ok here is the setup:
domain and exchange setup on a lan with firewalls and vpn gateway.
I have configured the phone to local sync and remote gprs sync.
I have put in exceptions lists to my intranet for my company.com adresses.
it works fine to local sync and after a restart or 2 i can get the vpn connections going.
but after every local sync with AS 4.1 i get a question to re enter my userid and pw for the vpn connection when i´try to remote sync again. its like it foregets it or looses it somehow.
if I enter them again it works..
I have resetted and reinstalled everying 5-6 times always the same story
has anyone had the same problems??
i feel alone here...
Does anyone use vpn on thir WM5.0 devices??
I cant get it to remember the passwords...I am thinking it might be something ralated to AS4.1 but i am not sure...
your not alone lynxlynx, don't be disheartend.
although i can't help i'm sure someone will. just be patient, your not being ignored.
Related
I've been having a problem for the past week in that I could not connect to my Exchange Server or passthru to the Internet with and ActiveSync connection.
At least for the moment, on the Connections menu, clicking on "USB to PC" and disabling "advanced networking functionality" seems to have resolved the problem.
Anybody else run into this?
And what is this advanced networking, anyway?
I've also noticed that Sprite Backup would fail with it enabled, so it seems I've solved two problems at the same time...
i had that issue as well the work around i did was connect to my wifi connect my device to my pc sync then disconnect my wifi
still a pain
I've always just connected straight to the server over GPRS/UMTS. I haven't even installed Active Sync on my new PC.
hi Folks,
i have the same issue with Active Sync. I am using Active Sync for syncronizing emails, contacts etc ... I have discovered if you installed the device (hardreset) then you may able to sync with the exchange for the first time. After that you are not longer able to sync it.
I used different ROM's (Dopod, Qtek,O2) all have the same problem. I am not able to sync over Active Sync (4.2 latest and prior versions) with my exchange server. I need to sync over 3G Network and thats a bit expensive over the time with O2.
I think this device is more than incomplete since i am using a Wizard too and i have no problems with the same pc on my Wizard device.
I hope there will be a ROM update really soon that covers many issues discussed in that board here...
At least i am really disappointed about the device which HTC sold over the market.
Hi
On mine this works! - nevertheless i am using the IP adress - could be a hint for you guys
BR
Daniel
do you mean the IP address from the Exchange Server? Or do you pair your device with static IP addresses? :?:
Well ...
I got mine to work after i discovered that the proxy server i placed under gprs connection denied the connection to the exchange server. switching all to MyISP resolved the issue.
If you use a firewall try to look which address the RAPI Manager tries to connect to. Maybe that helps for you to solve your error.
Hi
I use the IP adress for the exchange Server name. The connection Between laptop and device is negotiated automatically
Over the last year I have tried many times to set up my Windows Mobile devices to connect over VPN and then use RDP to manage my clients' sites. To date I have never managed to get it to work. My config is as follows :-
Within Start \ Settings \Connections \ Advanced \ Select Networks
Programs that automatically connect to the Internet use MY ISP
Programs that automatically connect to a private network "My Work Network"
a VPN is configured under "My work network" and the device can connect to this and using vxutil I can ping the server I wish to RDP to - 172.17.3.3
Supposedly the important bit is to add the exception under "Work URL exceptions", I have added 172.17.3.3 in here.
Once the VPN is established if I enter 172.17.3.3 within IE or Terminal Services CLient the VPN connection is still dropped.
If I enter this IP address without connecting the VPN first then the device will not connect the VPN automatically.
If I enter a non qualified domain name such as ids-vs then the VPN is connected but the name is never resolved.
Can anyone shed any light on this, if I could use a local lmhosts file on the device as with XP then I may be able to work around the above. It appears to me though as though the exceptions list is never processed. I did a hard reset last night just in case, but this has made no difference.
I cannot believe that the above can be so complex.
I am using a HTC Tytn and using t-Mobile in the UK.
Any help greatly appreciated since it is driving me totally mad!
I would love to figure that out.
I was trying to connect to my pc at home like this and suffered from all the same symptoms your having. In the end I gave up, mainly 'cause someone told me that I needed another type of data plan to have vpn (at the time I had the $29.99USD plan) in other words it might be your plan, or something to do with the proxies or something, I hope someone would find out what you need to do in order to get this to work.
It's strange, looking around the web there are loads of people that struggle with the setup, but most seem happy once they are told to add the server name or IP address in the exceptions list.
I have ruled out the data plan since I can establish the VPN connection and can see it authenticate on the other end, as well as being able to ping the server on the work network from the phone.
I have just opened a support call with Microsoft as well, but I am not holding out much hope since I think they will point me at HTC. Assuming HTC ever responded they will just point me back at Microsoft!
Well it would be cool if they could help you, I tried everything myself and zilch. I could also establish a connection but as soon as I would try to access a file on my pc it would disconnect. I would try to help you out experimenting on my side again, but I changed my router to a cheap piece of $h.. and now I can't access my pc via vpn..... I really need to get a decent router
This may sound stupid, but I could swear someone told me something about the speed of the connection. If the connection speed is too low then DNS would fail, although that wouldn't explain why we are able to establish a connection, but not access anything else.
OK, I have made quite a bit of progress :-
1) I was using a cab file to configure T Mobile settings on the phone. This was somehow configuring the exceptions list to be ignored. Hard resetting the phone, installing this CAB the problem remained. Hard Resetting the phone and setting up GPRS manually - everything worked.
2) There is a fault with Windows CE 5 routing over VPN - the subnet information is ignored. Hence for example, if your GPRS provider give you a NAT 10.x.x.x ip address and your corporate network uses 10.x.x.x then you can never route to your corporate network.
And what cab file is that? do you know if it's on the extended roms for the t-mo roms? Glad to see your making progress, keep it up.
It was a Cab file for the Tmobile settings. It either came from these forums or over at modaco, can't remember which.
VPN
I was able to successfully use the Movian VPN to connect to my work using my XDA2.Worked fine for 2 years. Apologies, but I can't help with the settings and my work migrated to an M-notes server so I was able to connect without a VPN.
Has anyone had any success with L2TP/IPSec VPNs and Windows Mobile 5 or 6? I have no problems with getting PPTP to work but have NEVER had any success with L2TP/IPSec. I have valid Client & Server Certificates but I have never been able to get a connection; in fact the HTC Wizard I have never even attempts to make a connection (I have a sniffer on the Ethernet port my Wireless AP is connected to). I have tried using Certificates & Pre-Shared Keys but the results are the same - The Wizard never attempts to connect, with PPTP it works every time.
The Server I am using is a Windows 2003 RRAS server and I have verified with a Windows XP Client that L2TP/IPSec works.
I have asked the question before but have not had any helpful replies. I would be grateful if anyone who has set this up successfully can let me know and maybe give me a run-down of the steps you used. I am not interested in any 3rd party VPN clients, it must be the built-in one.
Thanks
Andy
Hi
Yes I have had the same issue with both the wizard and now hermes tried wm5 and wm6. I think it maybe related to NAT-T translation as am unsure from my reading weather MS supports NAT-T on the mobile end. If data session is being NATed by your provider then this may be the cause. Probably need to check the ip packets comming from the phone to see what it is sending out. Is that what you did or is the sniffer at the other end.
sebjepb said:
Hi
Yes I have had the same issue with both the wizard and now hermes tried wm5 and wm6. I think it maybe related to NAT-T translation as am unsure from my reading weather MS supports NAT-T on the mobile end. If data session is being NATed by your provider then this may be the cause. Probably need to check the ip packets comming from the phone to see what it is sending out. Is that what you did or is the sniffer at the other end.
Click to expand...
Click to collapse
It has nothing to do with NAT traversal. WM5 (and WM6 probably?) does NOT support NAT-T, however I am not attempting to get this working over NAT. As I said I have a put a sniffer on the Ethernet port my Wireless AP is connected to and my Wizard does not transmit anything when configured for L2TP/IPSec (except a DNS lookup for the VPN server name if I enter it's DNS name as opposed to it's IP address). With PPTP it works and I can happily see the packets it transmits on the sniffer.
This is really frustrating as it looks like no one has ever got this to work
I had a HP iPAQ 6365 previously with Windows Mobile 2003 and I managed to get it working on this quite easily
Andy
Andy
I now have this working on both the wizard and the hermes.
I am a bit confused with your last response as ipsec port 4500 is nat-t and is required and is being transmitted by both the wizard and hermes in my case.
My setup maybe somewhat different to yours as I have a windows sbs2003 server running isa and rras. It is sitting behind an adsl modem router connected to the internet. The data connection on my phone is edge network on the wizard and HSDPA on the Hermes. Also have tried this via WiFi as well.
Steps I used
On server side router
On adsl modem router setup forwarding udp ports 500 ipsec, 4500 nat-t and 1701 l2tp and protocol 50 IPsec ESP. I selected l2tp/ipsec from its predefined list but noticed it missed udp 1701 so added this manually.
On Server.
ISA management selected Network Configuration right click and selected Allow vpn connections. This essentially setups the ip filters to allow incomming protocols and then sets up rras for pptp and l2tp ports.
In rras configure a preshared key by right click server/properties/security tick allow custome ipsec policy... and added preshared key.
On mobile
settings/connections
My Work Network
Edit my vpn servers and added new IPsec/L2TP connection.
Works a treat hope this helps
I did notice on another forum something about disabling the phone skin but I did not have to do this.
Regards
Stephen
sebjepb said:
Andy
I now have this working on both the wizard and the hermes.
I am a bit confused with your last response as ipsec port 4500 is nat-t and is required and is being transmitted by both the wizard and hermes in my case.
My setup maybe somewhat different to yours as I have a windows sbs2003 server running isa and rras. It is sitting behind an adsl modem router connected to the internet. The data connection on my phone is edge network on the wizard and HSDPA on the Hermes. Also have tried this via WiFi as well.
Steps I used
On server side router
On adsl modem router setup forwarding udp ports 500 ipsec, 4500 nat-t and 1701 l2tp and protocol 50 IPsec ESP. I selected l2tp/ipsec from its predefined list but noticed it missed udp 1701 so added this manually.
On Server.
ISA management selected Network Configuration right click and selected Allow vpn connections. This essentially setups the ip filters to allow incomming protocols and then sets up rras for pptp and l2tp ports.
In rras configure a preshared key by right click server/properties/security tick allow custome ipsec policy... and added preshared key.
On mobile
settings/connections
My Work Network
Edit my vpn servers and added new IPsec/L2TP connection.
Works a treat hope this helps
I did notice on another forum something about disabling the phone skin but I did not have to do this.
Regards
Stephen
Click to expand...
Click to collapse
What ROM are you running on the Wizard? I am currently running a WM6 ROM but I previously used the official QTEK update (AKU 2.3 I think?) and then various WM5 AKU 3.3 ROMs. I have tested this with all of them and none have worked. If I could just see it attempt to connect I would be happy The fact is it doesn't transmit anything at all and all I see is the dialogue box on the Wizard saying 'Cannot Connect'....
With regards to NAT-T I read that the VPN Client in Windows Mobile 5 was not capable of this, I could be wrong however?
Andy
Sorry didn't have signature updated I'm running WM6 MBE on the wizard and WM6 Black on the Hermes
Ok I am still confused can you tell me exactly how you are connecting to your work network. Wifi or gprs.
Can you check also.
Under settings/connections/advanced/select networks make sure you have a separate ie different connections for the internet and private network. The Intenet settings will be your service provider grps settings.
For the private network mine is set as My Work Network. Edit this and make sure sure you do not have any modem connection listed ie we want to make sure it goes out over our existing connection and does not try to make a new connection. Make sure the vpn tab has your vpn settings as required they must be listed here and not under the Internet connection.
If you are using WiFi you must make sure the network setup is Connects to: The Internet and not set to Work. If it is work the VPN will not connect. You can not change this on the fly need to disconnect and setup again.
PM Me When you get to work given time diff I should be home. Might be able to test connection to my server at home then can check logs etc
Also use Task manger v2.7 to view netsats on phone to confirm udp ports and ip routes etc. It will show you if the phone is indeed sending should see upd ports 500 4500 and 1701 being used.
Stephen
sebjepb said:
Sorry didn't have signature updated I'm running WM6 MBE on the wizard and WM6 Black on the Hermes
Ok I am still confused can you tell me exactly how you are connecting to your work network. Wifi or gprs.
Can you check also.
Under settings/connections/advanced/select networks make sure you have a separate ie different connections for the internet and private network. The Intenet settings will be your service provider grps settings.
For the private network mine is set as My Work Network. Edit this and make sure sure you do not have any modem connection listed ie we want to make sure it goes out over our existing connection and does not try to make a new connection. Make sure the vpn tab has your vpn settings as required they must be listed here and not under the Internet connection.
If you are using WiFi you must make sure the network setup is Connects to: The Internet and not set to Work. If it is work the VPN will not connect. You can not change this on the fly need to disconnect and setup again.
PM Me When you get to work given time diff I should be home. Might be able to test connection to my server at home then can check logs etc
Also use Task manger v2.7 to view netsats on phone to confirm udp ports and ip routes etc. It will show you if the phone is indeed sending should see upd ports 500 4500 and 1701 being used.
Stephen
Click to expand...
Click to collapse
I am using WiFi, this is all in a test environment so I have full control over everything. Under Connections I have 'My ISP' and 'My Work Network' listed. 'My ISP' has a modem entry, 'My Work Network' has no modem but has a VPN listed with the IP Address of the VPN server and set to L2TP/IPSec using a certificate on the device (I have tried with pre-shared key also). The WiFi entry is configured as 'Connects to The Internet'.
I enable the WiFi and verify I have connectivity, I then go to Connections, click on My Work Network, 'Manage existing connections' select the VPN tab, hold down the stylus on the entry and click connect and I almost immediately get the dialogue box saying 'cannot connect'. If I edit the VPN entry so it is PPTP it works every time. As I said I have a sniffer on so I can see what the Wizard transmits and it when set to L2TP/IPSec it doesnt transmit anything whatsoever, with PPTP I can capture the whole conversation.
Thanks for any help you can give me.
Andy
Ok I have now also tried using certificates and your right it does not seem to sending any info at all. It might ahve something to do with checking the certificate store first I ahve had issues before with Cisco vpn and certificates you have to get the nameing and certification justs right before it even starts the connection.
So first thing lets try pre shared keys as I have got that working. I will PM you my server details if you wish to try that first.
Stephen
sebjepb said:
Ok I have now also tried using certificates and your right it does not seem to sending any info at all. It might ahve something to do with checking the certificate store first I ahve had issues before with Cisco vpn and certificates you have to get the nameing and certification justs right before it even starts the connection.
So first thing lets try pre shared keys as I have got that working. I will PM you my server details if you wish to try that first.
Stephen
Click to expand...
Click to collapse
I have just re-tested this and using a pre-shared key - same result
There is a brief flash of 'connecting' when you click connect but then the 'Cannot Connect' dialogue box appears, nothing gets transmitted. I have tried entering different IP addresses (public, private etc) just to see if it will transmit anything - it doesn't regardless of the IP address I enter.....
Andy
Andy
check your pm
Are you sure the wireless ap is actually passing the ipsec/l2tp traffic.
Working, well sort of.....
After a lot of messing around I now have this working, at least partially........
Following a soft-reset I can connect to a Wireless network OK (either a new one or one that is pre-configured), I can then connect the VPN using L2TP/IPSec. I can also manually disconnect the VPN and re-connect without any issues. However, when the wireless is disconnected (i.e. turned off from CommManager) and then re-connected the VPN will never work again, unless the Wizard is soft-reset.
Does anyone know what is likely to be causing this? some application in memory or a registry 'state' entry
Does anyone else see this behaviour?
Andy
I had exactly this with L2TP/IPSec on the MDA Vario II, but the same settings work as they should on my Athena.
ADB100 said:
After a lot of messing around I now have this working, at least partially........
Following a soft-reset I can connect to a Wireless network OK (either a new one or one that is pre-configured), I can then connect the VPN using L2TP/IPSec. I can also manually disconnect the VPN and re-connect without any issues. However, when the wireless is disconnected (i.e. turned off from CommManager) and then re-connected the VPN will never work again, unless the Wizard is soft-reset.
Does anyone know what is likely to be causing this? some application in memory or a registry 'state' entry
Does anyone else see this behaviour?
Andy
Click to expand...
Click to collapse
HI!
How can you DISCONNECT?? Do you get a "Disconnect" button or menu item somewhere??
How do you know you are connected to VPN?
Thank you,
Dmitry.
A bit late but...
I have a possible solution to the fact it doesn't send ANY traffic on a connect attempt - on my XDA mini S (HTC Wizard) it requires me to put something in the 'domain' field on the username/pwd screen before it will start the IPSec negotiation....
Now I just have to get it o complete the process with the sonicwall...
David
Revisiting this
I can't get PPTP going on my HD2. Thoughts?
bumping this message
I have tried all the usual vpn software (for 3g connectivity) the only third party software that connects is the ncp software, but I get stuck because it wont accept a challenge response grid.
Symantic - won't auth
Green something - doesn't connect
MS VPN - doesn't connect
I have been able to connect in the past with an iPhone, but without a java i can't connect to most motorola hardware devices at work so it's useless. I'm testing a G1 on 1.6 now and it fails to connect also. Going to try openvpn today sometime. MY friend has his Eris working, so I know droid OS works.
I work for a large company and switching vpn hardware is out of the question, so if anyone has a 3g resolution for winmo, I won't have to trade my HD2.
Hi,
L2TR VPN with the Windows Mobile is working !!
The trick with L2TR VPN on WM is to use: a IP address (and NOT a hostname)
Strange, because using a hostname with PPTP VPN on the Windows Mobile it works.
With the trick L2TR works perfectly.
Chris
Hello. This is my first foray into VPN on Win Mo. I can establish a PPTP connection between my Imagio (stock Win Mo 6.5 R1) and my SBS 2008 server. I can ping the server and can browse the company web page. But I am having no luck accessing file shares. I have Schaps Network Plugin installed, but it doesn't see/can't access the shares. Will switching to IpSec VPN work? If so, any guidance on how to set it up on SBS 2008.
On my work PC I use a proxy server to access the internet. However, since my phone has a separate internet connection, the proxy makes zero sense and of course does not work on my phone. Every time I connect my phone, it inherits the proxy settings from my PC. How do I stop this from happening in the future?
I'm running XP and Activesync 4.5.
Thanks in advance,
-n.
Oh.. i have the same Problem. And i opened a new Thread *upps*sorry*
Too late discovered
See http://forum.xda-developers.com/showthread.php?t=309108
Hi,
I'm having trouble with my MDA Vario III / HTC Kaiser running WM6.0 when making a connection to my office VPN (PPTP). I have to connect to the VPN to access the Exchange server. However, my IT people tell me that the phone is grabbing multiple IP addresses, so many that they have to eventually kill my access to the VPN.
I stopped using Direct Push, but even when the phone is scheduled to connect every 15 mins, the problem still occurs.
Can anyone suggest what's going here, and what the solution might be?
Thanks,
Jon.
Something seems to be wrong with your networking drivers on your phone. Mine doesn't grab multiple IP addresses just one and it keeps getting the same one in accordance to lease time settings on my DHCP Server and Firewall.
Thanks - your reply set me thinking, so I dug into the registry. The key relating to the VPN connection had 'EnableDHCP=0', this despite the fact that the connection is set to 'Use server-assigned IP address'. I've manually set it to 1, and I'll test tomorrow when I can talk to my IT people.
This is a real headache. The problem seems to be that the VPN connection refuses to use DHCP, even when I toggle the registry setting that I mentioned. If anyone has any ideas I'd like to hear them.