Related
I want to use PPTP vpn connection to my work together with Remote Desktop (Teminal Service) application.
The PPTP vpn connection is established successfully.
From my work PC I can ping the pptp ip address of my PPC.
However if I switch to an application which would generate internet traffic (such as terminal services, internet explorer) my PPTP connection drops.
On my vpn server I get the logs and see the disconnect reason as "user requested)
What is the problem ?
Thanks...
hi,
I guess nobody has such experience with vpn connections.
where can I find information about this problem ?
thanks
Hi, I have the same problem more or less
see http://forum.xda-developers.com/showthread.php?t=291208
I have the same problem when trying to use Skype. My office also requires the use of a VPN (PPTP) when connecting via the wifi.
Skype connects, I can make calls, but the connection is dropped after 30s (the VPN is closed). Oddly enough, it I have the impression I prevent the VPN connection from dropping by using Pocket Internet Explorer at the same time (I have tried creating a website that automatically refreshes every 10s, but this didn't keep the VPN open). The Messaging client als shows odd VPN behaviour: it always closes the VPN, and opens it every time send/receive is selected.
I suspect not all programs keep the VPN open, even despite the fact that those programs are generating traffic over the connection.
Any hints or suggestions are greatly appreciated!
Jorg
(sorry, I can't edit posts in Opera Mini)
MarsRover: I have changed the AlwaysOn registry setting in the registry (in the folder of my work vpn). Ii appears to have changed the Messaging behaviour (but I need further testing to be sure). Tomorrow I'll see if it changed the Skype connection.
Thanks for the suggestion, if it works it ought to be put in the FAQ.
Jorg
Hi,
MarsRover,
I couldn't understand the solution. Can you explain ?
My situation is :
I am using Wifi connection to access internet. This connection is selected as my internet connection.
My pptp vpn connection is set under my Work connection.
So when I use the pptp connection I connect to Work over Internet.
But then it gets dropped if I open internet explorer.
If I set "*/*" to my intranet addresses, I have to connect to everywhere over my VPN connection. This is not good because I don't want to use VPN connection for Web browsing etc.
There must be another way ? Don't you think so ?
Btw, if I set AlwaysOn to "1" in registry , and then check it back after a connection is made, I see it is "0" again.
Hi
You do not have to redirect all traffic through the VPN you can pick and choose under settings>connections>advanced>exceptions just add the urls you need. ie so instead of */* use the specfic range ie 10.0.0.*/* or whatever range your work uses. One more issue however if the wirless ip range overlaps the internal VPN work range you may still have isssues. ie if your wireless ip address range is 10.0.0.x and your vpn range is 10.0.0.x then even if you add 10.0.0.*/* in the exceptions it may still try the wireless link rather than the vpn link for your TS etc. If you get my drift. There is a discussion on this here:
http://forum.xda-developers.com/archive/index.php/t-217422.html
Stephen
Thank you Stephen.
In fact, I am aware of how the exception list works. I can add the IP addresses which I want to reach via work vpn.
However, I still wish that there was a way to use VPN connection manually without using an exception list.
Isn't this possible ?
mrmrmrmr said:
.... This is not good because I don't want to use VPN connection for Web browsing etc....
Click to expand...
Click to collapse
This is good for me because I DO WANT to use VPN for all network access.
mrmrmrmr said:
Btw, if I set AlwaysOn to "1" in registry , and then check it back after a connection is made, I see it is "0" again.
Click to expand...
Click to collapse
It happens if you use settings->connections to view/change settings
hello...
i haven't a clue if this helps...
in my firm theres a cisco vpn connection... i search a long time for a programm that i can use with that vpn connection...
finally i find one... NCP Secure Client... works for me... maybe it helps you...
futureshock said:
hello...
finally i find one... NCP Secure Client... works for me... maybe it helps you...
Click to expand...
Click to collapse
where can I find it ?
does it connect to cisco vpn concentrator / ASA ?
there is also AnthaVPN from AnthaSoft but it's not very reliable.
PPTP
Bluefire seems to work fine with IPSec, but I need PPTP (IPSec requires NAT-T in most cases with GPRS/3G).
hey guys,
am trying to connect to my office's VPN with my vario II. the default software provided does not seem sufficient. for one, i have one of those security key ring things which means my password changes every time i want to connect.
my pc uses cisco's vpn client...
any ideas? right now i'm just synching my exchange server with my pda using activesync, but wouldnt' midn having it on the go! there's no "external" access as such for the exchange server - it does have a web front end but its highly customized and isn't as easy as just configuring it as an external data source on my pda...
This one works perfect for me..
http://www.ncp.de/english/download/testsoftware/index.html
We use AnthaVPN at my university and it's supposed to work quite well with Cisco concentrator gateways, but be warned, if you have the latest 3.3 aku, you might run into problems like I did regarding loosing 3g internet connectivity on your hermes. However it could have just been a fluke as I didn't bother trying a fresh install of antha after a hard reset or anything since 3g is just as fast as my universities wireless internet anyways
Hope this helps
You can also try Bluefire. They have a 30 day fully functional trial version.
Find out more Here
Applestar said:
http://www.ncp.de/english/download/testsoftware/index.html
Click to expand...
Click to collapse
I have installed this but can't see any way of configuring the VPN connection. How did you configure it?
You have to use the PC client in order to create a configuration file and then transfer the file to your device
duh!
thanks!
bluefire is amazing. i bought it.
I came close to getting bluefire to work on our Cisco network... But once connected it would not transfer data.
I read on a seperate post here that alledgely the medianet unlimited plan uses the wap.cingular access point. That point is NAT based and some vpn clients do not like that... So they refuse the connection based on changing ip addresses.
I am not a networking expert so I do not know if this is in fact the case.
I do know I tried every freakin setting for bluefile and could not get a vpn tunnel from my phone to our Cisco vpn... So I gave up!
NCP
Could I get more specific infos about bluefire? They wanted a 5 page survey before they would send me a (business) trial.
Well, NCP Secure Entry VPN Client works perfect for me with Lancom and other standard firewalls. And yes, configuration is made with a Win XP Desktop Application. Nice about this: They got a Desktop VPN client as well which will be configured exactly the same way. So if you got a working setting for your Laptop you can manually copy the settings and they will work on the PPC as well - thats what I did.
Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
marcini said:
Does any one know if there is a way to use your WM6 device on a secured WPA, TKIP, PEAP network when you have your own user name and password to access regular pc.
I'm trying to use my TILT at work and everytime i try to log in it tells me that i need "personal certificate" to positively identify me.
Would it possible to retreive my personal certificate from my work loptop and transfering it somehow to my Tilt?
I really need some help with that, i've been trying this forever.
THanks in advnace
Click to expand...
Click to collapse
That personal certificate is linked to your work computer name and how it is registered on the AD domain. I don't know how or if it's possible but thats the sorta technicle rundown.
marcini, you should contact your company's IT services and inquire whether it's allowed and whether they will provide support. Most companies are very particular about network access, and rightfully so.
If they use certificate-based authentification for their wpa network, they obviously want to control who gains access to their network, and unauthorized probing might risk your job.
Have fun!
Hi!
Sorry if this question has already been answered, i could not find a solution to my problem.
I want to access the data on my WM6 Device from another PC in the same network. I know that there are no networkshares available in WM6. But there has to be a possibility to access my data on PPC from a PC over Wifi. I know that i could do it vice versa, but i want to access my whole device via network. does anybody know a solution? Maybe with the help of a ftp software on my device? Thanks in advance!
Push.
No ideas??
Yeah, I was looking for exactly this, but found nothing.
I would also like to know if it is possible to create Shares.
ok, i found a solution.
use a ftp-server program on your ppc and you can access your whole device on an pc in the same network. i use the freeware "Mocha ftp server" for this. you can deny anonymous access and create useraccounts with password for secure and protected access.
hope this helps some people
Hi, I am from Sweden and this is my first post here at XDA.
I got a HTC p3600, it´s upgraded to WM 6.5 and it works awesome.
Now the problem. The WLAN works great at home and other open networks/ if i got the key.
In my school we got WLAN but i can´t connect to it. I find it in the WLAN-list but there it ends. My friend with an Iphone just select the network and then he can insert his username and password, and woila! He´s in.
When i try to connect the server wants a "Certifikat" in swedish. I have tried to do a "Domain enroll" to get it But it always fail.
I think they use Windows Server 2003.
Does anybody understand my bad language? If you wanna know any more, just tell me.
Same problem here, trying for some weeks to find a solution and so far all attempts with different clients failed. I`m sure it`s not a windows server but a cisco concentrator that let`s You access wlan and it seems there is no free client that can communicate correctly with cisco hardware for winmobile. Iphones have a vpn client directly from cisco integrated and can pass without problems. Try to ask Your computer center what concentrator they use and if they know of a client that supports winmobile.
Some forums mention a registry hack that deactivates certificate authentication but just setting it didn`t help. We`re still trying if this might work in conjunction with a locally installed certificate. Try to get the root certificate of Your CA and import it to Your device. Might help. Somehow they screwed up PEAP on mobile clients cause it`s supposed to work without local certificates but alas...
FlyBy_1 said:
Same problem here, trying for some weeks to find a solution and so far all attempts with different clients failed. I`m sure it`s not a windows server but a cisco concentrator that let`s You access wlan and it seems there is no free client that can communicate correctly with cisco hardware for winmobile. Iphones have a vpn client directly from cisco integrated and can pass without problems. Try to ask Your computer center what concentrator they use and if they know of a client that supports winmobile.
Some forums mention a registry hack that deactivates certificate authentication but just setting it didn`t help. We`re still trying if this might work in conjunction with a locally installed certificate. Try to get the root certificate of Your CA and import it to Your device. Might help. Somehow they screwed up PEAP on mobile clients cause it`s supposed to work without local certificates but alas...
Click to expand...
Click to collapse
Thanks for the answer!
Would it be possible to to install some kind of program from cisco to make it work?
Unfortunately Cisco doesn`t do any winmo clients, they licensed it to other companies. Tried with Root CA yesterday but that didn`t work, maybe we need a valid client cert too. Have to get a personal one from our uni CA the days.
Try installing secureW2
http://www.securew2.com/node/3
This is a program specifically designed to work with wpa2 networks offered through a radius server. Most schools and universities use a radius server. You will need a local login and password though.
When installed, you can select securew2 in the certificate window of wifi settings, when you try to connect to the wireless network.
Thanks for the suggestion. I tried with various clients, none of them worked, securew2 was among them. But maybe it works with fiddyboy.
A page mentioned some older hardware may not cope with mixed wpa modes, maybe P3600 is among them but I really don`t think so...
MAsterokki said:
Try installing secureW2
http://www.securew2.com/node/3
This is a program specifically designed to work with wpa2 networks offered through a radius server. Most schools and universities use a radius server. You will need a local login and password though.
When installed, you can select securew2 in the certificate window of wifi settings, when you try to connect to the wireless network.
Click to expand...
Click to collapse
I am downloading now, will test it tomorrow. Thanks!
Edit: I am not getting it to work. Can someone help me with the settings?
I am sorry, but I don't know what settings to use in your specific case... These settings should be made available by your school or company, most of the time the settings for laptops will give enough information too
which rom do you use to upgrade to windows mobile 6.5
Finally got it to work. We have different WLANs here at our university. I had no luck connecting to our VPN-network so I tried our eduroam WLAN. Eduroam is a roaming network for educational purposes. If You have a login from Your uni/school/whatever You should be able to access the internet from any eduroam network worldwide.
As You said You were asked for a certificate I think Your network relies on the same technologies as ours because I had the same error before. Following explanation:
Our eduroam RADIUS server is certified.
This means our uni gave it a certificate. Our uni was certified by and got a certificate from the DFN (german research net). The DFN was certified by and got a certificate from the german Telekom.
This is called a certificate chain with the DFN as intermediary and Telekom as root certificate authority.
What I had to do is import just the root certificate (from Telekom) to my mobile device by downloading it from our unis webpage, transferring it to the Trinity and just click on it. It confirmed installation and the root ca is listed under the Settings>System>Certificates>Root.
Edit : Normal certs are with *.crt ending. MinMo wants *.cer-files. If You only can get Your hands on *.crt import them into Your PC browser, export from there with DER-encoding and rename *.der to *.cer. That`s it.
Our eduroam RADIUS server authentication is via PEAP.
So I configured the network connection like this:
connects to : internet
authentication : wpa2
data encryption : aes
eap type : PEAP
Connect. When prompted put in Your uni account credentials.
This worked on WinMo 6.1 and 6.5 Without the ValidateServerCert reghack or any other other special program.
WinMo5 failed! Also tried the ValidateServerCert reghack but it`s of no use. Think it`s because WM5 has no wpa2-aes support. If Your RADIUS allows wpa and tkip it may work.
Maybe if this doesn`t work Your server it uses something other than wpa2 or aes. Try different options. Maybe it`s not using PEAP. Ask Your admin but try with a certificate first.
The strange thing is that PEAP was used to avoid handling of certificates; it`s especially there to NOT have to fiddle with them. Anyway, this works here, hope this is the solution for Your location...
you should just buy a protable harddrive or a flash drive and transfer your files onto that and then onto your computer.
Hi, I have same problem, trying to use eduroam on CTU, my Notebook/Laptop WiFi work ok, but I can't connect with TD2 Topaz. I have instaled required certificate, but in options I have no way to set concrete RADIUS server to connect (which is required to be specified in settings on Notebook). Any ideas please? I Also installed securew2, but I can't add Cesnet CA in securew2 options, even it is installed in system (I is present in setings-certificates in WM).
When You have WinMo 6.1 You shouldn`t need securew2 and there is no need to explicitly set RADIUS IP. Have You tried eap-type : PEAP ? What`s the error message if any ?