Cisco IPSec VPN Solution - EVO 4G General

I have sucessfully connected to a cisco asa ipsec firewall using froyo 2.2 on a htc evo 4g supersonic.

pics or stfu

I have successfully connected my Android 2.2 EVO to a Cisco ASA 5520's Remote Access IPSEC VPN many times using VPNC. The problem comes when you actually try and route traffic thru the tunnel. . . Is everything working? eg, DNS lookups via the tunnel?
If it is, would you mind sharing HOW?

"Vpn connections" search for it
Sent from my PC36100 using XDA App

I have 4g and gingerbread on cyanogenmod omg!

ipsec vpn Android 2.2 EVO
n3x1s said:
I have successfully connected my Android 2.2 EVO to a Cisco ASA 5520's Remote Access IPSEC VPN many times using VPNC. The problem comes when you actually try and route traffic thru the tunnel. . . Is everything working? eg, DNS lookups via the tunnel?
If it is, would you mind sharing HOW?
Click to expand...
Click to collapse
I'd sure would like to know how you connected to Cisco's ASA via ipsec VPN. In my case DNS would not be critical as making a RDP connection to my servers or workstations via ip address is all I need. Could please share your solution. Assume you are using Group Authentication?
Thanks in advance!

I used VPNC version 07 and have transfered files from my corporate SMB Server and established RDC/RDP sessions with corporate computers while at my home. It works with MIUI 11.19 and cm6snap kernel version 8.1

Screenshots
Per your request. This is not a hoax.

ipsec vpn Android 2.2 EVO
bdawg31 said:
I used VPNC version 07 and have transfered files from my corporate SMB Server and established RDC/RDP sessions with corporate computers while at my home. It works with MIUI 11.19 and cm6snap kernel version 8.1
Click to expand...
Click to collapse
Hey thanks for the quick reply. New to this Android stuff - love it though. Just got my EVO about 2 weeks ago. So just to clarify. When you say -" It works with MIUI 11.19 and cm6snap kernel version 8.1", I'm assuming this is a rooted phone with that specific image. So probably won't work with stock EVO right?

You are very welcome and thank you for your interest and well thoughtout questions/comments. I have only had my evo about 5 weeks. I found it difficult to use at first, even a a IT administrator for a national hotel chain. Hang in there it will get easier.
Your device must be rooted. Use unrevoked. Dude you must root. If you don't, you are not using the device as t was intended by the designers. I will be glad to walk you through the process

Related

IPSEC VPN on the HD

Sorry to be a pain with a new thread, but I need to connect to a standard IPSEC (cisco) VPN gateway. IPSEC is built in on the iphone2.0 but apparently not on winmo so what's the cheapest (free?) client to use that will work with the HD?
Thanks
Nothing good for free so far...
See http://forum.xda-developers.com/showthread.php?t=395622
You can go green or blue, but neither of these is free:
http://www.theGREENbow.com/mobile.html
http://www.BLUEfiresecurity.com/products/vpn/
Have fun
I connect to my workplace using IPSec/L2TP built into Win 6.1 on my Diamond, IPSec is what the connection is at work and I connect without any problems..
Trixster,
What firewall do you use with this? I'm using a CISCO ASA (previously PIX) and can't seem to get it working. In the ASA logs it looks like it's not selecting the right tunnel.
Are you using a cert or a preshared key?
Thanks
Pre-shared Key and the unit is SnapGear 560, I haven't setup the HD yet to connect as I'm still playing with it but I don't see why it should differ from the Diamond?
Native IPSec stack on WM6.1 doesn't seem to be compatible with Cisco IPSec.
stepw said:
Native IPSec stack on WM6.1 doesn't seem to be compatible with Cisco IPSec.
Click to expand...
Click to collapse
I'm beginning to think this, but I also have a feeling it might be to do with NAT-T.
I'm going to carry on trying today, failing that I will be going to bluefire (or anything else you can recommend? I'm after a lightweight VPN client just for the odd session, it doesn't need to be smart)

VPN Client for WinMo 6.1 (or 6.5) working with Cisco on the other side???

HI to all
I am looking for a working VPN Client (the Iphone has one which is working) to connect my Touch Cruise to the intranet of my firm.
I read that NCP has one, but it is quite expensive ...
is there any other solucion?
For free?
Shrew is working fine on my laptop, but y would like to check something out of mi WinMo Polaris.
I actually am using WinMo 6.1 but if necessary I also could change to 6.5
Thanks
Isidar
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
you can use hamachi-0.0.3.1
http://rapidshare.com/files/83751409/hamachi-0.0.3.1.rar (for your mobile)
https://secure.logmein.com/products/hamachi/list.asp (for your pc)
clmbngbkng said:
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
Click to expand...
Click to collapse
i think openvpn is not compatible with cisco vpn since cisco uses ipsec and openvpn uses a simply tunnel created on udp port 1194 (no need for gre,ike,or pptp port's/protocols open).
it's much simpier but work very well and just with the p12 certificate (ok my certificate is 2048bit so i think it is minimally secure, nothing like a dynamic generated rsa key but even better than just a ssh tunnel or something like).
Back in the days of Windows Mobile 2003 I used to use "MovianVPN" to connect to my university network. The software is now superseded by AnthaVPN (www.anthasoft.com). It is designed for Windows Mobile 5 and they have no mention of WM6 compatibility, but I think its worth a shot.
I also read about another product called "Bluefire VPN", but I can't seem to find it online at the moment.
Edit: The above solutions are not free, but the price might be refundable by your company.
Cisco AnyConnect for Pocket PC
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
The Cisco device at the other end has to be setup for SSL VPN otherwise Anyconnect does not work. This is somewhat new and SSL VPN licenses are expensive.
Personally I use AnthaVPN on my HTC Touch (WinMo 6.1 Pro) and it works great with our IPSec Cisco VPN (the old way since we're too cheap to buy the licenses for the SSL VPN).
EDIT: And if your company is setup for SSL VPN, you should not need to download a client. Your admin should give you a website and it connects to the router/firewall/VPN concentrator and downloads the proper client for you. Better than going to some random site to download something.
The integrated L2TP/IPSec client?
I have posted previously on here about VPN clients and Cisco Routers & Firewalls. The integrated L2TP/IPSec client works with both Cisco PIX/ASA Firewalls as well as IOS Routers - it is dependant on how these are configured though. I posted two configurations from PIX 6.3(5) and PIX 7.2(4) - both of which I had working. It seems there are some limitations when setting up groups however my testing didn't include this.
http://forum.xda-developers.com/showthread.php?t=444948&highlight=Cisco
I was going to test the Group issues someone reported but never got around to it - I have a full-time job as well
Andy
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
Cisco nice good work,try it with my Dopod and router working.
thank you guys to put the links.
AnyConnect Secure Mobility Client 2.5
Hi guys
Could anyone post the link for Cisco AnyConnect Secure Mobility Client 2.5 as it is one of the only vpn client solutions having WM6.5 and Cisco routers work together
Could you propose any other solution for WM6.5 and Group authentication cisco servers
Thanks
I have just downloaded the AnyConnect Secure Mobility Client, v2.5 and it works a treat thanks for this post, it was released in Aug and works with 6.5
Please note, i legally have a CCO account and valid service contracts for Cisco ASA and VPN gateways.
To the previous poster, please buy relevant CCO access to download.

VPN problem on Nexus One

Hi, All
I have a VPN problem that is strange. Here goes:
I have my Nexus One two days ago. It's not rooted and no APK installed on it.
At that time, the VPN worked very well.
Then, I unlocked and rooted it. Then I flashed a Pandora Firmaware. The firmware is here.
://d.epis.me/Pandora%20N%201.1%20for%20nexus.zip
After that, the VPN didn't work. I must wait for a long time after I started to connect, and an error message came out like this: "Can not connect to the server". If I use a wrong password, the VPN will tell me the pssword is wrong. The same VPN server can be connected by same username and password on my laptop, but not Nexus One. It is very strange.
Then I restored the original shipping firmware. It didn't work too. The reply of the VPN is the same as above.
The server is uk.focusvpn.com, and VPN type is PTPP. Encryption type I selected encryped and not encrypted, it didn't work on both.
Now the VPN on my Nexus One is totally broken. Can any good guy help me?
Mods are likely going to move this to a different forum.
If any of the devs want to look at this I'm seeing this also. The VPN Connections app for me to a Cisco Concentrator works fine.
I can't for the life of me get PPTP to work; this may just be a buggy PPTP client in the Nexus One 2.1 build. It works FLAWLESSLY on my G1 with the last CM build. I get a generic message that GRE is not functional; but this is BS - on the same link I can tether my Mac and it works or use the same WiFi On a Windows system or mac and it works. I'm suspecting Google regressed or introduced a bug on 2.1 with PPTP
Cyanogen; or any of the other dev's if you want to "borrow" my PPTP VPN account to debug I'm game to email you the info; PM me. I was going to try this on the emulator and but some debug messages in to see what the specific issue may be...
Yeah. PM me and ill try to fix it for the CM N1 release tomorrow!
is the CyanogenMod also for nexus one?
VPN on nexus (android 2.1)
I noticed on this webpage
code.google.com/p/android/issues/detail?id=4111
that android 2.1 only support old fashion Authentication Protocols
+ CHAP allowed
+ MSCHAPv1 allowed
But
- PAP disabled
- MSCHAPv2 disabled
- EAP Proxy disabled
i searched around and found no program can hack this to enable the later 3
is it easy to enable the above? anyone here can help to configure it or it actually needs a new development?

[Q] Cisco VPN Group Name / Honeycomb

Hey All,
Just wondering if you all know if Cisco or Google will figure out the whole VPN / Group Name fiasco? I am not sure who or where the limiting factor sits with (Google or Cisco) but it would be really nice if they would support Cisco VPN when using Group Name.
I am pretty sure that was never solved in the 2.x version of Android. If it has, I would love to know!
At least on android 2.X I rooted and used VPN Connections and that allowed to me to connect to my work's Cisco VPN
Inphinitizeit said:
At least on android 2.X I rooted and used VPN Connections and that allowed to me to connect to my work's Cisco VPN
Click to expand...
Click to collapse
Either VPNConnections doesn't work right with the Xoom or the tun.ko module that someone compiled for the other type of VPN isn't working right with it for IPSEC. I can't seem to connect using my rooted xoom, though I've done it with every phone I've owned with ease.
You can connect to a Cisco asa using ipsec Vpn with group name on 2.x?
Sent from my ADR6300 using XDA Premium App
foldog22 said:
You can connect to a Cisco asa using ipsec Vpn with group name on 2.x?
Sent from my ADR6300 using XDA Premium App
Click to expand...
Click to collapse
Requires root, a tun.ko module compiled for your kernel installed on your phone and VPNConnections.apk. With those three things, it is easily done. My HTC Aria, Droid 2 Global and Droid X all could connect to our work routers which use Cisco IPSEC VPN with a group name/password.
The only way to get Cisco VPN working right now with the stock VPN client in Honeycomb is to have your firewall configured to allow inbound VPN using the group policy DefaultRAGroup (which is what it will default to when no group name is present).
It took me a few hours to figure it out but have it working on my ASA5505. Can't take credit though... this thread was instrumental in helping me figure out how to get it to go.
https://supportforums.cisco.com/thread/2029577
Refer to the post by Laurentiu Zibula.
Downside is that you can only get it working if you have full control of the firewall you're connecting to, and buying your network admin at work a six pack of beer isn't going to convince him to try this.
alee said:
The only way to get Cisco VPN working right now with the stock VPN client in Honeycomb is to have your firewall configured to allow inbound VPN using the group policy DefaultRAGroup (which is what it will default to when no group name is present).
It took me a few hours to figure it out but have it working on my ASA5505. Can't take credit though... this thread was instrumental in helping me figure out how to get it to go.
https://supportforums.cisco.com/thread/2029577
Refer to the post by Laurentiu Zibula.
Downside is that you can only get it working if you have full control of the firewall you're connecting to, and buying your network admin at work a six pack of beer isn't going to convince him to try this.
Click to expand...
Click to collapse
Don't think that will work for non-ASA devices though (i.e. routers).

[Q] Setting up a VPN that my xoom can access.

I want to set up a VPN at home that my xoom can access. I tried a simple PPTP with dd-wrt but I can't seem to access or ping anything, even though it connects. I want to do this so I don't have to forward SSH, RDP, and other ports that expose my stuff to the outside world.
At home I am running a DD-WRT gateway with a linux server as well as a Windows Server 2008 VM behind the gateway, any could host the VPN service.
I don't need instructions on how to set up the VPN, but advice on what is compatible with android's built in VPN support.
Thanks in advance for any input.
Sent from my Xoom using XDA Premium App
The windows vpn service works fine for me
I was under the impression I needed to set up a domain to use the included windows VPN service, and I wasn't looking to set up a domain.
Is this an incorrect assumption?
Sent from my Xoom using XDA Premium App
Here's a link to getting OpenVPN working. Must admit it looks like it's not for everyone.
Salpula said:
I was under the impression I needed to set up a domain to use the included windows VPN service, and I wasn't looking to set up a domain.
Is this an incorrect assumption?
Sent from my Xoom using XDA Premium App
Click to expand...
Click to collapse
That was not necessary for me. If it is a requirement, it is specific to Windows Server edition
I have a Windows PPTP VPN that my Xoom can connect to. You do not need to set up a domain.
Unfortunately there is a bug in Android that makes it lose connection to the VPN after a few minutes/seconds.
See here:
http://code.google.com/p/android/issues/detail?id=4706
I just bypass androids native VPN and use Neo Router free. Available in the market. You just set up a Neo server on the computer you want to control and use the android app to open an encrypted connection to that computer. You can set up the app to forward any ports to the computer running the server. Works well. Right now im running splashtop remote and plex using it so i dont have to port forward the ports for those apps in my router.
Thanks for all the input. I am working on OpenVPN. I almost have it working (I already have my router set up for OpenVPN, just didn't know I could use it).

Categories

Resources