VPN w/ Watchguard - Tilt, TyTN II, MDA Vario III General

Anybody out there successfully doing IPsec VPN on a windows mobile device ?
I'm having a devil of a time getting anything working.
Thanks,
DLD

OK how about IPsec VPN with ANYTHING [email protected]#$?
DLD

Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)

can you share sir what app you used for us to use? i have and S3 also and we have a Watchguard XTM 5
End_Bringer said:
Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)
Click to expand...
Click to collapse

The only available client that I have been able to get work is ncp vpn client with a mobile user ipsec tunnel to connect to my watchguard x515
Ran trial for a week and just pulled the trigger.. Very happy.
Sent from my SAMSUNG-SGH-I747 using xda premium

Related

[FanZhang]Wifi Helper [May 11 update]

Hi All,
I've made a program supporting all originally supported wifi protocols as well as WPA/WPA2 enterprise protocols. This program can be used to set up connection with wireless networks using enterprise protocols.
What you need to do is to select proper protocol/authentification methods. Provide certification files if you have them. You can put certs files anywhere in your SD card. Then click OK.
You need to disable your wifi and re-enable it. Root is required.
Please visit my blog for more updates: http://fredzhung.blogspot.com/
** THIS IS NOT WELL TESTED, But works for Purdue University. (WPA ENTERPRISE WITH THAWTE_PREMIUM_SERVIER certs.)**
[UPDATE MAY-11] 1.0.2 RELEASE
ADDED SUPPORT FOR AD-HOC!
Added support for memorizing all configurations.
Need some test.
[EDIT] v0.2 RELEASE.
fixed a bug connecting to open network.
added support for anonymous indentity in EAP
added help/about
added input validation
changed icon
If this Wifi Helper doesn't work with your company's/school's wifi settings, please provide me your wifi setup so I can figure out what's wrong.
There seem to be a bug that first time run will hang. Close the program when the "force close" window pops up. Then run it again. Add the program to superuser list when asked.
This seem to be a bug for all applications requiring root access in android 1.5. I tested with terminal emulator and it has the same bug as well. Something is wrong with superuser program.
The app is uploaded to Market. Have fun!
Using this to access wifi on campus
Hi
I am a novice at all this root stuff so my questions is straightforward
a) If i buy a G1 (not rooted etc) and install this application from the market, i should be able to access my campus wifi? This is one reason why I am still using the iphone (unlocked on tmobile).
b) Is this likely to work even after the 1.5/cupcake transition that seems to be imminent?
Thanks
ps I am at LSU and here are some of the wifi details for the campus:
http://grok.lsu.edu/Article.aspx?articleId=8198
Hi, if you buy a g1 from store, you need to root it first before using this app. totorials for rooting your phone can be found on the sticky threads.
After you root your phone and use this app, you should be able to connect to your campus wifi. This is the purpose of this app.
May 11: 1.0.2 is released. Available in market
Hey zhang!
Great work, but i am having problems getting the ad-hoc to work.
It's been setup on my laptop and i have tried w/WPA & open to no avail.
The phone does not seem to detect the network.
I'm running 1.5 JF ADP.
Any thoughts as to what i might be doing wrong?
And thanks for the ad-hoc capability, been waiting on that one
Sean
Hi Sean,
I've been doing experiments with adhoc, I am not 100% sure adhoc will work. I will keep trying.
Great, great, great job!
I'm gonna buy the pro one, just as a "thank you"..
It seems it won't even detect my adhoc network
Hi. I use the free version (will buy it if it actually works) but I can't seem to even detect my adhoc networh. I use the ICS on XP laptop. I setup an open network with no encryption for the test but the G1 doesn't detect it (it sets it up and says it's unavailable, thus allowing me only to "forget" it). Do I have to change anything else on my device (for example the tiwlan.ini) so my device actually shows those elusive adhoc networks. Has anyone actually succeeded to setup properly an adhoc connection on G1 ever with any kind of software or is it like the UFO - we hear it exists but we've never actually seen it?
I cna't get it to work on my university's WPA2 Enterprise with a 'GTE CyberTrust Global Root' certificate (with extention cer).
I'm using a Vodafone Magic
I am also having a problem with a WPA2 enterprise setup.
It is a eduroam network.
On my computer I have entered the following setup in wicd:
encryption: PEAP with TKIP/MSCHAPv2
identity: my username
password: my password
In the wifi list (in the android system menu) the eduroam network shows as "Not in range, remembered"
I have another problem with the app itself: "Modify configurations" does not work. This makes it a hassle to try different encryption settings.
I know the network also works with PEAP with GTC, but don't know how to set that up.
Where did this go? It's no longer on the market. I can't find it anywhere!
Yeah, I was looking for this app and can't seem to find it anywhere. It disappeared. Does anyone have the apk?
Boogy
Try WiFi Buddy...free and works great.
All you had to do was go to his site...
http://fredzhung.blogspot.com/2009/05/download-for-wifi-helper.html

[Q] RSA SecurID 2-factor Authentication

Hello,
Does anybody know of a current solution to connecting to a VPN using RSA SecurID? I know RSA now provides a software for the hardware token which generates token codes, but what I need is an app or a solution that will let me *connect* to the VPN servers using my PIN and the generated token codes.
It would be sad if there's currently no solution, because I can't access most of my work files without getting on the VPN, including my Exchange e-mail.
Any help or ideas would be appreciated.
Bump.
Sent from my GT-P1000 using XDA App
What VPN solution are you using with the SecurID? We're using it here, but not with a VPN solution, just to gain access to Citrix/XenApp servers.
For example, if you're using a Cisco VPN Concentrator, I believe all you'd need is the tun module and the vpnc binaries built for android. Connecting would be a command-line affair, unless someone out there has built a graphical app wrapper like they have for the OpenVPN stuff.
Get the RSA SecurID token software from the market, import your token (using iphone method and paste it in securid), get a robot vpnc http://code.google.com/p/get-a-robot-vpnc/ and tun.ko (posted somewhere in Galaxy Tab forums or build it yourself).
It worked for me for my work VPN.
We're using SecureClient to connect our workstations, so I'm guessing we use Checkpoint VPN. I'm fairly new to VPN, as this is my first job which requires us to use one, so I don't know much about it.
Technomancer said:
Get the RSA SecurID token software from the market, import your token (using iphone method and paste it in securid), get a robot vpnc http://code.google.com/p/get-a-robot-vpnc/ and tun.ko (posted somewhere in Galaxy Tab forums or build it yourself).
It worked for me for my work VPN.
Click to expand...
Click to collapse
Thanks, I'll see what I can do.
Technomancer said:
Get the RSA SecurID token software from the market, import your token (using iphone method and paste it in securid), get a robot vpnc httx://code.google.com/p/get-a-robot-vpnc/[/url] and tun.ko (posted somewhere in Galaxy Tab forums or build it yourself).
It worked for me for my work VPN.
Click to expand...
Click to collapse
Does that client you posted actually have an rsa eap client integrated? I am very curious.
I setup our ISA servers at work to authenticate against RSA servers for two factor. We use keychain tokens. We are using this on pc's deployed with cmak along with an added installed eap client. The vpn also works with the built in eap client included with Apple OS and tested on MAC, IPad, and Iphone.
I'm curious if anyone has found an android vpn client that will allow you to enter your token code.
I've been looking for the same solution myself. . . Got the new Cisco jabber client but of course need to vpn first.
Sent from my GT-P1000 using XDA App
omnia2tester said:
Does that client you posted actually have an rsa eap client integrated? I am very curious.
I setup our ISA servers at work to authenticate against RSA servers for two factor. We use keychain tokens. We are using this on pc's deployed with cmak along with an added installed eap client. The vpn also works with the built in eap client included with Apple OS and tested on MAC, IPad, and Iphone.
I'm curious if anyone has found an android vpn client that will allow you to enter your token code.
Click to expand...
Click to collapse
I know there are software tokens for many of the mobile platforms to generate rsa keys and such. We alsu use RSA for Citrix. However those wont help with vpn.
I too am looking for a vpn client that will leverage the SecureID eap authentication. It would be nice if the Android distribution included a built in client like the Apple IOS does. :-(
Hi Guys,
Did anyone ever get a workaround for this? we're trying to get users to use tablets to VPN into work using IPSec and SecurID tokens without buying anyconnect licenses.
Cheers

[Q] Global Proxy Settings for wifi networks.

Hello there,
As we all know our Samsung Device does support Proxy Setting for wifi networks but it only works for default android browser. Is there any way that I can use the Internet behind the proxy setting through out the phone (including google maps, gTalk, etc etc) ?? Has anyone here has done it?? I have tried many apps like ASProxy, Transparent Proxy, ProxyDroid, Http Proxy Settings but none of them worked.
Secondly what is iptable module?? does our phone Samsung Galaxy S I9003 has that iptable module? I have froyo XWKB1 firmware. Some of the apps require iptable module to be on the phone.
Many people claim that they are able to use pxoxy setting through out the phone with all those third party apps but not me. Please do reply
Type opera:config in opera mobile url(not in opera mini)
You will find lots of options there including proxy. But i never used it.
BTW this is not development related question.
Sent from my GT-I9003 using Tapatalk
sorry for that, this is only forum for I9003 and I am depressed for that. I dont want peoples who own different phone answering this because I have searched hundreds of forums and blogs, those people claim that they are able to use Proxy Setting with the help of third party apps but not me ... This is only forum where all the I9003 owners hang out. Yes The method that you specified also works. I am also using it but I want to use android market, gTalk, Maps and all the apps.
Greetings
Root your phone and use proxydroid, that thing works globally, has context sensitive profiles and other features...
Oh! yeah! I have rootem my phone deodexed, applied CWM for XWKB1 also but that application didnot work for me. I have a query, have you tried the proxy settings in galaxy i9003 itself or any other phone? the proxy of my college is 192.168.1.100 and port is 3128 but I am not able to run it through out the phone.
Regards,
rocky_upadhaya said:
Oh! yeah! I have rootem my phone deodexed, applied CWM for XWKB1 also but that application didnot work for me. I have a query, have you tried the proxy settings in galaxy i9003 itself or any other phone? the proxy of my college is 192.168.1.100 and port is 3128 but I am not able to run it through out the phone.
Regards,
Click to expand...
Click to collapse
I use this program on this phone and my Galaxy Tab successfully with the proxy server at my work place. I use XXKPH with CWM by Skin and root through CWM method using leo's zip. You should be able to find these around here if you want to replicate my config.
rocky_upadhaya said:
Hello there,
As we all know our Samsung Device does support Proxy Setting for wifi networks but it only works for default android browser. Is there any way that I can use the Internet behind the proxy setting through out the phone (including google maps, gTalk, etc etc) ?? Has anyone here has done it?? I have tried many apps like ASProxy, Transparent Proxy, ProxyDroid, Http Proxy Settings but none of them worked.
Click to expand...
Click to collapse
Have you tried Orbot? It's not exactly what you want but it's a tor proxy :
Orbot is an application that allows mobile phone users to access the web, instant messaging and email without being monitored or blocked by their mobile internet service provider. Orbot brings the features and functionality of Tor to the Android mobile operating system.
Orbot contains Tor, libevent and privoxy. Orbot provides a local HTTP proxy and the standard SOCKS4A/SOCKS5 proxy interfaces into the Tor network. Orbot has the ability to transparently torify all of the TCP traffic on your Android device when it has the correct permissions and system libraries.
Click to expand...
Click to collapse
Secondly what is iptable module?? does our phone Samsung Galaxy S I9003 has that iptable module? I have froyo XWKB1 firmware. Some of the apps require iptable module to be on the phone.
Click to expand...
Click to collapse
http://en.wikipedia.org/wiki/Iptables
I'm almost sure we have this module in our kernel.
DroidWall is a famous firewall for Android which configure iptable on device, allowing or not selected apps to access network, try it
Solution for global proxy problem on Android devices
Hi all,
I found a setting that worked on my device. I believe it will work for almost all other devices running at last Android 3.3 as this is a requirement for the app SandroProxy. Note that no rooting of the device is required. Try the following steps;
Install SandroProxy
Add your WiFi authentication parameters to SandroProxy. Details such as the domain, user name, proxy address and password.
On your WiFi setting, long press on the SSID and select the "Modify network config". This can be found under Settings>Wifi>[SSID]
Under proxy, type "localhost"
Under port, input the port beign used by SandroProxy, default is "8008"
Thats is
Enjoy

Do any roms play nicely with 1VPN

I've been running different builds of Cyogenmod7 for quite a while & I can't get VPN (PPTP or OpenVPN) to work through the Cyogenmod settings or with 1VPN. I can, however, get it a VPN to run with OpenVPN Settings (from the market). However, OpenVPN settings is a bit of a pain since I have to enter in my username/password everytime I connect.
Anyone know how to either have OpenVPN settings remember my username/password or know of a rom that works with 1VPN?
Thanks!
I gave up on trying to get VPN to work, ended up being more of a pain then was worth it. I instead setup an SSH server on my Home computer and connect to it using ConnectBot app. Using Port Forwarding in the app I can access pretty much whatever I would of wanted to on a VPN like VNC, SMB, Upnp Media Server, ect... Everything done over the SSH is Encrypted as well so you could use it even on an Open/Public WiFi connection without fear. Only thing I have yet to try to do is forward Internet Browsing over the SSH connection, would probably require me to setup a Proxy server on the PC.
____________________________________________________
Sent from NookColor CM7 uSD using Tapatalk

VNC Server for Android

A good application for Android remote control from PC?
I've tried "Droid VNC Server (Beta) and "Remote Control Add-on"
both of them works but have a problem viewing the screen.. phone capture commands but can't see android desktop on my pc..
I rooted both applications with Superuser without success..
Any Help?
I'm on Nova HD Plus Rom
I tried lots of apps. But nothing works as good as teamviewer.
Install pc version and the android app.
Set unattended axx on your pc.
Whitelist your android ID.
This hs never failed me. Mouse keyboard dual monitor setup... It just works
Hmmmm read again lol and think you want it the other way around...
Sorry haven't tried that
Sent from my LG-P990 using Tapatalk
You can try our new VMLite VNC Server app:
https://play.google.com/store/apps/details?id=com.vmlite.vncserver&hl=en
so far, it works on many different models of android devices, rooting is not required.
huisinro said:
You can try our new VMLite VNC Server app:
https://play.google.com/store/apps/details?id=com.vmlite.vncserver&hl=en
so far, it works on many different models of android devices, rooting is not required.
Click to expand...
Click to collapse
Can it be ROM related ? on my phone the server can't use wifi connection, and sets the IP of the server on my 3G provider one which not very useful, and generally doesn't work for me.
I'd like to have my phone screen on my tablet or my computer
There might be a bug for our app to report the wifi ip address, we are fixing this. For the time being, you can do one of these:
(1) find the wifi ip address from settings, and you can connect to this ip address instead of the one reported by vmlite vnc server app
(2) use USB connection, from VMLite Android App Controller, click USB Connect button
(3) reverse connection, run tight vnc viewer in listening mode, then start vnc server in reverse mode, so the server will connect to the client
Striatum_bdr said:
Can it be ROM related ? on my phone the server can't use wifi connection, and sets the IP of the server on my 3G provider one which not very useful, and generally doesn't work for me.
I'd like to have my phone screen on my tablet or my computer
Click to expand...
Click to collapse
huisinro said:
There might be a bug for our app to report the wifi ip address, we are fixing this. For the time being, you can do one of these:
(1) find the wifi ip address from settings, and you can connect to this ip address instead of the one reported by vmlite vnc server app
(2) use USB connection, from VMLite Android App Controller, click USB Connect button
(3) reverse connection, run tight vnc viewer in listening mode, then start vnc server in reverse mode, so the server will connect to the client
Click to expand...
Click to collapse
First solution worked great thks !

Categories

Resources