USG110 FW 4.62 and L2TP VPN with iOS 14.4.x not working
Hello all
I have been trying for a while now to connect iOS devices with 14.4.x installed over L2TP IPSec PSK to a USG110 with FW 4.62
The issue only appears on iOS devices. There are no issues connecting Windows 10 devices or Android devices (Android 11).
I have read on different apple support pages that the encryption should be changed to SHA128 or SHA256. I did this for phase 1 and 2 but with no success.
Has anybody successfully connected an iOS device with the latest version to a USG firewall with the latest firmware over L2TP?
Thanks,
Jerry
I have been trying for a while now to connect iOS devices with 14.4.x installed over L2TP IPSec PSK to a USG110 with FW 4.62
The issue only appears on iOS devices. There are no issues connecting Windows 10 devices or Android devices (Android 11).
I have read on different apple support pages that the encryption should be changed to SHA128 or SHA256. I did this for phase 1 and 2 but with no success.
Has anybody successfully connected an iOS device with the latest version to a USG firewall with the latest firmware over L2TP?
Thanks,
Jerry
0
All Replies
-
@Hi padavjer,
In our lab, we created environment for USG110 with latest version.
Can you try to create L2TP VPN setting with Quick Setup and try to connect again?
For that, in Expert mode click “Quick Setup” on the left hand side of the GUI.
Choose Remote Access VPN Setup > L2TP over IPSec Client(iOS, Windows, Android)
Best regards.0 -
Hello
Thank you for your answer. That was actually the first thing I did. It also created me a *.mobileconfig file that I was able to install on an iPad and an iPhone.
The base encryption settings from the wizard was 3DES and SHA1 (both for phase 1 and phase 2). On some apple blogs it is mentioned that the new iOS is not supporting this type of encryption/authentication anymore. That is why I changed it to AES256/SHA256. Every other configuration was not touched. After changing this the Android devices still worked...the iPhones not.
Jerry0 -
For me it works with AES128/SHA1 but not with SHA256. Is this something iOS is not supporting?0
-
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight