USG110 FW 4.62 and L2TP VPN with iOS 14.4.x not working
Hello all
I have been trying for a while now to connect iOS devices with 14.4.x installed over L2TP IPSec PSK to a USG110 with FW 4.62
The issue only appears on iOS devices. There are no issues connecting Windows 10 devices or Android devices (Android 11).
I have read on different apple support pages that the encryption should be changed to SHA128 or SHA256. I did this for phase 1 and 2 but with no success.
Has anybody successfully connected an iOS device with the latest version to a USG firewall with the latest firmware over L2TP?
Thanks,
Jerry
I have been trying for a while now to connect iOS devices with 14.4.x installed over L2TP IPSec PSK to a USG110 with FW 4.62
The issue only appears on iOS devices. There are no issues connecting Windows 10 devices or Android devices (Android 11).
I have read on different apple support pages that the encryption should be changed to SHA128 or SHA256. I did this for phase 1 and 2 but with no success.
Has anybody successfully connected an iOS device with the latest version to a USG firewall with the latest firmware over L2TP?
Thanks,
Jerry
0
All Replies
-
@Hi padavjer,
In our lab, we created environment for USG110 with latest version.
Can you try to create L2TP VPN setting with Quick Setup and try to connect again?
For that, in Expert mode click “Quick Setup” on the left hand side of the GUI.
Choose Remote Access VPN Setup > L2TP over IPSec Client(iOS, Windows, Android)
Best regards.0 -
Hello
Thank you for your answer. That was actually the first thing I did. It also created me a *.mobileconfig file that I was able to install on an iPad and an iPhone.
The base encryption settings from the wizard was 3DES and SHA1 (both for phase 1 and phase 2). On some apple blogs it is mentioned that the new iOS is not supporting this type of encryption/authentication anymore. That is why I changed it to AES256/SHA256. Every other configuration was not touched. After changing this the Android devices still worked...the iPhones not.
Jerry0 -
For me it works with AES128/SHA1 but not with SHA256. Is this something iOS is not supporting?0
-
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight