
  • Re: IPSec and Group Policy
    ... Using netdiag I can now see the IPSec policies applied from the AD GP. ... reveal that the Group Policy and IPSec policy are in place. ... Further when I run the first test between the two computers (logged in as ...
    (microsoft.public.win2000.security)