Android 12 and ikev2

2456

All Replies

  • Agor76
    Agor76 Posts: 39  Freshman Member
    First Anniversary 10 Comments Friend Collector
    DavideV said:
    Hello everybody,
    guys i have the same s22 ultra with the same problem.

    I was about to buy the USG20-VPN mod but after reading this thread I stopped. 
    So I ask you for an update on the situation. Is it possible to set ikev2 psk directly in android vpn section? 
    I ask it because I would have bixby routinely manage the activation and deactivation of the vpn depending on whether or not it is under the same Wifi. And above all, avoid using third-party applications because they consume a train of battery. Thank you
    Hello DavideV,

    So far, I didn't manage to get the S22 Ultra's VPN built in client working. It works flawless using Strongswan app as I wrote several time on here. But I had a chance to try an updated Google Pixel phone and it works. Using same settings, same parameters Google Pixel works fine, S22 doesn't ! So, according to my opinion, it shouldn't be a zyxel related issue.
    Not sure if strongswan vpn get along with Bixby

    Agor
  • DavideV
    DavideV Posts: 3
    hi and thanks for the support.
    In practice they are in canvas pants if you are unable to enter the parameters in the s22 and actually bixby cannot activate / deactivate the tunnel from an app.
    But does ikev2 PSK also have problems?
    Could you tell me maybe with a screenshot what mistake it makes?
    So I post it on the samsung community. Thank you
  • Peppino
    Peppino Posts: 127  Ally Member
    First Anniversary 10 Comments Friend Collector
    So is there any conclusion for IKEv2, my S21 phone wouldn't connect too. L2TP works just fine.
  • PeterUK
    PeterUK Posts: 2,651  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    Peppino said:
    So is there any conclusion for IKEv2, my S21 phone wouldn't connect too. L2TP works just fine.
    You may need to play around with the Key group and encryption
    VPN Server role IKEv2 broken as far as I can tell — Zyxel Community
  • Peppino
    Peppino Posts: 127  Ally Member
    First Anniversary 10 Comments Friend Collector
    PeterUK said:
    Peppino said:
    So is there any conclusion for IKEv2, my S21 phone wouldn't connect too. L2TP works just fine.
    You may need to play around with the Key group and encryption
    VPN Server role IKEv2 broken as far as I can tell — Zyxel Community
    Tried these, but still doesn't work.
  • PeterUK
    PeterUK Posts: 2,651  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer

    Set for VPN gateway domain name / Ipv4 to 0.0.0.0

    in VPN connection set loacl poilcy with host IP 0.0.0.0

    check Related Settings zone is IPSec_VPN


  • mMontana
    mMontana Posts: 1,298  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
  • Peppino
    Peppino Posts: 127  Ally Member
    First Anniversary 10 Comments Friend Collector
    Hi @Peppino,
    Samsung uses DH24 by default but our device only supports up to DH21. DH24 is less secure than DH21. It is not recommended option. Please install Strongswan APP on S21.



    Thank you Cooldia,

    This makes things clearer, appreciate your answer.
  • DavideV
    DavideV Posts: 3
    Hello Cooldia and thanks for the explanation.

    In fact, it was days that I kept beating my head trying to configure an s22 ultra with a USG20-VPN and in any case I have not succeeded. But now at least I know why.
    Do you think it will be possible to implement DH24 on your devices in the future? Thanks

Security Highlight