Hiya,

I have a 2800 one end and a DG834 the other. I'm trying t configure LtoL VPN but it's just not working.

The 2800 has a LOT more options than the DG834 so it must be the way it's configured.

Has anyone managed to get this woking with these 2 routers?

I dont have a 2800 but I hav a 2820 that is connected to a DG384.

The remote DG384 is using dynamic DNS, as it does not have a fixed IP. I initiate a connection from my 2820 on demand.

Draytek VPN
3DES with authentication
IKE Phase 1 = Main Mode
IKE phase 1 = 3DES_SHA1_G2
IKE Phase 2 = 3DES_SHA1
IKE phase 1 lifetime = 14400
IKE phase 2 lifetime = 14400
Local ID = FQDN on router (EG router.foobar.com)

Netgear
Remote VPN Endpoint = FQDN (which needs to be the same as the Local ID above)
mode = main mode.
Local Identity Type = WAN IP Address
Remote Identity Type = IP Address
IKE responder only
Enable PFS
SA Life Time needs to be the same at each end (I use 14400)

I know it's a bit late to reply (!), but I never got this working.

Can anyone shed some more light into this? I.e. what DH settings should be used on the NETGEAR side (i'd like to have both directions configured, not just out of one and in for the other).

Thanks