Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

2 VPN Tunnels using FVS318v3, endpoints cannot "see" each other

2 VPN Tunnels using FVS318v3, endpoints cannot "see" each other

2 VPN Tunnels using FVS318v3, endpoints cannot "see" each other

Hello everyone,

I have a Netgear FVS318v3 router that I have created 2 separate VPN tunnels with.  I will try to lay out the networks below:

Segment A: network (application server)
Segment B: network (FVS318v3)
Segment C: network (remote client)

Segment A has a server with an application on it that Segment C needs access to.  Segment B has a VPN tunnel established to Segment A and Segment C.  There is no server for Segment B or Segment C and the router for Segment B is set up to provide DHCP.

I do not have access to Segment A's firewall.  It is controlled by a vendor that I worked with to get the VPN tunnel established between Segment A and Segment B.  I can ping Segment A from Segment B.

Segment C is a remote laptop client using Netgear's ProSafe VPN Client.  In the ProSafe VPN client, I was able to set up a virtual IP address of (because it cannot be on the same segment as Segment B).  I can establish VPN connection between Segment C and Segment B.  Segment C can ping the internal address of Segment B's Netgear router and it can ping computers inside the network.  The Netgear router can ping Segment C's virtual IP address of  Segment B's Netgear router can ping Segment A's gateway and server that holds the application needed by Segment C (the network).  The problem is, Segment C cannot ping Segment A...

I have set up several static routes listed below:

Destination: Gateway: Metric 2
Destination: Gateway: Metric 2
Destination: Gateway: Metric 2

It seems that no matter how I try to set up a static route from Segment C to Segment A, I cannot get them to communicate.

If anyone has any ideas on how to fix this or what I am doing wrong / overlooking, please feel free to let me know.  I am at my wits end and I have been working on this for a few days now.

Thanks in advance,

RE: 2 VPN Tunnels using FVS318v3, endpoints cannot "see" each other

I have no idea if you will need access to the router you do not have access to but here goes.

I bet 172.21.6.x is allowed to see 192.167.127.x with a subnet mask of, (or /24) this allows clients from to to see into the 172.21.6.x subnet.  You want a mask of (or /16) this would allow to to see into 172.21.6.x.

That would include your 192.168.126.x client, which your current mask does not.

If the subnet 172.21.6.x has other VPN peers, this greedy approach will not work as I grabbed all of the 192.168.x.x range.  Someone with a good subnet calculator could tell you the smallest mask that would work.


I tried to remain child-like, all I acheived was childish.

RE: 2 VPN Tunnels using FVS318v3, endpoints cannot "see" each other

Thanks for the reply Jimbopalmer,

The admin for the network won't give access to network because he has multiple networks accessing the server.

I did talk to him before and he said he granted access to the network for the network and the network...  I don't know if the issue is the virtual IP on the client computer is with a virtual netmask is - but I did try to set up the network at but I could not get a VPN connection.

Any other ideas?

Thanks again for the reply.

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close