Zyxel Flex 200 - Android/Apple remote vpn
Ally Member
Since the L2TP tunnels are no longer supported by android, what is a working
remote vpn tunnel that does work.
We have lots of l2tp tunnels in use to our FLEX 200, but newer Android devices
don't work/support L2TP tunnels.
Hoping to see a native solution, otherwise we probably need to implement NetBird
or equivalent or perhaps use an alternative hardware solution.
I would like to see a link to a solution. Thanks in advance.
Bret
All Replies
-
You can setup IKEv2 with Pre-Shared Key for android IKEv2/IPSec PSK
Phase 1
AES128 SHA256
DH14Phase 2
AES128 SHA256
DH2on android IPSec identifier is ikev2
0 -
PeterUK,
Attached three images for my connection sample. (Gateway and Connection, log)
Set per your comment. Currently, the android connects, then immediately drops:
For the Connection side on site-to-site ipsec tunnels, local policy is typically the local subnet… For this configuration there is no remote policy. Assuming this is because the peer is dynamic.
What should the local policy be for this ikve2 configuration? Do I need to create a pool for these
tunnel users?
Also, on l2tp tunnels (which the android no longer supports) we would typically have a user/passwrd setup. None of this exists on the IKVE2 psk config on the android device.
I do appreciate anything you have to offer in terms of a solution.
0 -
Hi @mm_bret
The current suggestion is to use strongSwan for Android. Please reference this FAQ:
Zyxel Melen0 -
Thanks. I will look for alternative solutions.
0
Guru Member
Zyxel Employee
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 222 Nebula Ideas
- 129 Nebula Status and Incidents
- 6.5K Security
- 617 USG FLEX H Series
- 347 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 53 Wireless Ideas
- 7K Consumer Product
- 298 Service & License
- 485 News and Release
- 92 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 88 About Community
- 105 Security Highlight
