Hey Folks - maybe somebody can shed some light on VPN setup WM5/6
HTC-AT&T tilt / HTC-Tmobile 8125
I can't get either phone/network connection working for L2TP - I'll set up the connection on the server for PPTP, but for now let focus on L2TP
First - my Openswan server accepts L2TP connections from my laptop, so I know that the server side is OK
Second - I have used the Settings/Connections menu and added a modem under My Work Network, same settings as the modem for the Media Net(default network)
Modem details:
Name: Number
VPN1 wap.cigular
Select modem: Cellular Line(GPRS,3G)
Access point: wap.cingular
no user/pass/Domain
server assigned IP address
added a VPN with the same setting I use on my laptop
and try to connect by 'manage my existing connections' clicking the connection and 'connecting' it opens a 3G(At&T) connection I see the timer ticking if I check the connection. I don't think the network connection is right on the T-Mobile connection - no timer for a connection.(anybody have the T-Mobile network settings)
VPN1:
name: test
hostIP:XX.183.105.172
vpn: L2TP
preshared key
username & password
server assigned IP
But I get no data in the browser URL http://192.168.30.30
I see in the browser a info msg saying locating, and then it says opening...
but nada on either phone.
PC pops the web page up with no problem,
Third - yes I do have data plans for both phones ;-)
Lastly - yes my PC address is NATed, and I don't THINK that the AT&T address is NAT'ed (anybody??)
---
I ran across this : http://www.tutorials-win.com/PocketPC/PPTP-Issues/
which details entering dot'd addresses as an exception or it will drop the connection, which is what it looks like it is doing for a straight IPSEC connectio via TheGreenBow sw(which does not pass data either)
Here are the logs on the server from the laptop:
Feb 3 18:29:18 fc5 l2tpd[9768]: Connection established to 74.166.195.61, 1701.
Local: 33901, Remote: 2. LNS session is 'default'
Feb 3 18:29:18 fc5 l2tpd[9768]: Call established with XX.166.195.61, Local: 572
20, Remote: 1, Serial: 0
Feb 3 18:29:18 fc5 pppd[9773]: pppd 2.4.3 started by root, uid 0
Feb 3 18:29:18 fc5 pppd[9773]: Using interface ppp0
Feb 3 18:29:18 fc5 pppd[9773]: Connect: ppp0 <--> /dev/pts/0
Feb 3 18:29:23 fc5 pppd[9773]: Unsupported protocol 'Compression Control Protoc
ol' (0x80fd) received
Feb 3 18:29:23 fc5 pppd[9773]: Cannot determine ethernet address for proxy ARP
Feb 3 18:29:23 fc5 pppd[9773]: local IP address 192.168.130.99
Feb 3 18:29:23 fc5 pppd[9773]: remote IP address 192.168.130.130
I think that the compression control msg is MPPE but it should not be...
Any and all thoughts are welcome - I'm pulling what little hair I have left out...
Many Thanks
bobm
Hi Bob
Ok
First thing do not create a modem under the my work network section it needs to connect using the internet modem. If you have a modem under my work network it will try to directly access your work network via this modem and not start the vpn connection.
You should only have the modem section filled out for the connection for the internet. So Under settings connections you should have wap.cingular setup for internet. You can then setup the vpn settings in the my work network under edit my vpn servers. In this section you can press on the vpn and select connect.
Or you can make it connect automagically by adding exceptions for intranet addresses in the settings/connections/advanced section. ie *.my.domain.com/* or */* for everything etc.
One other problem if the wap.cingular is using the same nated address range as your internal network you will also have problems. ie if cingular use 10.x.x.x and you internal network is 10.x.x.x.
Regards
Stephen
PPTP VPN connections will not work on the wap.cingular APN. wap.cingular uses a NAPT to generate your IP address. NAPT does not support GRE packets which are necessary for PPTP VPN connections. However, I have read it is possible to setup an IPSec VPN across the NAPT server, although I have never done it.
Related
I'm trying to VPN using GPRS to several networks which I have access to but I can't seem to be able to VPN them with my PDA2K. I can VPN them easily with no special configuration with my XP.
My i-mate keeps trying "Connectioning XX VPN..." and then aborts after about half a minute saying to check the username and password. The username and password are correct.
I called my cellular provider and they said that I should be able to connect to a VPN only if 'UDP Encapsulation' is defined on the VPN server?!?!? Well.. What is this thing? I'm trying to connect to big corp VPN, they wouldn't even listen to 'special requests'. I tried to connect to 4 different VPNs and I could not connect to any single one of them!
I really need that VPN connection via GPRS with my PDA2K. Any help would be more than appreciated. Maybe a different client than the built in VPN client of the WM2003SE ?
Thanks in advance.
Sorci
anyone?
bump for help. this gotta be a common prob.
Your GPRS connection will be subject to some form of NAT (Network Adress Translation) through your provider. VPNs don't get along well with NAT as the firewall doing the address translation modifies the packet header after it has had it's hash value calculated by the client (in this case your PDA). The receiving firewall will reject the packet as the hash values for the (now modified) packet don't match.
UDP encapsulation gets around this by encapsulating the encrypted and authenticated (secure) packet in a UDP packet which will be happily modified by the NAT'ing firewall. The receiving firewall will decapsulate(is that even a word?) the UDP packet and process secure packet inside as normal.
James
Thanks a lot Jamz for the thorough detailed info. I appreciate it.
So what's the fix? I tried several other VPNs and was unable to access them as well.. I can't just call all these providers and make some strange requests for a 'one guy with a pda2k and a gprs connection' that wants them to change their VPNs, enabling or disabling protocols or port.
Any other solution?
sorci said:
Any other solution?
Click to expand...
Click to collapse
Are you sure you're using the built-in VPN client in Windows, and not something like a Cisco VPN client?
You could try something like the Movian VPN client (not sure this is still made). I've used this previously with a Cisco VPN and it is fully configurable to handle multiple VPN types.
I've got a similar problem. Am trying to set up a temporary GPRS connection into my work LAN (I work for myself but 2nd child due shortly so want to be able to connect in from home for a couple of weeks only). I've got MS Win2000 Server set up to accept incoming VPN connections and it works fine on a dial-up connection but refuses to authenticate my username/pasword whenever I try to get the GPRS working.
As it's only going to be used for a short period of time, I'm loathe to spend out on any specific hardware/software but if anyone's got any suggestions, I'd be grateful.
If it helps, the LAN is behind a Netgear DG834GT ADSL modem/router/firewall and VPN PPTP and IPSEC are allowing in and out on it. The server is on a static IP address in the range 192.168.99.x.
GPRS Connections and VPN
With O2 you have to aks for VON connectivity to be enabled and connect to vpn.o2.co.uk instead of mobile.o2.co.uk. (by the way you can't access the web whilst connected to the vpn.o2.co.uk AP)
I suspect that most providers have simalair requirements
Dave
Hi guys,
I don’t know you guys can help me or not well My problem is
I’m trying to connect my I-Mate PDA2k to Senao Wireless Assess point my access point connected with my network switch .My access point showing WAN light and on my mobile also showing “W” its mean PDA getting signals but I can’t access internet from my PDA.
I don’t know how to configure access point I took access point without catalog and serial cord I don’t we use serial cord or not.
In simple words I want 2 access internet without GPRS.
Information:
SENAO
2-port switch wireless router printer server
SL-2511SR PLUS(F200)
MAC 005018578BO
I-Mate PDA2k Microsoft
OS windows 2003 CE
Local network
IP Class Local = 192.168.0.XX
Internet Sharing = ON
Look for help on configuring your the Senao web site for configuring your wireless router: www.senao.com.tw. I have an access point and it's working like a charm with my Blue Angel.
If you don't have a DHCP server or you have not configured your wireless router as a DHCP server, follow these procedures on your PDA:
Tap Start, Settings, Connections (tab), Network Cards (icon), Network Adapters (tab), tiacxwln Compatible Wireless Etherne....
Then check: Use specific IP address. You'll need to set values for IP Address, Subnet mask, and Default gateway. You IP address should be (quoting you) something like 192.168.0.xxx and subnet mask is probably 255.255.255.0
Also be sure to tap on Name Servers, and fill in the info there, you'll need a DNS address to access the Internet.
Finally, to configure your proxy server, go back to Connections, Advanced, Select Networks, and create a new connections and configure the proxy server accordingly, if it exists. If you're supposed to connect thru SecureNAT (ie Default gateway), you can simply ignore this step, or create a network profile that "connects you to the Internet" without specifying a proxy server.
I am trying to establish a VPN connection but cannot get the connection to work.
I am using the built in MS VPN client of Win Mobile v5.0 (5.1.1700 build 14352.0.1.0)
I am having real problems getting a VPN connection set up with our network.
I have tried both PPTP and L2PT
When L2TP, I was authenticating with a preshared key
Firewall logs show PPTP negotiation successful, and issues a VPN IP address to the device
It can ping the firewall external interface, but times-out trying to reach an internal address
The VPN session is established, but the firewall logs don't register either deny or allow traffic for each internal ping request, rather the firewall packet error count increments for each failed attempt.
Any help is greatly appreciated.
I had problems with PPTP - gave up
I hate the way Windows mobile labels connections.
I connect to many customers with PC Anywhere, VNC, SSH etc and I have access via serveral different windows PPTP VPN.
Like you I setup the details in connections and try to dial.
Nothing seems to happen. The connect option does not change to disconnect. So I assume it is not connected.
I have a feeling these connection do not work over WIFI. and perhaps work over T-mobile 3g only, to maximise data revenues.
Seems very buggy to me. I would really like someone to post a working example/Instructions. Can I get a refund on my MDA PRo?
MS please note it is not a connection to my work or an internet connection it is to a customer for remote support, likewise I often connect remotely to my home via PPTP from my office.
confirmed VPN works over t-mobile 3g not Wifi
SEems the VPN links only work over 3g not Wi FI.
I'm using a PPTP connection over either 3G of WIFI depending on te active connection.
- When WIFI is active the PPTP connection connects using WIFI (I can switch off the phone, so it must be using that one)
- When no WIFI connection is active it automatically connects to 3G first, and than starts the PPTP session
In network management I'v set:
Internet:
Internet (the one containing the 3G connection)
select 'this network connects to the Internet' on the proxy tab.
private network:
My Work (the one that contains the vpn connection)
do NOT select 'this network connects to the Internet' on the proxy tab.
So as you can see, nothing special (I'm using a Qtek 9000 with standard Wm5 ROM)
Hello,
Yesterday I got a wlan/wifi enabled adsl modem/router for my broadband connection which uses telephone line. I wanted to use the wifi output given by the modem, for my ppc in my home for internet. Something like wireless home networking. As this is the first time, I don't know or I'm a noob. The security settings in modem are :
Network Authentication: Open
WEP Encryption: disabled
When I search wifi signal, My ppc detects the modem; Says connecting and after few mins says unavailable so it don't connects.
Here is the manual : Link
Please help................
Solved : The modem was setted to "Bridging" ( Manual Connecting ) and after setting it to "PPP over Ethernet (PPPoE)" ( Auto connect ), The internet in my ppc is working fabulous.
Thanks and regards
Ok, now my PPC says connected. When I assigned ip in network adapters->wlan setting ( SDIO WLAN Wireless Adapter ).
But another problem here, Cannot use the net. Mean, IE or weather report or IM don't connect to internet.
Is there any MAC filtering set on the box? Are you getting a genuine IP lease, or is it a Windows auto-configured setting (169.254.x.x)?
Just looked at the manual - other things to check:
Is NAT (page 48) enabled?
Is DHCP Server (page 55) enabled on the box with correct IP range, subnet mask and gateway IP?
Rock Kicker said:
Is there any MAC filtering set on the box? Are you getting a genuine IP lease, or is it a Windows auto-configured setting (169.254.x.x)?
Click to expand...
Click to collapse
Rock Kicker said:
Just looked at the manual - other things to check:
Is NAT (page 48) enabled?
Is DHCP Server (page 55) enabled on the box with correct IP range, subnet mask and gateway IP?
Click to expand...
Click to collapse
Hello,
Thanks for the reply.
First, It was auto configured IP setting so in my ppc it was not connecting but after assigning the IP ( IP : 192.168.1.2, Subnet : 255.255.255.0, Gateway : 192.168.1.1 ) the ppc says connected.
OK, I will checkout that NAT and DHCP.
Thanks again.
Hey buddy,
This is right down my alley, if you still need some assistance just pm me.
I asked this question in a Rom thread because I'm not sure if the VPN is not working bc of the specific ROM or bc my device is rooted...
Has anyone tried using a vpn on this rom? I use witopia, and when connected to my vpn, I'm not able to access Internet at all. Just trying to figure out what's going on.
More info: the folks over at witopia said that some roms may be incompatible for vpn use.
When using WiTopia, I went to their instructions for Android following this method:
IPSEC VPN Setup
Go to Settings -> Wireless & Networks -> VPN -> ADD VPN
Set the following:
Name: (Any Name You Want)
Type: IPSec Xauth PSK (MUST BE THIS)
Server Address: Click Here for Server Names
IPSec Identifier: WiTopia
Pre-Shared Key: witopia
Save
Connecting
Click on the name of the VPN to which you wish to connect.
Enter your VPN Username*** (will usually be W\YourEmailAddress)
(example: W\[email protected])
I have done this exactly, the VPN shows connected but I can't access the internet at all. Anyone have any ideas on this?
Here's a few places to look:
The "Use Encryption" box should be checked in the VPN connection settings on the android device, when using IPSec
Try getting the Android device connecting to the VPN server (by IP address) over the local wireless network first, before you try it over the Internet. Your router may be blocking it.
On that point, make sure that the appropriate ports are forward on your router, TCP Port 1723 and GRE Protocol 47 must be opened/enabled and for L2TP ensure UDP port 1701 is not blocked also UDP ports 500 and 4500 if using IKEv2 for the VPN tunnel.
Hope it could help.