Steps for setting up a VPN connection over wireless - JASJAR, XDA Exec, MDA Pro General

Please forgive me if this topic has already been covered here - I've spent the last 3 hours searching but may have missed it.
Although I have a K-Jam, my boss has an XDA Exec / Universal and he's asked for my help in setting up VPN connectivity. This will be a VPN connection over wireless & / or phone network data connection into a Windows Server, used for syncing with Exchange, Terminal Services, etc.
So please (if possible) can someone who's successfully setup a VPN connection please post a step-by-step guide to doing so, or point me to a thread that I've missed.
TIA

VPN on JJ
I have done it, but not able to get it to work. i logged a support call on imate, and they sent me the steps outlining the obvious, and still not able to get it to work. I was only interested in the VPN over WIFI using my home wireless & ADSL to that I could operate Terminal Services.
The VPN does connect, but when TSC was running, it cut off. Going into connections, and create a new VPN is an easy exercise if you know what you are doing, stopping it from disconnecting was the diffiiculty.
I was told, but cant vouch the accuracy, you need your phone networks assistance to do this over a GPRS internet connection as they have to open a port, again, not sure.
There will be more knowledgeable people on this network that can help, if not, then I will try some more.

Hi all,..
I thought It had something to do with the exclusion of a specific ip range or domain name.
Try to go to settings, connections, go to the screen where you make the VPN connection. In this menu klick the Advanced Tab, klick on exceptions and type in the (for instance: 192.168.1.0) range or the domain name of your company if you connect through domain name...
Now I've got an question,.. setting up an VPN connection is not my problem, the problem is that I would like the connection to be established online when I want to go to for instance: 10.0.0.0. Only when (in every program) I connect to this IP range the VPN connection schould be automatticly established. On the original T- ROM I had that fixed, now on the I-mate rom I cannot fix that.
can some one help me making this working? so when I connect to my home server TS, of connect to a home share on the road the VPN conection will automatticly be established...
Best regards
AD

Hi
Dig out my post in this thread:
http://forum.xda-developers.com/viewtopic.php?t=31370&highlight=
Should tell you what you want to know.
VPN works much much better on the universal than it did on my BA!
Nigel

Yep,..
after many atempts it's working now...
in the exceptions menu, on the exclusions the option
192.168.1.0 is'n't the correct option.... It must be:
192.168.1.* in order to specify the whle 192.168.1.--- range
regards
Arjan

Related

i mate k-jam WIFI problem?

the WIFI state is connected. but when I try to open a webpage, eg,www.google.com, it shows error: the page cannot be found. Check the name and try again. anyone knows that? how can I fix it?
Thanks.
HELP ME
Someone can help me?!
Where are you using the wifi? Is it your home network or work/hotspot?
Go to settings then the connections tab then tap the "wireless lan" icon. Tell us what you see on that screen, then click the advanced tab and tell us what is there too. Finally click "menu" then "network cards" and tell us what is there (should be a list of available networks).
The only problem I have with my wireless is that i need to have a very strong signal to be able to receive my IP address via DHCP. Once it has it then it's OK and i can wander about but I get no address when the signal is weak ( less than 50%).
Cheers
Gadget.
tatata
Check that you have set the connection type to "internet" - I suspect this problem occurs because you have it set to "work".
Chris
I am having the same problem , my signal is nearly 100%, the phone is set to internet, Belkin 54g,, authentication is 'open', WEP, the key was entered manually (26 digits ), do i use 802.1 access ?
mode is infrastructure, tx rate is auto, channel 11,, the mac and ip address is correct,, what is enroll ?
I have tried everything and it is obviously connected so why will it not load pages ?
Had the same problem myself with my XDA IIs. Only solution I could find was to turn disable the firewall on my router. No idea why that worked, and cant find a way to turn the firewall on without causing the problem again, but it did work!
got smilar problem here, some times even when i connected and browsed web say 2 mins. ago suddenly connection can not be established i have tried it with belkin 54g linksys and 3com routers all same couldnt find any solution and accepted it as it is
gadget_uk said:
Where are you using the wifi? Is it your home network or work/hotspot?
Go to settings then the connections tab then tap the "wireless lan" icon. Tell us what you see on that screen, then click the advanced tab and tell us what is there too. Finally click "menu" then "network cards" and tell us what is there (should be a list of available networks).
The only problem I have with my wireless is that i need to have a very strong signal to be able to receive my IP address via DHCP. Once it has it then it's OK and i can wander about but I get no address when the signal is weak ( less than 50%).
Cheers
Gadget.
Click to expand...
Click to collapse
hello All and Gadget
Bought the XDA mini S from 02 yesterday and havent really been playing with it except installing programs, removing the 02 files and finding my way round the phone.
Anyway, having problem with getting WIFI, can anyone help?
At home, I use Wanadoo broadbrand wireless 'livebox' and here are the following details on the Mini S:
Wireless Lan> main tab> SSID - blank, mode - infrastruture, BSSID -blank, Tx rate - auto, channel - 0
Advanced tab > status, not connected to network, MAC - 00-09-2D-8D-66-BF, IP - 0.0.0.0
network cards tab> wireless tab - wanadoo - 2D9E available
network adaptors> network card connects to 'The internet'
Thanks in advance
Andy
Might be a stupid question but.....
Have you got any security on your wireless router? if so have you permitted the MAC code of your device to connect and obtain an IP address from your router?
Anthony.
an2ony said:
Might be a stupid question but.....
Have you got any security on your wireless router? if so have you permitted the MAC code of your device to connect and obtain an IP address from your router?
Anthony.
Click to expand...
Click to collapse
Thanks for the prompt reply. Another stupid question is how do I find out if I have security on my wireless router and if i have security, how can i permit the mac code to do its stuff.
Thanks again.
Andy
Check out:
http://help.wanadoo.co.uk/resultDis...Configuration+Manager&resultType=5002#Goto155
Have you set up a WEP security key to prevent unauthorised access to your ADSL Connection? if not then you should; I think the 'LiveBox' has a default key which you have to enter to connect and obtain an IP address.
Not being familiar with this router, I cannot tell you exactly but I would expect you to have to permit a new MAC code under the 'associated devices' menu.
Sorry for being Vague.
Hope this helps. :roll:
an2ony said:
Check out:
http://help.wanadoo.co.uk/resultDis...Configuration+Manager&resultType=5002#Goto155
Have you set up a WEP security key to prevent unauthorised access to your ADSL Connection? if not then you should; I think the 'LiveBox' has a default key which you have to enter to connect and obtain an IP address.
Not being familiar with this router, I cannot tell you exactly but I would expect you to have to permit a new MAC code under the 'associated devices' menu.
Sorry for being Vague.
Hope this helps. :roll:
Click to expand...
Click to collapse
Anthony
First of all, thanks for the link. I am able to see all the details (technical) of my livebox on the wanadoo configuration page.
There is a WEP key set and having tried to enter as much info on the relevant places on the mini s, no luck.
The mini s does recognise the 'livebox' and connects to it then drops off. However, it doesnt pick up any info from the 'box' to complete the relevant wireless tabs on the mini s.
Dont know how I'm going to resolve this but thanks for your help so far.
Shame not to utilise the Mini S with my current wireless broadband connnection.
Cheers
Andy
Hi All
Thanks for the advice so far and after so many attempts I am still unable to configure the mini s to use the wireless connection at home.
Need a huge favour. Would anyone give up a few minutes of their time to go through the configuration on the phone with me.
Please PM me your contact number and when it is convienent for me to call you back.
Much appreciated.
Andy
Hi Andy,
the settings depend to some extent on whether you have an access point (router) or shared connection.
You need to know the network name SSID, (and whether it's hidden)
WEP, WPA/PSK key,
Whether (as previously stated) you have MAC address control enabled in your router
Whether you have DHCP enabled (for automatic IP address from router)
Whether you need to log on (enroll) to password protected shares.
In the mini-S wifi>Menu>Network Cards>Network Adapters tab you should set your network card to connect to The Internet and check that the adapter (SDIO WLAN etc.) is set to use auto IP (if you have DHCP) or pick your own IP address if you have a fixed range.
If you have Zone Alarm or another firewall (I surely hope so :wink make sure that the (mini-S) IP address is in the trusted zone
Lastly; if you seem to be connected but you can't get any web pages - just a page not found error, try killing bloody ActiveSync on the mini-S, sometimes when I'm browsing I suddenly can't access pages and that's what the problem turns out to be - when you stop active sync running in the background it all starts to work again.
This is assuming you have a router not a shared connection which may be slightly different.
Oh....and read the threads about 802.11b and g, if your router only allows 11g the mini-S doesn't connect (I'd find the threads and point you to them but I gotta get back to work soz)
HTH (feel free to contradict or put me straight guys
:lol: )
Kim
cozzykim said:
Hi Andy,
the settings depend to some extent on whether you have an access point (router) or shared connection.
You need to know the network name SSID, (and whether it's hidden)
WEP, WPA/PSK key,
Whether (as previously stated) you have MAC address control enabled in your router
Whether you have DHCP enabled (for automatic IP address from router)
Whether you need to log on (enroll) to password protected shares.
In the mini-S wifi>Menu>Network Cards>Network Adapters tab you should set your network card to connect to The Internet and check that the adapter (SDIO WLAN etc.) is set to use auto IP (if you have DHCP) or pick your own IP address if you have a fixed range.
If you have Zone Alarm or another firewall (I surely hope so :wink make sure that the (mini-S) IP address is in the trusted zone
Lastly; if you seem to be connected but you can't get any web pages - just a page not found error, try killing bloody ActiveSync on the mini-S, sometimes when I'm browsing I suddenly can't access pages and that's what the problem turns out to be - when you stop active sync running in the background it all starts to work again.
This is assuming you have a router not a shared connection which may be slightly different.
Oh....and read the threads about 802.11b and g, if your router only allows 11g the mini-S doesn't connect (I'd find the threads and point you to them but I gotta get back to work soz)
HTH (feel free to contradict or put me straight guys
:lol: )
Kim
Click to expand...
Click to collapse
ello mate
I gotta agree with the activesync thing. I had the same problem as of 2 mins ago just tried exiting active sync and would ya believe it my wi fi now works. So i gotta say cheers mate!
cheers
tatata said:
the WIFI state is connected. but when I try to open a webpage, eg,www.google.com, it shows error: the page cannot be found. Check the name and try again. anyone knows that? how can I fix it?
Thanks.
Click to expand...
Click to collapse
I had the same problem with my Linksys WRT54G before. I upgraded the firmware (dowloaded from Linksys website) of my WRT54G and the problem solved.
New to the board (Just got my Cingular 8125) Having the same problem.
I get an IP addressfrom my router, it shows I am connected on my network settings, but still can't pull up any pages. It has never worked since I got it (only 3 days though) Someone please help us.
If >Connection Manager>Settings>WiFi Settings shows you have an IP address and are connected (Advanced :Status) then check your firewall settings and try stopping ActiveSync, always seems to do the trick for me
Also check out this post, could this be your problem?
http://forum.xda-developers.com/viewtopic.php?t=41469
@ cozzykim
I have shut down my zone alarm and don't have firewall enabled on my linksys WRV54G. ActivesSync is also closed. Still no luck
I will try to update my ROM it is not far fetched that cingular Jerry rigged the WiFi. I hope ther is a class action suit coming soon.
Thanks for your help.[/quote]

VPN driving me mad!

Over the last year I have tried many times to set up my Windows Mobile devices to connect over VPN and then use RDP to manage my clients' sites. To date I have never managed to get it to work. My config is as follows :-
Within Start \ Settings \Connections \ Advanced \ Select Networks
Programs that automatically connect to the Internet use MY ISP
Programs that automatically connect to a private network "My Work Network"
a VPN is configured under "My work network" and the device can connect to this and using vxutil I can ping the server I wish to RDP to - 172.17.3.3
Supposedly the important bit is to add the exception under "Work URL exceptions", I have added 172.17.3.3 in here.
Once the VPN is established if I enter 172.17.3.3 within IE or Terminal Services CLient the VPN connection is still dropped.
If I enter this IP address without connecting the VPN first then the device will not connect the VPN automatically.
If I enter a non qualified domain name such as ids-vs then the VPN is connected but the name is never resolved.
Can anyone shed any light on this, if I could use a local lmhosts file on the device as with XP then I may be able to work around the above. It appears to me though as though the exceptions list is never processed. I did a hard reset last night just in case, but this has made no difference.
I cannot believe that the above can be so complex.
I am using a HTC Tytn and using t-Mobile in the UK.
Any help greatly appreciated since it is driving me totally mad!
I would love to figure that out.
I was trying to connect to my pc at home like this and suffered from all the same symptoms your having. In the end I gave up, mainly 'cause someone told me that I needed another type of data plan to have vpn (at the time I had the $29.99USD plan) in other words it might be your plan, or something to do with the proxies or something, I hope someone would find out what you need to do in order to get this to work.
It's strange, looking around the web there are loads of people that struggle with the setup, but most seem happy once they are told to add the server name or IP address in the exceptions list.
I have ruled out the data plan since I can establish the VPN connection and can see it authenticate on the other end, as well as being able to ping the server on the work network from the phone.
I have just opened a support call with Microsoft as well, but I am not holding out much hope since I think they will point me at HTC. Assuming HTC ever responded they will just point me back at Microsoft!
Well it would be cool if they could help you, I tried everything myself and zilch. I could also establish a connection but as soon as I would try to access a file on my pc it would disconnect. I would try to help you out experimenting on my side again, but I changed my router to a cheap piece of $h.. and now I can't access my pc via vpn..... I really need to get a decent router
This may sound stupid, but I could swear someone told me something about the speed of the connection. If the connection speed is too low then DNS would fail, although that wouldn't explain why we are able to establish a connection, but not access anything else.
OK, I have made quite a bit of progress :-
1) I was using a cab file to configure T Mobile settings on the phone. This was somehow configuring the exceptions list to be ignored. Hard resetting the phone, installing this CAB the problem remained. Hard Resetting the phone and setting up GPRS manually - everything worked.
2) There is a fault with Windows CE 5 routing over VPN - the subnet information is ignored. Hence for example, if your GPRS provider give you a NAT 10.x.x.x ip address and your corporate network uses 10.x.x.x then you can never route to your corporate network.
And what cab file is that? do you know if it's on the extended roms for the t-mo roms? Glad to see your making progress, keep it up.
It was a Cab file for the Tmobile settings. It either came from these forums or over at modaco, can't remember which.
VPN
I was able to successfully use the Movian VPN to connect to my work using my XDA2.Worked fine for 2 years. Apologies, but I can't help with the settings and my work migrated to an M-notes server so I was able to connect without a VPN.

Success with L2TP/IPSec VPNs?

Has anyone had any success with L2TP/IPSec VPNs and Windows Mobile 5 or 6? I have no problems with getting PPTP to work but have NEVER had any success with L2TP/IPSec. I have valid Client & Server Certificates but I have never been able to get a connection; in fact the HTC Wizard I have never even attempts to make a connection (I have a sniffer on the Ethernet port my Wireless AP is connected to). I have tried using Certificates & Pre-Shared Keys but the results are the same - The Wizard never attempts to connect, with PPTP it works every time.
The Server I am using is a Windows 2003 RRAS server and I have verified with a Windows XP Client that L2TP/IPSec works.
I have asked the question before but have not had any helpful replies. I would be grateful if anyone who has set this up successfully can let me know and maybe give me a run-down of the steps you used. I am not interested in any 3rd party VPN clients, it must be the built-in one.
Thanks
Andy
Hi
Yes I have had the same issue with both the wizard and now hermes tried wm5 and wm6. I think it maybe related to NAT-T translation as am unsure from my reading weather MS supports NAT-T on the mobile end. If data session is being NATed by your provider then this may be the cause. Probably need to check the ip packets comming from the phone to see what it is sending out. Is that what you did or is the sniffer at the other end.
sebjepb said:
Hi
Yes I have had the same issue with both the wizard and now hermes tried wm5 and wm6. I think it maybe related to NAT-T translation as am unsure from my reading weather MS supports NAT-T on the mobile end. If data session is being NATed by your provider then this may be the cause. Probably need to check the ip packets comming from the phone to see what it is sending out. Is that what you did or is the sniffer at the other end.
Click to expand...
Click to collapse
It has nothing to do with NAT traversal. WM5 (and WM6 probably?) does NOT support NAT-T, however I am not attempting to get this working over NAT. As I said I have a put a sniffer on the Ethernet port my Wireless AP is connected to and my Wizard does not transmit anything when configured for L2TP/IPSec (except a DNS lookup for the VPN server name if I enter it's DNS name as opposed to it's IP address). With PPTP it works and I can happily see the packets it transmits on the sniffer.
This is really frustrating as it looks like no one has ever got this to work
I had a HP iPAQ 6365 previously with Windows Mobile 2003 and I managed to get it working on this quite easily
Andy
Andy
I now have this working on both the wizard and the hermes.
I am a bit confused with your last response as ipsec port 4500 is nat-t and is required and is being transmitted by both the wizard and hermes in my case.
My setup maybe somewhat different to yours as I have a windows sbs2003 server running isa and rras. It is sitting behind an adsl modem router connected to the internet. The data connection on my phone is edge network on the wizard and HSDPA on the Hermes. Also have tried this via WiFi as well.
Steps I used
On server side router
On adsl modem router setup forwarding udp ports 500 ipsec, 4500 nat-t and 1701 l2tp and protocol 50 IPsec ESP. I selected l2tp/ipsec from its predefined list but noticed it missed udp 1701 so added this manually.
On Server.
ISA management selected Network Configuration right click and selected Allow vpn connections. This essentially setups the ip filters to allow incomming protocols and then sets up rras for pptp and l2tp ports.
In rras configure a preshared key by right click server/properties/security tick allow custome ipsec policy... and added preshared key.
On mobile
settings/connections
My Work Network
Edit my vpn servers and added new IPsec/L2TP connection.
Works a treat hope this helps
I did notice on another forum something about disabling the phone skin but I did not have to do this.
Regards
Stephen
sebjepb said:
Andy
I now have this working on both the wizard and the hermes.
I am a bit confused with your last response as ipsec port 4500 is nat-t and is required and is being transmitted by both the wizard and hermes in my case.
My setup maybe somewhat different to yours as I have a windows sbs2003 server running isa and rras. It is sitting behind an adsl modem router connected to the internet. The data connection on my phone is edge network on the wizard and HSDPA on the Hermes. Also have tried this via WiFi as well.
Steps I used
On server side router
On adsl modem router setup forwarding udp ports 500 ipsec, 4500 nat-t and 1701 l2tp and protocol 50 IPsec ESP. I selected l2tp/ipsec from its predefined list but noticed it missed udp 1701 so added this manually.
On Server.
ISA management selected Network Configuration right click and selected Allow vpn connections. This essentially setups the ip filters to allow incomming protocols and then sets up rras for pptp and l2tp ports.
In rras configure a preshared key by right click server/properties/security tick allow custome ipsec policy... and added preshared key.
On mobile
settings/connections
My Work Network
Edit my vpn servers and added new IPsec/L2TP connection.
Works a treat hope this helps
I did notice on another forum something about disabling the phone skin but I did not have to do this.
Regards
Stephen
Click to expand...
Click to collapse
What ROM are you running on the Wizard? I am currently running a WM6 ROM but I previously used the official QTEK update (AKU 2.3 I think?) and then various WM5 AKU 3.3 ROMs. I have tested this with all of them and none have worked. If I could just see it attempt to connect I would be happy The fact is it doesn't transmit anything at all and all I see is the dialogue box on the Wizard saying 'Cannot Connect'....
With regards to NAT-T I read that the VPN Client in Windows Mobile 5 was not capable of this, I could be wrong however?
Andy
Sorry didn't have signature updated I'm running WM6 MBE on the wizard and WM6 Black on the Hermes
Ok I am still confused can you tell me exactly how you are connecting to your work network. Wifi or gprs.
Can you check also.
Under settings/connections/advanced/select networks make sure you have a separate ie different connections for the internet and private network. The Intenet settings will be your service provider grps settings.
For the private network mine is set as My Work Network. Edit this and make sure sure you do not have any modem connection listed ie we want to make sure it goes out over our existing connection and does not try to make a new connection. Make sure the vpn tab has your vpn settings as required they must be listed here and not under the Internet connection.
If you are using WiFi you must make sure the network setup is Connects to: The Internet and not set to Work. If it is work the VPN will not connect. You can not change this on the fly need to disconnect and setup again.
PM Me When you get to work given time diff I should be home. Might be able to test connection to my server at home then can check logs etc
Also use Task manger v2.7 to view netsats on phone to confirm udp ports and ip routes etc. It will show you if the phone is indeed sending should see upd ports 500 4500 and 1701 being used.
Stephen
sebjepb said:
Sorry didn't have signature updated I'm running WM6 MBE on the wizard and WM6 Black on the Hermes
Ok I am still confused can you tell me exactly how you are connecting to your work network. Wifi or gprs.
Can you check also.
Under settings/connections/advanced/select networks make sure you have a separate ie different connections for the internet and private network. The Intenet settings will be your service provider grps settings.
For the private network mine is set as My Work Network. Edit this and make sure sure you do not have any modem connection listed ie we want to make sure it goes out over our existing connection and does not try to make a new connection. Make sure the vpn tab has your vpn settings as required they must be listed here and not under the Internet connection.
If you are using WiFi you must make sure the network setup is Connects to: The Internet and not set to Work. If it is work the VPN will not connect. You can not change this on the fly need to disconnect and setup again.
PM Me When you get to work given time diff I should be home. Might be able to test connection to my server at home then can check logs etc
Also use Task manger v2.7 to view netsats on phone to confirm udp ports and ip routes etc. It will show you if the phone is indeed sending should see upd ports 500 4500 and 1701 being used.
Stephen
Click to expand...
Click to collapse
I am using WiFi, this is all in a test environment so I have full control over everything. Under Connections I have 'My ISP' and 'My Work Network' listed. 'My ISP' has a modem entry, 'My Work Network' has no modem but has a VPN listed with the IP Address of the VPN server and set to L2TP/IPSec using a certificate on the device (I have tried with pre-shared key also). The WiFi entry is configured as 'Connects to The Internet'.
I enable the WiFi and verify I have connectivity, I then go to Connections, click on My Work Network, 'Manage existing connections' select the VPN tab, hold down the stylus on the entry and click connect and I almost immediately get the dialogue box saying 'cannot connect'. If I edit the VPN entry so it is PPTP it works every time. As I said I have a sniffer on so I can see what the Wizard transmits and it when set to L2TP/IPSec it doesnt transmit anything whatsoever, with PPTP I can capture the whole conversation.
Thanks for any help you can give me.
Andy
Ok I have now also tried using certificates and your right it does not seem to sending any info at all. It might ahve something to do with checking the certificate store first I ahve had issues before with Cisco vpn and certificates you have to get the nameing and certification justs right before it even starts the connection.
So first thing lets try pre shared keys as I have got that working. I will PM you my server details if you wish to try that first.
Stephen
sebjepb said:
Ok I have now also tried using certificates and your right it does not seem to sending any info at all. It might ahve something to do with checking the certificate store first I ahve had issues before with Cisco vpn and certificates you have to get the nameing and certification justs right before it even starts the connection.
So first thing lets try pre shared keys as I have got that working. I will PM you my server details if you wish to try that first.
Stephen
Click to expand...
Click to collapse
I have just re-tested this and using a pre-shared key - same result
There is a brief flash of 'connecting' when you click connect but then the 'Cannot Connect' dialogue box appears, nothing gets transmitted. I have tried entering different IP addresses (public, private etc) just to see if it will transmit anything - it doesn't regardless of the IP address I enter.....
Andy
Andy
check your pm
Are you sure the wireless ap is actually passing the ipsec/l2tp traffic.
Working, well sort of.....
After a lot of messing around I now have this working, at least partially........
Following a soft-reset I can connect to a Wireless network OK (either a new one or one that is pre-configured), I can then connect the VPN using L2TP/IPSec. I can also manually disconnect the VPN and re-connect without any issues. However, when the wireless is disconnected (i.e. turned off from CommManager) and then re-connected the VPN will never work again, unless the Wizard is soft-reset.
Does anyone know what is likely to be causing this? some application in memory or a registry 'state' entry
Does anyone else see this behaviour?
Andy
I had exactly this with L2TP/IPSec on the MDA Vario II, but the same settings work as they should on my Athena.
ADB100 said:
After a lot of messing around I now have this working, at least partially........
Following a soft-reset I can connect to a Wireless network OK (either a new one or one that is pre-configured), I can then connect the VPN using L2TP/IPSec. I can also manually disconnect the VPN and re-connect without any issues. However, when the wireless is disconnected (i.e. turned off from CommManager) and then re-connected the VPN will never work again, unless the Wizard is soft-reset.
Does anyone know what is likely to be causing this? some application in memory or a registry 'state' entry
Does anyone else see this behaviour?
Andy
Click to expand...
Click to collapse
HI!
How can you DISCONNECT?? Do you get a "Disconnect" button or menu item somewhere??
How do you know you are connected to VPN?
Thank you,
Dmitry.
A bit late but...
I have a possible solution to the fact it doesn't send ANY traffic on a connect attempt - on my XDA mini S (HTC Wizard) it requires me to put something in the 'domain' field on the username/pwd screen before it will start the IPSec negotiation....
Now I just have to get it o complete the process with the sonicwall...
David
Revisiting this
I can't get PPTP going on my HD2. Thoughts?
bumping this message
I have tried all the usual vpn software (for 3g connectivity) the only third party software that connects is the ncp software, but I get stuck because it wont accept a challenge response grid.
Symantic - won't auth
Green something - doesn't connect
MS VPN - doesn't connect
I have been able to connect in the past with an iPhone, but without a java i can't connect to most motorola hardware devices at work so it's useless. I'm testing a G1 on 1.6 now and it fails to connect also. Going to try openvpn today sometime. MY friend has his Eris working, so I know droid OS works.
I work for a large company and switching vpn hardware is out of the question, so if anyone has a 3g resolution for winmo, I won't have to trade my HD2.
Hi,
L2TR VPN with the Windows Mobile is working !!
The trick with L2TR VPN on WM is to use: a IP address (and NOT a hostname)
Strange, because using a hostname with PPTP VPN on the Windows Mobile it works.
With the trick L2TR works perfectly.
Chris
Hello. This is my first foray into VPN on Win Mo. I can establish a PPTP connection between my Imagio (stock Win Mo 6.5 R1) and my SBS 2008 server. I can ping the server and can browse the company web page. But I am having no luck accessing file shares. I have Schaps Network Plugin installed, but it doesn't see/can't access the shares. Will switching to IpSec VPN work? If so, any guidance on how to set it up on SBS 2008.

ICS & VPN with WM6

My searches on the web haven't yielded much help or information so I thought I would come to the experts...
I have a Treo 750 that I just "upgraded" to WM6 2 days ago. I noticed that DUN has gone away and was replaced by ICS. After configuring my laptop to use that instead of DUN I connected and was surfing the web. My problem now is VPN. I travel frequently (luckily I'm in the office until Jan.) and regularly used my phone to connect to the corporate network via VPN. I also work with a lot of other companies and have VPN access to their systems as well. Basically now I can open my Cisco VPN client, connect to a VPN gateway, authenticate, get assigned all the appropriate IP information, but cannot communicate on the network. What gives? Is there a solution to this? If not, what the heck was MS thinking when they did this!? My phone is basically useless for one of the major reasons I bought it...
Any help is appreciated!
thanks!
Ok, further searches found that DUN can be added back into WM6 via a cab that was posted here at the XDA forums. I installed it and the DUN service is now visible again. I unpaired by phone and laptop, re-paired, and included DUN. Now when I try to connect, I get the DUN connection box after the bluetooth connection is initiated but when I click DIAL I get the DIALING... prompt, followed by Error 678: The remote computer did not respond.
Anybody get this working on a Treo 750? Thoughts, ideas suggestions?
What is the ip address you are getting via the cisco vpn client
It maybe that it is in the same subnet as the ip address assigned to the pc from the wm6 ics. The ICS gives the address 192.168.0.1. and if your Cisco is also giving a 192.168 address then you will have two routes for the 192 address range thus giving you the problem when accessing hosts.
If this is the problem Im pretty sure you can change the address allocated via the ICS using a registry editor. If not you may be able to get work to use a different range for you on the cisco vpn.
Our corporate network is 172.x.x.x so it's nowhere near the 192.168.0.x assigned by the phone. When I look at the route in the VPN client I see 192.0.0.0, 10.0.0.0, and 172.0.0.0 so I am assuming 192 is my laptop, 10 is the phone, and 172 is the corporate network.
I'm guessing NATing is the problem. I've been reading that if I use a different APN (isp.cingular instead of wap.cingular) there is no NATing. I've tried both, and I've tried turning off and on the "force AT&T" proxy setting to no avail.
Tried the DUN cab hack that is floating around for WM6 also. The service is active again and I can also add Modem Link back in and my laptop sees my Treo as a modem but when I dial I get an error stating the remote computer did not respond. I'm guessing along with going from WM5 to WM6 AT&T also updated the radio so the old communications protocols don't work anymore?
Hello Sir,
I have exactly the same problem... I have successfully connected via VPN, however unable to communicate with any devices on that network... Then what is the use of VPN on the phone? I've tried searching online for answers, but no luck... People are having the same problem but no one knows how to solve it... I'll try and trouble shoot this problem more as soon as my exams are done...
Hi
Working successfully for me. I am using Imate jasjam wm6. Pc using cisco client connecting via ics on phone. I have telstra 3g connection tested ok on both telstra.internet (Nated ip) and telstra.extranet (real ip).
You are correct it may be an nat issue. Can you check that your transparent tunnelling is on as follows: right click on your connection entry in cisco client and select modify then transport tab. Check that enable transport tunneling is enabled ipsec over udp(Nat/pat).
The other thing to check is that the cisco vpn server aslo has transport over Nat on as well.
Also are you sure your corporate ip range is 172 or is that the range given by the cisco vpn to clients.
Transport tunneling is on (always was). I'll have to check with our network admin and check on the VPN server setting...I guess as long as I have connectivity back to the office, I don't need it that badly for all the customers I need to connect to at various times.
Yep, positive on the corporate IP. Right now it is 172.28.1.87 and I'm in the office.
Thanks for the help so far. Got any other suggestions on how I can troubleshoot further?
One other thought...should I modify the registry on the phone to assign a different IP address to my laptop? Would that help?
Same Problem
MX. I am having the exact same issue but with Securemote VPN. I've looked through the registry and found the assigned address, but I'm wary of changing anything until I can find some more information.
Anyone out there ever change the DHCP configuration for their phone?
Somewhat related question?
Im attempting to route my connection on my mobile through a laptop acting as a wan bridge, then uplinking it into the router. The issue Im having is that XP and WM6 both use the same IP Block. Ive read and read and cant find much to tell me how to change the WM6 IP BLock to something like 192.168.2.1 rather than the default 192.168.0.1
Does anyone have any pointers? Ive looked through the registry. There MUST be a simple way to change a default.
To clarify my setup, I am using ICS Via USB into a UMPC laptop running XP. The UMPC is set to share that same connection back out over Ethernet. The ethernet runs into my WAN Uplink on the router and then back out via wifi/rj-45
This setup works as I have done it using Wifi with other networks, and I can chose the "Lan3" to share under the advanced settings on the UMPC. The reason I dont just share out via Wifi from the start is that Wifi on my Kaiser and Raphael both make the device to hot to charge, thusly killing the battery within a couple hrs of sharing. If I share via USB , it stays pretty cool and still charges.
Anyone have any pointers?
I have already tried tricking XP into using the Lan on another block but as soon as you try to share the USB lan, it reverts back to the 192.168.0.1
The only way I can imagine is a registry modification or a program change in ICS.
Thanks Much!

VPN via 3G/HSDPA is still unresolved ?

Hi Everyone,
Having the Shift as my workhorse since some moths, there is still one annoyance I couldn't avoid: my VPN connections are interrupting the Internet connection when using 3G/HSDPA modem connecting to Internet in Vista/WM.
I was trying to search through all existing threads, but I still don't see anyone finding a solution.
I think the root lays in WM somewhere, since I cannot establish a PPTP connection in WM neither. In my case it is certainly not caused by the data provider, because I have checked it with them.
Let's try to put our knowledge together to sort this out !
This is normal behaviour I suppose
When connected to the VPN, the VPN must provide you with either a proxy or another internet gateway, otherwise you are just connected to a private network...
Maybe you mean something else, but from what I read it seems like you never got on the internet with VPN active.
If you did, and you are talking about intermittent network errors, then only high performance settings on your power settings may help.
If you could give more info I could help more. IP/Proxy/Gateway/ did it ever work yes no etc.
lucid said:
When connected to the VPN, the VPN must provide you with either a proxy or another internet gateway, otherwise you are just connected to a private network...
Maybe you mean something else, but from what I read it seems like you never got on the internet with VPN active.
If you did, and you are talking about intermittent network errors, then only high performance settings on your power settings may help.
If you could give more info I could help more. IP/Proxy/Gateway/ did it ever work yes no etc.
Click to expand...
Click to collapse
Lucid,
Thanks for replying. I will try to explain it another way.
1. When I am connected to Internet via Wifi, I have no problem using my VPN connection. I get authenticated and connected to the company network and the connection stays active as long as I want.
2. Using 3G/HSDPA Internet, the following happens:
- I start the same VPN connection, and get connected.
- Than my 3G/HSDPA connection breaks up, and the PPTP dialin stays alive - it doesn't have any use this way of course.
- When I disconnect from VPN, the 3G connection comes back automatically.
I hope this is more clear this way, any hints are very welcome !
jarbi said:
2. Using 3G/HSDPA Internet, the following happens:
- I start the same VPN connection, and get connected.
- Than my 3G/HSDPA connection breaks up, and the PPTP dialin stays alive - it doesn't have any use this way of course.
- When I disconnect from VPN, the 3G connection comes back automatically.
Click to expand...
Click to collapse
Thats exactly the same problem that i have had for over months - it just doesn't work and I can't see any way to get it to work - so much so, I don't use the Shift anymore - got a Tytn II and redfly and just remote desktop to a PC on the work lan!
jarbi said:
Lucid,
Thanks for replying. I will try to explain it another way.
1. When I am connected to Internet via Wifi, I have no problem using my VPN connection. I get authenticated and connected to the company network and the connection stays active as long as I want.
2. Using 3G/HSDPA Internet, the following happens:
- I start the same VPN connection, and get connected.
- Than my 3G/HSDPA connection breaks up, and the PPTP dialin stays alive - it doesn't have any use this way of course.
- When I disconnect from VPN, the 3G connection comes back automatically.
I hope this is more clear this way, any hints are very welcome !
Click to expand...
Click to collapse
The VPN that you are running is on VISTA side.(if yes try to see the routing table) by default the VPN get the default GW, and try to change it.
If this is the issue then you can go to the VPN connection properties -> Networking ->TCP/IP -> Properties -> Advanced -> IP Setings -> unchek the use the default GW on remote network.
regards
Is this a problem caused by this vista "feature", which disconnects the 3G Modem from Vista, as soon as an other network is being connected via WLan or via cable?
I think this is a stupid feature. Instead of that the users just should set the metrics for the networks manually and you can be sure, that Vista always uses the WLAN instead of the GSM/3G modem, if both where available.
alazarid said:
The VPN that you are running is on VISTA side.(if yes try to see the routing table) by default the VPN get the default GW, and try to change it.
If this is the issue then you can go to the VPN connection properties -> Networking ->TCP/IP -> Properties -> Advanced -> IP Setings -> unchek the use the default GW on remote network.
regards
Click to expand...
Click to collapse
alazarid,
Thanks a ton, the TCP/IP part did the trick ! Now my VPN has a use ).
cheers !
Ok guys heres the issue...
At first I thought this problem was associated with the fact that there may have been some software monitoring for other data connections, to disable the GSM modem when not needed...
After checking into everything, I found that there is probably NO software that does this...
Since WM handles the passthrough for the 3G connection, and ontop of that the actual endpoint for the data connection on the GSM connection is the WM side and not Vista, what happens is what when the VPN creates a connection and you opt-in to use the default remote gateway (I prefer to use it, because I require this for the work I do), the default gateway is updated on the 3G network interface.
I beleive that this update of configuration, then causes the WM side to stop the connection because either a) it doesn't know howto interprit this or b) retries to create the connection because it thinks there is an error.
I havn't played with this for a few weeks, and have my fair shareof other stuff I deal with, so I cannot remember if WM NATs the 3G connection, but the key thing breaking this is the WM side.
I beleive that IF you did want to hack up a configuration that uses the remote gateway, you could configure a VPN connection under Windows Mobile and have WM connect to the VPN, therefor the PC would be using that connection (but wouldn't be aware that its connected to the VPN), therefore giving the user access to the VPN, WITH the remote default gateway being used.
Again, as I mentioned its been a while since ive gone tech on my Shift, but I beleive this is correct. If anyone wants to add anything, please feel free.

Categories

Resources