Android will use the type ID GlobalProtect Gateways expects.Ĭhange the Group Name to something not FQDN like. By putting that file into the same folder as the GVCInstall64.msi, the installer will grab that file and put into C:Program FilesSonicWALLSonicWALL Global VPN Client on your clients for you. The Group name has been changed to be no FQDN like. I put that default.rcf file also into serversharesonicwall folder. Same GLobalProtect Gateway configuration as above:ĭetails from a successful connection using Android. IOS will always used type ID_KEY_ID.ĭetails from pcap of a failing connection using Androidĭetails from PCAP of a successful connection using iOS. GP-Gateway expects the Tunnel Endpoint ID Type to be ID_KEY_ID. When the Group Name (This corresponds to the Ipsec Identifier field in Android VPN configuration page) is configured in a FQDN like format, Android OS will set the tunnel endpoint ID type to ID_FQDN. 18:49:08 : Couldn't find configuration for IKE phase-1 request for peer IP 192.168.41.24, ID fqdn. 18:49:05 : Couldn't find configuration for IKE phase-1 request for peer IP 192.168.41.24, ID fqdn. 18:49:02 : Couldn't find configuration for IKE phase-1 request for peer IP 192.168.41.24, ID fqdn. Logs in ikemgr.lg looks like the ones below: You also need to configure DHCP for VPN clients and assign VPN access to local users, unless you are using 3rd party authentication like Active Directory. When connecting with an Android device it will hang and eventually the connection will be unsuccessful. Mar 29th, 2014 at 4:15 AM Have you configured the VPN settings on the Sonicwall itself Under VPN > Settings you need to assign a Preshared Key. The Group Name in the GlobalProtect Gateway configuration is in a FQDN format.ĭevices running Apple's iOS can connect to the VPN. The GlobalProtect Gateway is configured to use Pre-Shared Secret Authentication, as defined on page 8 of GlobalProtect Configuration for the IPSec Client on Android Devices, however devices running Android version 4.1.2 and earlier are not able to connect.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |