Android 12 and ikev2
All Replies
-
Hi @Peppino,
Thanks for feedback.
We can refer to this FAQ to set up Strongswan in Android phone.
https://community.zyxel.com/en/discussion/12522/remote-access-vpn-wizard-for-secuextender-ipsec-and-non-secuextender-ipsec-vpn-clients#latest
1 -
Thanks Cooldia, I did not notice there is a whitepaper on this. :-)0
-
I'm trying to use the wizard to connect an android phone (samsung!) to an ATP with latest firmware, the firewall is under a router, I modified phase 1: in my address instead of "interface" i selected "domain name/IPv4" and entered my public (static) ip.
this is what i get on the firewall:
this is what i get from strongswan:
any help?
0 -
Is that same ip included in the certificate too?
0 -
update: i tried the same configuration on another firewall with the same firmware, the only difference is that the 2nd fw is not under NAT. In this case it works (same phone).
0 -
0 -
Well client VPN needs a fw exposed to a public IP. Hidden behind a NAT will obviously not work. The only exception is when this FW will act as a client to another one that has public IP, then they can build a tunnel between themselves.
0 -
actually the firewall it's not hidden: the ISP router is configured so that the Firewall ip (router lan / firewall wan) is in DMZ so that (theorically) all the traffic to the ISP router is redirected to the firewall.
I suppose that in this scenario one's able to connect via VPN, am I wrong?
0 -
If the certificate says a IP then the fw needs to have that IP and be WAN
for IPsec identifier on phone need to be:
ikev2
for IPSec pershared key
0 -
With strongswan I was able to setup on Zywall 110 a IKEv2 certificate VPN with a DNS by no-ip
0
Zyxel Employee
Ally Member
Freshman Member
Guru Member
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 142 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 235 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 246 Service & License
- 387 News and Release
- 82 Security Advisories
- 28 Education Center
- 9 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
