Anyone try using a PPTP VPN and get it working? My linux laptop and old iphone 3g connect fine to this end point, but the Epic fails almost immediately. Ideas?
Thanks
Actually, I tried this myself and had it fail as well (although I couldn't test it with another client ie my laptop at the time). I've also had many other problems getting more than a few other applications to connect: (see this thread: http://forum.xda-developers.com/showthread.php?t=775836)
I'm seriously thinking there is some firewalling/port blocking that was built into this phone. I wouldn't say it's built into the networks because both sprint and clear connections exhibit exact same applications not working (ports blocked?) and thus I'd guess port blocking in the config files of the phone. I'll research the issue more in depth after I get my phone exchanged first (gotta take it back and rebuy it to get my 2 year discount :\ don't wanna root before)
Related
I've had this issue pretty much since I started using WM devices.
I'm on the AT&T network (HSDPA), but barely can connect to either my work, or home VPN servers. Usually, after setting up the phone and VPN connection for the first time, it will work. But after that, it'll take roughly 10 tries to get it to connect again. Even when it's connected, the connection will drop (w/o notification) within a few minutes.
VPN is important to me, since I often have to remote into home or work PCs to fix problems. I can usually get a RDP window up and running when I finally do get the VPN connection to establish, but I never have enough time to actually do anything... it dies so quickly.
I've been on the phone with AT&T numerous times on the issue. They've given me ISP.CINGULAR access, as well as a static IP for an extra $3 a month. It doesn't help, though.
Any suggestions?
**EDIT**
I did try searching for this, but didn't find anything helpful. I was limited to searching on each page, as "VPN" is too short a term to search for using the search function....
I had some issues with my internet connection, after the WM 6 update. When I updated my Radio Version the problem went away. You may need to update your ROM/Radio. Depending on which device you have, there may be many choices for you to do this.
quarlow said:
I had some issues with my internet connection, after the WM 6 update. When I updated my Radio Version the problem went away. You may need to update your ROM/Radio. Depending on which device you have, there may be many choices for you to do this.
Click to expand...
Click to collapse
I've tried more radios than I can shake a stick at. My IP is also not static, though AT&T is charging me $3 a month for that. Punks.
Which radio are you using now?
I'm bringing this thread back up, because I absolutely cannot figure out why VPN is so darn spotty.
On my current ROM (RomeOS 3.1), I can't even get VPN to connect at all. On the ROM I was using prior (Q-Mobile 1.2), it would show connected, but I couldn't get a RDP connection to an internal IP address. Within a minute or so, the VPN connection would just disappear.
This problem goes from ROM to ROM, so I'm wondering if something is wrong with my account at AT&T. Can anyone here use VPN reliably?? If so, what did you do to get there? It certainly does not work out of the box... I really need this for work.
My Xoom usually disconnects the VPN immediately after opening any file from an SMB Share using ES File Explorer. I preferred Astro but the SMB addon doesn't work with Honeycomb yet. A variation of different vpn clients all do the same, as soon as data is done being transferred from a single download, the VPN will disconnect.
Is there a workaround for this? It would be great to only have the VPN connect when resources on the network were accessed or written.
I haven't found a workaround or solution to keep the VPN up and stable.
(btw, this is a typical MS 2008 PPTP on a Windows Domain)
At the moment, I'm having to reconnect after every file transfer- again, the wireless network doesn't seem to make a difference (although the 3g connection is obviously poor)
I've done a little troubleshooting on this in the last few days using the magic of wireshark. MS PPTP Server, makes the connection and then drops after SMB traffic is attempted, as well any website will not load, and no email / communication will work.
I believe this fully involves a Default Gateway setting on the Xoom, being it's a client-side setting and the Xoom doesn't appear allow that option to be changed (silly that it's missing, imo).
When I make a connection, Verizon's firewall policies see a foreign IP return traffic at some point on their network and blocks the transmission completely, eventually causing PPTP to timeout.
Here's a good read on how to get around the restriction:
http://jbenisek.wordpress.com/2010/10/05/android-2-1-and-2-2-vpn-pptp-over-verizon/
I myself have been on the phone this morning regarding this issue, I'm up to about a 3rd level of tech support and he is trying to tell me 'nothing is blocked at all on the Verizon network'...
I'm awaiting a call back now... at which I'll try to show him the above site/resource and maybe he'll move me to an unrestricted IP block. We bought 3 Xooms with the intention of working remotely in the field using PPTP- 4 more coming soon---
At this point, I'm still tempted to go back to Sprint and just wait on their Xoom release.
*btw, you can verify the above by tethering to the Xoom and changing your default gateway on a laptop/pc, the connection will work fine.
edit:
AH-HAH!
And more info;
http://code.google.com/p/android/issues/detail?id=4706
Apparently this is a known issue.
Encrypted PPTP is broken on Android: http://code.google.com/p/android/issues/detail?id=4706
I've posted about this problem in this thread:
http://forum.xda-developers.com/showthread.php?t=992876
I've tried it on every version of Android since 2.1. I tried it with my Xoom on 3.0 and the problem remains. It appears to be a pretty low priority for Google.
sangreal06 said:
Encrypted PPTP is broken on Android: http://code.google.com/p/android/issues/detail?id=4706
Click to expand...
Click to collapse
Turned off encryption on the server and all was well. I can't believe google let that slide... !?
I guess I'll transition to a L2TP VPN...
I just picked up my wifi only Xoom today, and discovered that it appears to have an issue that's virtually identical to one that the Thunderbolt shipped with as well: I simply cannot make L2TP over IPSec connections. In fact, judging by the logs on the server, the VPN client in Honeycomb does not even try to connect. Checking the server side logs shows no entries whatsoever. However, if I go back to my Thunderbolt (which now, being rooted and on a different ROM, will work) I can connect to the same VPN, with the same settings, with no issues. But when I try from the Xoom, all I get is "Unable to connect to the network. Do you want to try again?"
However, I can establish a PPTP connection from the Xoom without any problem (which is, again, exactly the behavior that my Thunderbolt exhibited until I was able to go to a new ROM), BUT, once the connection is established, the Xoom behaves as though it has NO internet connection whatsoever.
I would REALLY appreciate help with this. Thanks
Thats odd. I have had no issues with L2TP and IPSec. Works slow for sure but was working fine. I was on wifi at home. When I tried via 3g it was ungodly slow, took like 5 attempts to connect. Any info would be nice
PPTP more info;
http://code.google.com/p/android/issues/detail?id=4706
Hey, I was hoping I could get some help with this. I must be doing something wrong because I've spent a ridiculous amount of time on this project and have nothing to show for it.
I want to run a mobile hotspot on my phone, but not nearly enough to justify paying Verizon an extra $30/month for tethering. I'd only use it a few times a month and wouldn't push a lot of data thru, plus I'm paying them for an "unlimited" data plan - I won't get into that, you know where I'm coming from. I know they probably won't do anything about it since I'm using it so little, but I want to add an extra layer of security via an SSH tunnel or a VPN. I'm sure they just have to run a very basic report on their system to catch somebody who's tethering, and who knows when some manager will tell them to run it on every user vs just the high bandwidth ones? They could force me onto a more expensive plan, disable my account, throttle my connection, or just block any port an Android phone doesn't normally use, and they could do all that automatically pretty easily. If all my tethering data is encrypted they'd have to do some actual work to prove I'm tethering and probably won't think it's worth their time.
I installed OpenSSH on my home PC, forwarded some ports, and put the SSHTunnel app on my phone and it works great. It seamlessly moves all traffic over my SSH tunnel, except for the mobile hotspot. Which was kind of the point of the whole exercise! I looked all over the place but could not find a way to resolve this.
Next I looked at setting up a VPN so I loaded TomatoVPN on my router. The default VPN (OpenVPN) option for that firmware is IPSec with a CA certificate, so I went about setting that up. Apparently the default Android VPN client doesn't work well with IPSec because I can't get it to work - it keeps prompting me for a username and password, but it won't accept my router's admin credentials. None of the tutorials mention that prompt and I can't get around it. I messed around with an IPSec PSK VPN but couldn't get Android to connect to that either.
I looked into PPTP a bit but they say it's not supported by Linksys or OpenWRT, and from my experience Tomato doesn't appear to work with it either. I was going to put a PPTP server on my PC but saw somewhere that many routers can't forward PPTP requests from a WAN into the LAN.
So I went back to the IPSec approach, figuring the problem is with the Android client. I tried putting OpenVPN on my phone, but got stuck where I have to register a tun.ko file using the terminal. I don't even know if I found the right tun.ko. Then I realized I was trying to install an app to configure an app that installs another app and maybe I wasn't going about this the right way.
Does anybody have any advice? How should I approach this?
Here's what I'm using
Phone: Rooted HTC Thunderbolt
Carrier: Verizon
Ugh, looks like Verizon is 1 step ahead of me:
jbenisek.wordpress.com/2010/10/05/android-2-1-and-2-2-vpn-pptp-over-verizon/
Well, that sucks.
Hey all. I recently purchased a Verizon Samsung Galaxy S4 32GB and have really enjoyed it. Today I ran into my first issue, and boy its a doozy. Apparently I'm not able to make a solid connection to FTP servers using Active FTP. If I switch to passive, everything connects fine. When I switch to Active, it connects to the FTP server, but is not able to retrieve the directory listing (Filezilla error on laptop) and on my phone it states "425 Could not open data connection to port 48891:Connection timed out". This is replicated on my laptop (Through Mobile Hotspot) and on an ftp client on my phone. I work in IT and use my mobile hotspot as an external network when we need to rebuff a vendor's claims that our network is the issue (I'm sure those of you in IT also can appreciate the pain of having a vendor blindly blame your network instead of fixing their own problems).
Verizon claims that it does not block any ports. Samsung has stated that they do not support this issue, but I talked the supervisor into filing an engineer report (If that will even do anything) even though I won't hear back from them regarding this. So I am hoping I can get some help from the best android community out there!!!
Has anyone else tried to make an active FTP connection from a Verizon S4?
Would anyone be willing to give it a try?
UPDATE:
Well the Verizon guy did some testing for me (Kudos to VZW). They dont block ports, but they also don't forward the return connection for Active FTP. If anyone else wants to give it a try and let me know if it works for other providers, it would be appreciated. I may have to just fork out $$$ for a Public IP on our VZW Jetpack.
Remember that most carriers use CGN (Carrier-grade NAT) on their network, specially for mobile phones. While CGN is supposed to be stateful, Verizon probably has a broken implementation as it doesn't redirect a port to your private IP (something done in Linux by using the conntrack_ftp module). Anyway, using non-passive FTP is almost always a bad idea if you don't have a public IP. Sticking to passive is your better option.
I wish that was possible unfortunately the vendor is using active FTP for his application. I am testing to see if the internal network is the cause of the connection problems we've had. To get him to move over to passive since it is better