VPN - Vibrant General

it's there a way to connect or use my company VPN on android?
my company uses cisco VPN.

Yes. Look in the "Settings -> Wireless and Networks -> VPN".
Which way will you be connecting to your VPN? L2TP? PSK? Cert?
It may be important for you to know up front that Android doesn't yet support 3DES encryption, only DES.

I had the same problem until I switched to an older APN... Under Settings, Wireless and Network, Mobile Network Settings, Access Point Names (APN), add a new APN, all you need is to name it and the APN is internet2.voicestream.com This is an older APN T-Mobile used to allow for VPN connections. As soon as I used it instead of the epc APN, I connected without issue.

Bradical said:
I had the same problem until I switched to an older APN...
Click to expand...
Click to collapse
What problem was that? Unless I misunderstood the OP's post, the problem is how to connect to one's corporate VPN infrastructure from an Android phone. Your post seems unrelated to that unless I'm missing something.

epakrat75 said:
Yes. Look in the "Settings -> Wireless and Networks -> VPN".
Which way will you be connecting to your VPN? L2TP? PSK? Cert?
It may be important for you to know up front that Android doesn't yet support 3DES encryption, only DES.
Click to expand...
Click to collapse
Yea I looked under there but I read online that Android 2.2 doesn't support pure Ipsec witch is what I need....I just can't believe Google dropped the ball like this! I hope they took care of that in Honeycomb because my company wants to buy tablet but without VPN is a no go....

And the funnything is that Google knows about it since 2009:
http://code.google.com/p/android/issues/detail?id=3902

emonero said:
I hope they took care of that in Honeycomb because my company wants to buy tablet but without VPN is a no go....
Click to expand...
Click to collapse
While running the Honeycomb SDK Preview on my Nook Color, I checked this very thing out and found that no additional support / options were provided to me. I'd like to think this additional functionality was left out of the SDK preview but I'm not convinced. Perhaps it'll be different on either the Motorola XOOM and G-Slate tablets but I'm not optimistic since they've had so much time to deal with it but seem to not have done anything yet.

Another Tech and I installed Honeycomb on a Nook color just to check that settings and it doesn't have it...I hope Moto include it like they did with the droid Pro...

emonero said:
I hope Moto include it like they did with the droid Pro...
Click to expand...
Click to collapse
Interesting. I didn't realize that the Droid Pro even supported it. It might the only device that currently does. If that functionality were extracted and offered as a mod for the Vibrant, etc that would be worth paying for.
As such, I have had to advise my company away from using Android because it doesn't work our SonicWall VPN. However, the few Apple iDevices we have already connect to our VPN.

Cisco VPN Working on Vibrant
You can get it to work, you need to get open vpn installer, open vpn settings, vpn robot, and tun.ko file for the vibrant. Need to be rooted. It was a pain to get setup but works like a charm with an ASA 8.2 box. Cisco Anyconnect has been launched on a few android devices such as the vibrant 4G, hopefully this will get ported to the vibrant 3G, it would be so much easier and better since its all SSL based and not ipsec.

Related

Odyssey instead of Worthless WiFi Clinet?

OK, I totally find the WiFi Client for the MDA Vario totally pathetic. Is it possible for me to get rid of it and use the Odyssey Client (can be found HERE)?
What exactly do you find worthless about the default client, so as I know before clicking on a link that is more than likely a virus.
1. No AES support
2. No LEAP Authentication from same config screen for setting up a Wireless connection.
3. No support for feedback (catch all errors/log status)
Need I say more.
Also, virus? Not bloody likely - hover over the link and you can see that it goes here
http://download.juniper.net/software/aaa_802/public/oac/451/Odyssey Client for Windows Mobile.exe
Juniper.net makes Odysses Client (also Used for the Dell Axim WiFi Client.)
as if I post a link to a virus . . . .
How is it totally useless ?
When i'm at home it connects to my home network, when i'm at work... it connects there. No surprises so far.
It's fit for the job it's intended to do.
Oh, if you're installing Odyssey... don't lose your phone...
http://www.geekzone.co.nz/content.asp?ContentId=3942
How silly of me to be paranoid when someone posts a link to an exe file that is just named with spaces from someone called warez!
:roll:
gazzrenn said:
How is it totally useless ?
When i'm at home it connects to my home network, when i'm at work... it connects there. No surprises so far.
It's fit the job it's intended to do.
Oh, if you're installing Odyssey... don't lose your phone...
http://www.geekzone.co.nz/content.asp?ContentId=3942
Click to expand...
Click to collapse
I said pathetic not useless, however, what I mean is: I can connect at home but not at work. Also, I do not connect at home by original design - I had to change my Wireless config of my router to match what the default Wifi Client on my PDA will accept (aka TKIP vs AES which I'd prefer)
Also, at work, we use LEAP authentication (on one SSID) and AES (on one of another SSID) - there isn't anyway for me to connect to any of my Wireless networks at work even though I am privy to all of the information to do so.
Sorry if I sound a bit frustrated (I am)
Any help would be appreciated.
How silly of me to be paranoid when someone posts a link to an exe file that is just named with spaces from someone called warez!
Click to expand...
Click to collapse
Well that much I can understand - but checking out the root domain before making assumptions would have clarified that quickly enough.
There is a LEAP is a tab in the Wireless Network settings?
WarezAppz said:
I said pathetic not useless, however, what I mean is: I can connect at home but not at work. Also, I do not connect at home by original design - I had to change my Wireless config of my router to match what the default Wifi Client on my PDA will accept (aka TKIP vs AES which I'd prefer)
Also, at work, we use LEAP authentication (on one SSID) and AES (on one of another SSID) - there isn't anyway for me to connect to any of my Wireless networks at work even though I am privy to all of the information to do so.
Sorry if I sound a bit frustrated (I am)
Any help would be appreciated.
Click to expand...
Click to collapse
Thats a much better desctiption of why you need a different client.
There is a LEAP is a tab in the Wireless Network settings?
Click to expand...
Click to collapse
Yeah there is - The problem is: That tab is on the Wireless LAN page - the 'Configure Wireless Networks' 802.1x page only gives 2 options for eap type PEAP, Smart Card or Certificate vs LEAP ergo I can not connect. Maybe I am just doing something wrong (I'd love for that to be the case). I admit I am rather limited when dealing with this client and trying to specifically set up a WiFi Connection. That is another reason why I find the default client less-than-desirable - not enough support documentation (either in the manual or via help file attached to the client itself)
WarezAppz said:
Yeah there is - The problem is: That tab is on the Wireless LAN page - the 'Configure Wireless Networks' 802.1x page only gives 2 options for eap type PEAP, Smart Card or Certificate vs LEAP ergo I can not connect. Maybe I am just doing something wrong (I'd love for that to be the case). I admit I am rather limited when dealing with this client and trying to specifically set up a WiFi Connection. That is another reason why I find the default client less-than-desirable - not enough support documentation (either in the manual or via help file attached to the client itself)
Click to expand...
Click to collapse
I am having the same problem. I downloaded the trial of Odyssey from Juniper but it won't enable. Don't bother with that LEAP tab in the default wifi client, it won't work. I spent several days trying everything in the book. I have Odyssey on my Axim x50v and it works like a charm connecting to our cisco wireless.
Please post if you find an answer.
As for the gazzrenn, you should tell the IT people at your work that they need to change their wireless settings if you can connect with the windows client.

How will "they" know if I tether with a rooted Nexus One

Just read Tmobile is going to charge for tethering & wi-fi hot spot. How will they know? Isn't data, data? I don't want to be charged for something I might use 5 times a year.
Sent from my Nexus One CM6 using XDA App
I don't know if they can tell, I have used the hotspot feature with my Nexus quite often and AT&T has never tried to charge me.
They wont.
[email protected] said:
Just read Tmobile is going to charge for tethering & wi-fi hot spot. How will they know? Isn't data, data? I don't want to be charged for something I might use 5 times a year.
Sent from my Nexus One CM6 using XDA App
Click to expand...
Click to collapse
Where did you read this from? No source, it didnt happen.
Starts 11/3/2010
Zephyron said:
Where did you read this from? No source, it didnt happen.
Click to expand...
Click to collapse
http://www.boygeniusreport.com/2010/10/26/t-mobile-to-debut-tethering-plan-on-november-3rd-14-99/
the only way they could know if you are tethering is if you are using the carrier's native ROM, i don't think they would ever find out when running a custom rom.
If you don't bother searching - at least do read the same thread on the same 1st page of the forum, instead of opening another one.
Einstein was right about infinite things...
Packages being sent contain HTTP requests, which may contain info on the device that's being used, among other stuff I don't really know about.
If those packages contain specific info on the device, they probably can tell even if you're using a custom ROM, just by putting some effort into it.
Anyways, if by some mean they'd manage to analyze it in a way where they can tell whether you're tethering or not, we'll also find a way to trick them by parsing those packages on the fly.
So, ultimately, I don't know whether they can tell or not if you're tethering, but if they can don't worry, someone will take care of it.
St.Jimmy! said:
Packages being sent contain HTTP requests, which may contain info on the device that's being used, among other stuff I don't really know about.
If those packages contain specific info on the device, they probably can tell even if you're using a custom ROM, just by putting some effort into it.
Anyways, if by some mean they'd manage to analyze it in a way where they can tell whether you're tethering or not, we'll also find a way to trick them by parsing those packages on the fly.
So, ultimately, I don't know whether they can tell or not if you're tethering, but if they can don't worry, someone will take care of it.
Click to expand...
Click to collapse
Companies cannot legally spy into your network traffic in that manner here in the US.
JCopernicus said:
Companies cannot legally spy into your network traffic in that manner here in the US.
Click to expand...
Click to collapse
This is true, deep packet inspection is against the law as it infringes what little privacy we are still allowed thanks to homeland security
St.Jimmy! said:
Packages being sent contain HTTP requests, which may contain info on the device that's being used, among other stuff I don't really know about.
Click to expand...
Click to collapse
Not picking on you, but I'm sure you mean packets
Here in France, SFR set up atransparemt proxy that checks the user-agent sent by your browser.
You can trick it by setting a mobile user-agent on your PC.
Sent from my nexus desire
zEar said:
Here in France, SFR set up atransparemt proxy that checks the user-agent sent by your browser.
You can trick it by setting a mobile user-agent on your PC.
Sent from my nexus desire
Click to expand...
Click to collapse
That's screwed. You can set any UA when using a custom ROM, so you'd be charged for tethering when you set it to Desktop?
In that case, someone might have a good reason to sue them...
Thanks for the info.
Sent from my Nexus One CM6 using XDA App
Jack_R1 said:
That's screwed. You can set any UA when using a custom ROM, so you'd be charged for tethering when you set it to Desktop?
In that case, someone might have a good reason to sue them...
Click to expand...
Click to collapse
First, you're right. But I forgot to mention that they won't charge you, it simply doesn't work. So if you changed the UA the way you suggest, you would see a blank page and quickly fix that
Second, I noticed after answering that I didn't read the question well (sh*t happens ) and didn't get the point about root. So to be more clear about the original question :
- "They" shouldn't be able to know if you're rooted or not, but there may be ways for them to detect that you are tethering.
Tethering and T-mobile...
If you run speedtest.net on a computer that's tethered to the N1, it shows on speedtest.net's server that you are on T-mobile USA's IP. Somehow T-mobile would have to acquire when the tether option was turned on and off at the same time the 3g service is on. They would have to submit that into the header files that get sent to their services. That would be a stretch, but it would be doable in future software updates. Say Gingerbread....
Actually, yesterday I've found something interesting about one of our local carriers.
It has 2 APNs: one for "dumbphones" and one for smartphones.
The first one allows Nexus to use internet and market, but tethering doesn't work. The DNS requests are blocked - I still didn't figure out how they block them. DNS servers get the ping, but the requests aren't resolved. Yet it looks like they're resolved, if sent from the phone.
The second one allows full internet access for the phone - and tethering also works.
So they don't detect tethering (and don't charge for it), but looks like they can block it with some restrictions that still allow the phone browser to work, when using "dumbphone" APN.
Jack_R1 said:
Actually, yesterday I've found something interesting about one of our local carriers.
It has 2 APNs: one for "dumbphones" and one for smartphones.
The first one allows Nexus to use internet and market, but tethering doesn't work. The DNS requests are blocked - I still didn't figure out how they block them. DNS servers get the ping, but the requests aren't resolved. Yet it looks like they're resolved, if sent from the phone.
The second one allows full internet access for the phone - and tethering also works.
So they don't detect tethering (and don't charge for it), but looks like they can block it with some restrictions that still allow the phone browser to work, when using "dumbphone" APN.
Click to expand...
Click to collapse
so all the other data, non browser based - how do they decide if/when to block which data ? i'm assuming this will only work on a non-rooted phone, or they are breaking the law and doing deep inspection.
if they =are= doing deep packet inspection, they can and will be held liable for eavesdropping, child porn, online harrassement (if you ever harrass someone), and a whole host of other things.
the ISP (tmo) not knowing what you're doing is a benefit to them. ignorance is bliss, and knowledge means responsibility the way the gov't views it.
lol, that last statement, the gov't and responsibility could be a joke i guess.
I believe they just have all traffic going through proxy which allows only very few selected packet types through, and blocks the rest for "dumbphone" APN. They don't check/block anything beyond DNS requests, and if you want to connect to a site while tethering "dumbphone" connection by IP - I believe you'll get there (didn't have a chance to test, but pinging IPs works without problems).
And of course, my Nexus with Enomther's ROM was used for experiments and showed exactly the same behavior.
The thing is - if I understand it correctly, it's not a planned behavior. They wanted to shut off all the network but the sites they give access to from their own WAP portal (considered "internal" internet), but in fact for some reason Nexus isn't completely blocked by it. PC is, though, when connected through Nexus.
And again, they don't have something that detects tethering - once a smartphone APN is used, the traffic is the same for Nexus and for tethered devices.
Some technical info...
Hello!
There is a way to detect if You are using tethering. Basically - tethering is routing - adding one more point in communications. So - if You just use Your phone, packets are addressed from/to Your phone. But if You are tethering - packets are addressed to device behind phone (using phone as gateway, basically router with NAT).
So - they may check:
ARP tables
TTLs
OS specific packets/DNS requests/used IP's (Why would Your phone check for MS updates? )
other things...

[Q] Looking for Proxy app

Hello,
I haven't found anything quite related to what I'm looking for (similar, but involving the GPRS vs WiFi settings)
I'm curious if anyone knows of an app that when you connect to a WiFi network, it will automagically set the proxy server and port required for that WiFi network? One WiFi network I use requires a proxy, but the rest do not. It's annoying to have to change it all the time. It would be great to find an app that when it detects I've connected to the wifi that requires the proxy it figures out which one I'm connected to (either via BSID, ESSID, SSID, MAC etc) and sets the proxy if required. Heck a shell script on a rooted phone could do the setting just fine, but it's the first part I'm stuck with.
Thanks!
I've been looking for an app like this too. My school makes me use a proxy but my home does not and it sucks having to change it every time I go to school or home.
Hey guys can you tell me how to change to the proxy settings. I dont mind switching back and forth but the proxy settings should work. I've my proxy set at 192.168.11.5 and port 3128. How do i use internet with that ?
reddevil0709 said:
Hey guys can you tell me how to change to the proxy settings. I dont mind switching back and forth but the proxy settings should work. I've my proxy set at 192.168.11.5 and port 3128. How do i use internet with that ?
Click to expand...
Click to collapse
Go to Settings -> Wireless and Network -> Wifi, then press the Menu button and press advanced settings.
Hey, so this doesnt do exactly what you want, but its a quick and easy thing. Search the forums, or just google "xda transproxy" I use it now, and the latest beta is very stable. Connects to my schools proxy, and everything works. Or, download orbot from the market..but i personally dont like it, too many steps to do a simple thing. But, to each their own. Anywho, just search and download, and install with your file manager of choice, make sure you set up the port, and ip address before you start the proxy. oh..and on my droid incredible, with virtous 3.1, I had to reboot before I could access the market. Your results may very.
Heres the Link:
http://forum.xda-developers.com/showthread.php?t=766569
techobsessive said:
Hey, so this doesnt do exactly what you want, but its a quick and easy thing. Search the forums, or just google "xda transproxy" I use it now, and the latest beta is very stable. Connects to my schools proxy, and everything works. Or, download orbot from the market..but i personally dont like it, too many steps to do a simple thing. But, to each their own. Anywho, just search and download, and install with your file manager of choice, make sure you set up the port, and ip address before you start the proxy. oh..and on my droid incredible, with virtous 3.1, I had to reboot before I could access the market. Your results may very.
Heres the Link:
http://forum.xda-developers.com/showthread.php?t=766569
Click to expand...
Click to collapse
Dude, that did pretty much exactly what I wanted and so much more. Before I could only use the Internet Browser but now I can use any app. I love this app.
Going to give it a try myself, thanks!
OMG Hopefully this works on my x10 android 2.1update1
thanks bro
I get no iptables found in this rom... wtf i am rooted btw
Sent from my X10i using XDA App
May need to use orbot with transproxy. To use my college wireless thats what i need to do.
Sent from my Dell Streak
murr1990 said:
May need to use orbot with transproxy. To use my college wireless thats what i need to do.
Sent from my Dell Streak
Click to expand...
Click to collapse
ok so can someone bref me all this please?
I get orbot and enable it THEN I use transproxy???????????
PS: looks like my Sony ericsson kernal locked iptables or whatever (i dont have theme)
ASProxy
I think ASProxy is what you need. For every WiFi network you connect to, you can specify which proxy to use. Besides that, it does NTLM-authentication as well, which is often required in corporate environments.
First I used TransProxy for quite some time, which is great if you only use 1 WiFi network with a proxy (you can use other WiFi networks without the proxy) and don't need NTLM authentication. Then I discovered ASProxy (found a review on android-machines.blogspot.com) which is great, if you need different proxy settings for each WiFi network.

[Q] Cisco VPN Group Name / Honeycomb

Hey All,
Just wondering if you all know if Cisco or Google will figure out the whole VPN / Group Name fiasco? I am not sure who or where the limiting factor sits with (Google or Cisco) but it would be really nice if they would support Cisco VPN when using Group Name.
I am pretty sure that was never solved in the 2.x version of Android. If it has, I would love to know!
At least on android 2.X I rooted and used VPN Connections and that allowed to me to connect to my work's Cisco VPN
Inphinitizeit said:
At least on android 2.X I rooted and used VPN Connections and that allowed to me to connect to my work's Cisco VPN
Click to expand...
Click to collapse
Either VPNConnections doesn't work right with the Xoom or the tun.ko module that someone compiled for the other type of VPN isn't working right with it for IPSEC. I can't seem to connect using my rooted xoom, though I've done it with every phone I've owned with ease.
You can connect to a Cisco asa using ipsec Vpn with group name on 2.x?
Sent from my ADR6300 using XDA Premium App
foldog22 said:
You can connect to a Cisco asa using ipsec Vpn with group name on 2.x?
Sent from my ADR6300 using XDA Premium App
Click to expand...
Click to collapse
Requires root, a tun.ko module compiled for your kernel installed on your phone and VPNConnections.apk. With those three things, it is easily done. My HTC Aria, Droid 2 Global and Droid X all could connect to our work routers which use Cisco IPSEC VPN with a group name/password.
The only way to get Cisco VPN working right now with the stock VPN client in Honeycomb is to have your firewall configured to allow inbound VPN using the group policy DefaultRAGroup (which is what it will default to when no group name is present).
It took me a few hours to figure it out but have it working on my ASA5505. Can't take credit though... this thread was instrumental in helping me figure out how to get it to go.
https://supportforums.cisco.com/thread/2029577
Refer to the post by Laurentiu Zibula.
Downside is that you can only get it working if you have full control of the firewall you're connecting to, and buying your network admin at work a six pack of beer isn't going to convince him to try this.
alee said:
The only way to get Cisco VPN working right now with the stock VPN client in Honeycomb is to have your firewall configured to allow inbound VPN using the group policy DefaultRAGroup (which is what it will default to when no group name is present).
It took me a few hours to figure it out but have it working on my ASA5505. Can't take credit though... this thread was instrumental in helping me figure out how to get it to go.
https://supportforums.cisco.com/thread/2029577
Refer to the post by Laurentiu Zibula.
Downside is that you can only get it working if you have full control of the firewall you're connecting to, and buying your network admin at work a six pack of beer isn't going to convince him to try this.
Click to expand...
Click to collapse
Don't think that will work for non-ASA devices though (i.e. routers).

[HOWTO] Use VPN with your Android & Home Router

This is a simple tutorial to allow you to connect to the internet using VPN through your home router.
:NOTE: At present, the steps here are sparse. They assume some technical capability to set things up yourself, this is just kindof a guide as to WHAT you'll need to setup.
Why, you ask? Security. Using a VPN will essentially encrypt your communications though a tunnel back to your home computer. Not going into all that here, basically a simple guide. I assume we're all smart here, so the basics.
Prerequisites
1. DD-WRT V24 Capable router. If you don't have this, then you will need to instead use a different method involving installing software on your PC that I won't cover here. The advantage of the DD-WRT router is ease of setup on the router, and not having to have your computer turned on.
2) Capable Android Phone & Provider. I can't troubleshoot your ROM or provider. Some Android Roms don't support VPN, and it's broken in some. Some providers apparently block it. If your Rom is good and your provider doesn't block it, you're golden. In some cases (such as on the G2X) custom kernels (such as Faux123's) will add the necessary TUN support. Or you may need to add a TUN.KO file if it doesn't... again, device specific, refer to appropriate device forums.
3) If you don't have a static IP (I assume you don't) you'll need a dynamic DNS provider compatible with DD-WRT. I prefer freedns.afraid.org, but you can use any o these: dyndns.org, zoneedit.com, No-Ip.com, 3322.org, easydns.com tzo.com or dynsip.org.
Got all that? Great!
Okay, here's the fun bit.
STEP 1
First, you need to hack your router. It's a LOT like rooting your Android phone. How to do it is BEYOND the scope of what I can write here, but what you need to do is visit http://www.dd-wrt.com and have a look around. Or, you can actually purchase routers with DD-WRT pre-installed. Basically you have to flash a custom ROM onto your router. It needs to support VPN, and be at least version "v24 SP1". Older versions may have a DIFFERENT VPN setup that's not as easy. Don't say I didn't warn you. I flashed the full-featured VOIP version to my router, a Buffalo WHR-G54S.
Unlocking (if necessary) and flashing your router with DD-WRT is a topic as broad as rooting/flashing Android - so I can't help you here. But once it is done, you are ready for....
STEP 2
Setup your dynamic DNS provider. I used http://freedns.afraid.org/ to do this. Basically you go to the site and sign up for the free "subdomain" services. You can pick a name that will be on a number of different domains, such as "us.to", where you could maybe pick something like "kick.us.to" if it isn't taken yet. All that matters is you remember the name.
Next, in DD-WRT, go to the Setup->DDNS tab and select the proper DDNS service and enter the information it asks for -- your service used, username, password and hostname usually. You can usually leave update interval at the default, and normally you don't need to use external IP check.
NOTE: You need to make sure you are not "Double NAT-ed".. this means two routers stacked is a nono. If you have a router connected to a cable/dsl router (instead of a cable/dsl modem), then it needs to be set to BRIDGE mode. Again.. complicated and really a topic best dealt with on its own.
Once you've setup your Dynamic DNS, you're well on your way. You can actually use that hostname for all sorts of things, such as always being able to get Audiogalaxy to connect to the right host without having to know a numeric IP that could change.
STEP 3
You're on a roll... Now, time to setup the VPN in the router. This is done under the Services->VPN tab. If that tab doesn't exist, then you got the wrong version of DD-WRT and need to go back to Step 1.
Enable PPTP Server, Broadcast Support, MPPE Encryption. Under Server IP enter your ROUTER's IP address (usually 192.168.1.1, or whatever you use to connect to your router). Under Client IP's, enter the range of clients on your local network in the format: 192.168.1.100-149 (where 100-149 represents possible IP addresses I've set in DD-WRT for my LAN)... this doesn't seem as important since we'll be connecting from outside.. Just do it.
Under CHAP-Secrets enter in your preferred username and password in the format:
username * password *
that is, the username, a space, *, a space, the password, a space and then *
Save and apply settings. (You need to click both SAVE and APPLY, DD-WRT is weird like this)
STEP 4
Back to Android! Yay! This part of the procedure may vary by phone, but this is how it is on my Gingerbread T-Mobile G2X with faux123's kernel.
Goto Settings->Wireless & Networks->VPN Settings->Add VPN->Add PPTP VPN
VPN Name=whatever you want
VPN server= your dynamic IP name you selected in Step 2
Enable encryption = Yes
now, hit Menu->Save
You should now see your VPN listed under VPNs. Click on it, and select CONNECT. Type in your username and password you selected at the end of Step 3.
It should connect. CONGRATULATIONS!
You should also have a notification in your taskbar that will now let you disconnect from the VPN.
STEP 5
Enjoy! .. wait, what? It didn't work? It did for me!!!
I guess.... ask questions here, or if it appears to be a phone issue, ask in your device's appropriate forum (and link to this thread so people know what guide you're following)
And, if anybody reading this is a better expert in setting this stuff up than I am, feel free to critique/laugh/criticize/constructively comment on this little howto and I'll correct anything I Rick Perry'd.
Nice tutorial! Would have been better if you also included more details in hacking our router
DroidVPN said:
Nice tutorial! Would have been better if you also included more details in hacking our router
Click to expand...
Click to collapse
I would have, but like I said, that's a topic as big as phone hacking itself. Every model of router is going to be different! There may be models that support VPN in the router as well without DD-WRT, but I'm not familiar with that setup.
DD-WRT's website has a pretty huge forum on what routers are compatible and how to set it all up.
The optimal speed can be achieved by the compression of traffic and by minimizing server loads. Web acceleration will enable you bring about a drastic improvement in the web page response time. This kind of acceleration usually come in lesser costs and offers the best web application performance.
So Wat does this do? Keeps u secured from the eyes of the ISP?.. harder for others to hack u?...
Sent from my HTC Desire using xda premium
evilgenius00 said:
So Wat does this do? Keeps u secured from the eyes of the ISP?.. harder for others to hack u?...
Sent from my HTC Desire using xda premium
Click to expand...
Click to collapse
lotherius said:
Security. Using a VPN will essentially encrypt your communications though a tunnel back to your home computer.
Click to expand...
Click to collapse
Yeah, that.
...
10char.
Nice TUT, VPN working
Thanks. I mostly appreciated the idea of using afraid.org.
For some reason, Dyndns and no-ip wouldn't work with ICS as client.
thanks for this tut, keep it up
nice.. thanks for sharing
The cool thing is, once you start hacking your router, you open up all sorts of fun. Like using a virtual wireless network to bridge the open wifi network that gets 1 bar of signal in one little corner of your apartment to be a full strength WPA protected network with your own SSID and subnet that all of your devices can use ... not like I would do such a thing. Now, I *am* a bit afraid to try to set up a VPN on the bridged virtual network..... that could get complicated.
Will this also work with OpenDNS?
Already running DDWRT v24 on WRT600N, and trying to figure this VPN stuff to connect my Atrix running CM10. Thanks for any help
katinatez said:
Will this also work with OpenDNS?
Already running DDWRT v24 on WRT600N, and trying to figure this VPN stuff to connect my Atrix running CM10. Thanks for any help
Click to expand...
Click to collapse
Any service which gives you a stable hostname to the outside network should work.
If you have a higher end router that supports the mega builds (8MB flash), then you can opt for OpenVPN which is more secure than PPTP. Setup is more complicated though.
australix said:
If you have a higher end router that supports the mega builds (8MB flash), then you can opt for OpenVPN which is more secure than PPTP. Setup is more complicated though.
Click to expand...
Click to collapse
Still using a (now antiquated) Buffalo WHR-G54S which has 4MB flash and 16MB Ram... so while it has a lot of features, OpenVPN is lacking... so I can't test that method personally.
This Buffalo is the best router I've ever owned, though. I still can do without gigabit or N networking, so I'm not upgrading. I went through 5 or 6 bad routers (even a Linksys WRT-54G that crashed constantly) before I got this one.
Thanks for all the info here. I've deleted the post because I think my issue is with something else.
Thanks..
p
very...helpfull..!!!
Very easy guide! Thanks!
455
nice cool...
bumpin this because i have a question regarding this, i just set this up and it works great
there are mainly two types of auth vpn servers use, certificate authentication and username/password
i tried to set up password one, and you still need the server public certificate along with username/password, but you don't need client public and private keys unlike with cert auth.
now, i placed the server key, ca.crt, on my internal storage and together with username/password, works great, my concern is security of this file. this file needs to be accessible right, so you can't put it in /etc or /system, having it in internal storage, any app with storage permission can read it... isn't this a security risk? how is this solved? where do i put the file?
thanks
edit: also, how do i *prevent* network traffic without vpn? i know there is always on option and start on boot, but i did, and when the boot finnishes there is a brief moment when the phone connects on mobile network just before initializing vpn and in that brief moment android probably sends all sorts of passwords and data through the network ... how do i delay this until vpn is initialized?

Categories

Resources