Related
Sorry to be a pain with a new thread, but I need to connect to a standard IPSEC (cisco) VPN gateway. IPSEC is built in on the iphone2.0 but apparently not on winmo so what's the cheapest (free?) client to use that will work with the HD?
Thanks
Nothing good for free so far...
See http://forum.xda-developers.com/showthread.php?t=395622
You can go green or blue, but neither of these is free:
http://www.theGREENbow.com/mobile.html
http://www.BLUEfiresecurity.com/products/vpn/
Have fun
I connect to my workplace using IPSec/L2TP built into Win 6.1 on my Diamond, IPSec is what the connection is at work and I connect without any problems..
Trixster,
What firewall do you use with this? I'm using a CISCO ASA (previously PIX) and can't seem to get it working. In the ASA logs it looks like it's not selecting the right tunnel.
Are you using a cert or a preshared key?
Thanks
Pre-shared Key and the unit is SnapGear 560, I haven't setup the HD yet to connect as I'm still playing with it but I don't see why it should differ from the Diamond?
Native IPSec stack on WM6.1 doesn't seem to be compatible with Cisco IPSec.
stepw said:
Native IPSec stack on WM6.1 doesn't seem to be compatible with Cisco IPSec.
Click to expand...
Click to collapse
I'm beginning to think this, but I also have a feeling it might be to do with NAT-T.
I'm going to carry on trying today, failing that I will be going to bluefire (or anything else you can recommend? I'm after a lightweight VPN client just for the odd session, it doesn't need to be smart)
My phone is really like a small computer (HTC Advantage x7510) and I would really like to be able to connect it to my company's corporate VPN. A typical windows/mac/linux client connects with Cisco's AnyConnect software, and while Cisco released a version of AnyConnect with the iPhone, they didn't for Windows Mobile 6.1. The problem as I understand it is that Windows Mobile natively supports PPTP and L2TP/IPSec connections while the Cisco implementation wants pure IPSec. The authentication scheme that we use is certificate based and then user/pass based. I created a user certificate on my desktop and then exported it to a .pfx (PKCS #12 Container) file and then imported it on my mobile device.
I have tried The Green Bow, but I have been unable to get this to work... The app seems rather buggy and I can't even save off the log properly to find out why it isn't working.
http://www.thegreenbow.com/mobile.html
Bluefire seemed like it would do the trick, but after I tell it what Certificate to use and click Finish, it tosses out an error: "An internal error has occurred while processing your request. Please contact the system administrator". It appears that Bluefire Security has disappeared, at least from the web.
Anatha VPN seemed like it would be an option, however the UI seems buggy because I can't get the dropdowns to work in the configuration (using any DPI setting in realvga). Either the Gateway dropdown or the Gateway Type dropdown do not work... it varies.
http://www.anthasoft.com/anthavpn-virtual-private-network.php
Does anyone have a solution? Free or commercial... doesn't matter.
Latest version of NCP VPN works very very well for Cisco IPSec, you can download a trial version which is valid for a few days. not buggy, but commercial....
http://www.ncp-e.com/en.html
padanfain said:
My phone is really like a small computer (HTC Advantage x7510) and I would really like to be able to connect it to my company's corporate VPN. A typical windows/mac/linux client connects with Cisco's AnyConnect software, and while Cisco released a version of AnyConnect with the iPhone, they didn't for Windows Mobile 6.1. The problem as I understand it is that Windows Mobile natively supports PPTP and L2TP/IPSec connections while the Cisco implementation wants pure IPSec. The authentication scheme that we use is certificate based and then user/pass based. I created a user certificate on my desktop and then exported it to a .pfx (PKCS #12 Container) file and then imported it on my mobile device.
I have tried The Green Bow, but I have been unable to get this to work... The app seems rather buggy and I can't even save off the log properly to find out why it isn't working.
http://www.thegreenbow.com/mobile.html
Bluefire seemed like it would do the trick, but after I tell it what Certificate to use and click Finish, it tosses out an error: "An internal error has occurred while processing your request. Please contact the system administrator". It appears that Bluefire Security has disappeared, at least from the web.
Anatha VPN seemed like it would be an option, however the UI seems buggy because I can't get the dropdowns to work in the configuration (using any DPI setting in realvga). Either the Gateway dropdown or the Gateway Type dropdown do not work... it varies.
http://www.anthasoft.com/anthavpn-virtual-private-network.php
Does anyone have a solution? Free or commercial... doesn't matter.
Click to expand...
Click to collapse
I am not sure who told you there wasn't a Windows Mobile version of the Cisco AnyConnect VPN Client because there is. There are Windows versions, Intel & PowerPC Mac OS X versions, Linux versions and Windows Mobile 5/6 versions available. I can't however see an iPhone version.
The current version for all platforms is 2.3.0254. The release notes are here:
http://www.cisco.com/en/US/docs/sec...nyconnect23/release/notes/anyconnect23rn.html
Andy
AnyConnect VPN Client is available for WM Pro, but it does not support IPSec...
The Anyconnect from Cisco doesnt work with the concentrators.
tenser234 said:
The Anyconnect from Cisco doesnt work with the concentrators.
Click to expand...
Click to collapse
No it doesn't. The 3000 series concentrators have been EOL for a while. The AnyConnect client is for use with IOS Routers and ASA Firewalls (plus the PIX but this is EOL as well). You can use the native L2TP/IPSec client in WM5/6 with the 3000 Concentrator though (as you can with IOS & the ASA).
Andy
We have a trial mobile agent setup and I have anyconnect installed and configured on my phone. I am able to establish a VPN over HSPDA and I can hit internal web pages via IE, but I am unable to RDP or SSH anywhere. Is anyone using anyconnect and able to do these things?
padanfain said:
We have a trial mobile agent setup and I have anyconnect installed and configured on my phone. I am able to establish a VPN over HSPDA and I can hit internal web pages via IE, but I am unable to RDP or SSH anywhere. Is anyone using anyconnect and able to do these things?
Click to expand...
Click to collapse
I know this is really old, but I was looking for some ipsec stuff for home. However I do use AnyConnect for SSL work vpn and I can RDP and SSH just fine.
The AnyConnect SSL Mobile client works great with the ASA 5500's. Does anyone know what it takes to fool the router into thinking a mobile device is not VPN'ing in? You need a Windows Mobile AnyConnect license installed to make the Windows Mobile client connect. We do not own any at the moment and I'm eager to see it work.
Ok I've got my ASA 5510 working perfectly using Windows Mobile and Bluefire IPSec vpn. We normally run SSL Vpn but keep Ipsec open for site to site VPN as well as mobile VPN. I got a quote on Cisco SSL AnyConnect mobile licenses on the firewall and they are $100 a pop. But if you're looking for a great IpSec client that works go with Bluefire...
HI to all
I am looking for a working VPN Client (the Iphone has one which is working) to connect my Touch Cruise to the intranet of my firm.
I read that NCP has one, but it is quite expensive ...
is there any other solucion?
For free?
Shrew is working fine on my laptop, but y would like to check something out of mi WinMo Polaris.
I actually am using WinMo 6.1 but if necessary I also could change to 6.5
Thanks
Isidar
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
you can use hamachi-0.0.3.1
http://rapidshare.com/files/83751409/hamachi-0.0.3.1.rar (for your mobile)
https://secure.logmein.com/products/hamachi/list.asp (for your pc)
clmbngbkng said:
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
Click to expand...
Click to collapse
i think openvpn is not compatible with cisco vpn since cisco uses ipsec and openvpn uses a simply tunnel created on udp port 1194 (no need for gre,ike,or pptp port's/protocols open).
it's much simpier but work very well and just with the p12 certificate (ok my certificate is 2048bit so i think it is minimally secure, nothing like a dynamic generated rsa key but even better than just a ssh tunnel or something like).
Back in the days of Windows Mobile 2003 I used to use "MovianVPN" to connect to my university network. The software is now superseded by AnthaVPN (www.anthasoft.com). It is designed for Windows Mobile 5 and they have no mention of WM6 compatibility, but I think its worth a shot.
I also read about another product called "Bluefire VPN", but I can't seem to find it online at the moment.
Edit: The above solutions are not free, but the price might be refundable by your company.
Cisco AnyConnect for Pocket PC
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
The Cisco device at the other end has to be setup for SSL VPN otherwise Anyconnect does not work. This is somewhat new and SSL VPN licenses are expensive.
Personally I use AnthaVPN on my HTC Touch (WinMo 6.1 Pro) and it works great with our IPSec Cisco VPN (the old way since we're too cheap to buy the licenses for the SSL VPN).
EDIT: And if your company is setup for SSL VPN, you should not need to download a client. Your admin should give you a website and it connects to the router/firewall/VPN concentrator and downloads the proper client for you. Better than going to some random site to download something.
The integrated L2TP/IPSec client?
I have posted previously on here about VPN clients and Cisco Routers & Firewalls. The integrated L2TP/IPSec client works with both Cisco PIX/ASA Firewalls as well as IOS Routers - it is dependant on how these are configured though. I posted two configurations from PIX 6.3(5) and PIX 7.2(4) - both of which I had working. It seems there are some limitations when setting up groups however my testing didn't include this.
http://forum.xda-developers.com/showthread.php?t=444948&highlight=Cisco
I was going to test the Group issues someone reported but never got around to it - I have a full-time job as well
Andy
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
Cisco nice good work,try it with my Dopod and router working.
thank you guys to put the links.
AnyConnect Secure Mobility Client 2.5
Hi guys
Could anyone post the link for Cisco AnyConnect Secure Mobility Client 2.5 as it is one of the only vpn client solutions having WM6.5 and Cisco routers work together
Could you propose any other solution for WM6.5 and Group authentication cisco servers
Thanks
I have just downloaded the AnyConnect Secure Mobility Client, v2.5 and it works a treat thanks for this post, it was released in Aug and works with 6.5
Please note, i legally have a CCO account and valid service contracts for Cisco ASA and VPN gateways.
To the previous poster, please buy relevant CCO access to download.
Hello everybody, first of all sorry for my bad english!
I am thinking to buy an hd2, but i have a question.
At my work place, there is a WiFi network protected by Cisco VPN with a certificate and user-password autentication.
I would to connect with my hd2 with this network.
In Cisco VPN integrated in WM6.5 or i have to install a dedicated software? in this case, the software is free or i have tu buy it?
Another question: is WM6.5 multilanguage (localized in italian in particular) or only in english? If it is only in english is not a big problem, but, well if WM is localized in italian is better for me.
Thanks for reads and answers.
gmrfcb
I don't think there is a built-in support for Cisco VPN client in WM. There isn't one even in "classic" windows. Only operating system that has built-in support for Cisco VPN client is MacOS X from version 10.6
I really spent more than 10 nights on that desperately trying to figure out how to make it work with SecurID RSA and Cisco VPN groupname authentication... Still nothing helped.
Why on earth did you lose that much time? When there is no built-in support in "regular" Windows for that, why would it be in WM?
Highl1 said:
Why on earth did you lose that much time? When there is no built-in support in "regular" Windows for that, why would it be in WM?
Click to expand...
Click to collapse
Ever heard of 3rd party softwares ?
gmrfcb said:
Hello everybody, first of all sorry for my bad english!
I am thinking to buy an hd2, but i have a question.
At my work place, there is a WiFi network protected by Cisco VPN with a certificate and user-password autentication.
I would to connect with my hd2 with this network.
In Cisco VPN integrated in WM6.5 or i have to install a dedicated software? in this case, the software is free or i have tu buy it?
Another question: is WM6.5 multilanguage (localized in italian in particular) or only in english? If it is only in english is not a big problem, but, well if WM is localized in italian is better for me.
Thanks for reads and answers.
gmrfcb
Click to expand...
Click to collapse
If you are talking about Wifi by Cisco AP, it has nothing to do with VPN. The way enterprise authenticate user by Cisco AP is normally thru EAP-Fast which doesn't support by WM by default. If that's the case, install Juniper Odyssey for WM (not free but you can try it for 30 days) should solve your problem.
Xeon said:
Ever heard of 3rd party softwares ?
Click to expand...
Click to collapse
mate, there is no 64bit version of Cisco VPN Client for Vista and Windows 7, and you expect it to be for WM?
Highl1 said:
mate, there is no 64bit version of Cisco VPN Client for Vista and Windows 7, and you expect it to be for WM?
Click to expand...
Click to collapse
AnthaVPN...
But it doesn't work for me as we use groupname authentication at work and this is not supported with AnthaVPN...
I know, Verizon VZAM also supports it, but some parts
AnthaVPN or bluefire
I can connect to my office VPN (Cisco contentrator) with Bluefire VPN.
Some time ago I tried also AnthaVPN with success.
I had to make some (many..) experiments before the success.
patomas said:
I can connect to my office VPN (Cisco contentrator) with Bluefire VPN.
Some time ago I tried also AnthaVPN with success.
I had to make some (many..) experiments before the success.
Click to expand...
Click to collapse
Does you Cisco vpn concentrator uses groupname auth. ?
patomas said:
I can connect to my office VPN (Cisco contentrator) with Bluefire VPN.
.
Click to expand...
Click to collapse
same here, works great. is the only one that works
Xeon said:
Does you Cisco vpn concentrator uses groupname auth. ?
Click to expand...
Click to collapse
for groupname auth you need to have root CA certificate installed on your computer/device
if the CA is Microsoft Active Directory Certificate Services, then try to export the root CA from the web interface (it's usually http://computername/certsrv), and to install it on WM
Cisco Anyconnect
Cisco Anyconnect works with Windows Mobile / Vista (x64) / Windows 7 (x64). However requires additional licenses for ASA / Cisco Firewall.
MB
WinCE client for AnyConnect works with WM? Didn't know that
Btw you don't need additional license for ASA afaik, you just need ASD 6.x and ASA 8.x
I have a Windows Mobile 6.5 phone with the latest energy rom developed. My email provider enforces SSL and since a week it is not possible to receive emails anymore. I was in contact with my provider and they disabled SSL v3 in relation to the POODLE attack.
Is Windows Mobile not using TLS v1.0 and further. I am using the standard Messaging software in Windows Mobile 6.5.
I also updated installed one root-certificate but do I have delete other root-certificates?
The option to view certificates does not show which kind of SSL or TLS they are supporting.
Can I update Windows Mobile 6.5 Messaging to TLS?
Thanks for any help.
Problems with ssl and windows mobile 6.5
Hello @flyingblackbird,
please follow the thread (I'm new member and prevented to post the link directly) at
pocketpc.ch/htc-hd2-kommunikation/220745-htc-hd2-ssl-e-mail-pop3-probleme.html
I do not know if you could update your phone OS, but you could replace your email client by profimail.
It is for free and it works properly. Configuration is a little bit strange, but after working with it for some time you will understand it.
Important: you must select in the menu "extended configuration" in the appropriate boxes the right SSL protocol (StartTLS) by pressing the arrows and the correct port configuration.
Hope it helps solving your problem.
Kind regards
Mary Hopkins
Profimail
Hello @Mary Hopkins
thank you for your suggestion to use Profimail. I installed the program and it works really well. It has a lot more functions than the standard messaging program. I tried to use Fleximail and Qmail but especially Fleximail is not freeware.
I tried a bit to look at the registry in order to disable SSL v3 but it is not easy and of course dangerous. I found a few keys for Opera which seems to be easier to disable. A general key for TLS 1.0 does not even have a value.
Nevertheless, thanks a lot for mentioning Profimail.
Greetings