[micksel]

We are running : Appgate Free Edition 10.0 with a authentication method set to a Radius solution with sms verify.

We have configure the following.
* a Role called MobileUsers with the access rule Mobile-os
* Added a preshared key under L2TP/IPsec Access
* added a local IP range under Per system Pools (what access does this range require?)
* what firewall rules to we need to allow? port 22 out, appgate allowed to connect to serviceports (http, RDP) in?

But we can't get it 2 work,
* Android can create the VPN tunnel but the appgate client can't verify this.
* Iphone does something simulare
* windows phone, connect but dosen't show any icons but we are now only using andriod and iphones/ipads

[ess]

But we can't get it 2 work,
* Android can create the VPN tunnel but the appgate client can't verify this.
* Iphone does something simulare
* windows phone, connect but dosen't show any icons but we are now only using andriod and iphones/ipads

The guide for setting up the server side for use with the Android and iOS based clients:

http://tech.cryptzone.com/agsecurityserver/ipsec.html

There's also an FAQ about required access:

http://tech.cryptzone.com/faq/agsecurityserver/004_firewall_requirments/index.html

/Erik

[micksel]

But we can't get it 2 work,
* Android can create the VPN tunnel but the appgate client can't verify this.
* Iphone does something simulare
* windows phone, connect but dosen't show any icons but we are now only using andriod and iphones/ipads

The guide for setting up the server side for use with the Android and iOS based clients:

http://tech.cryptzone.com/agsecurityserver/ipsec.html

There's also an FAQ about required access:

http://tech.cryptzone.com/faq/agsecurityserver/004_firewall_requirments/index.html

/Erik

Thanks Erik,
But no success, the appgate logs report the following:
ag_iked Got INITIAL-CONTACT message. Ignoring when we try to connect VPN...

[ess]

But we can't get it 2 work,
* Android can create the VPN tunnel but the appgate client can't verify this.
* Iphone does something simulare
* windows phone, connect but dosen't show any icons but we are now only using andriod and iphones/ipads

The guide for setting up the server side for use with the Android and iOS based clients:

http://tech.cryptzone.com/agsecurityserver/ipsec.html

There's also an FAQ about required access:

http://tech.cryptzone.com/faq/agsecurityserver/004_firewall_requirments/index.html

/Erik

Thanks Erik,
But no success, the appgate logs report the following:
ag_iked Got INITIAL-CONTACT message. Ignoring when we try to connect VPN...

The next step of the start should produce log entries like ag_iked Got P1 KEX...

If you didn't get this it's a sign that the firewall is not letting port 4500/udp through.

/Erik

[micksel]

The next step of the start should produce log entries like ag_iked Got P1 KEX...

If you didn't get this it's a sign that the firewall is not letting port 4500/udp through.

/Erik

The logs says this now:
ag_iked Got INITIAL-CONTACT message. Ignoring
ag_iked SA's 0x905d8d00/0x8d5d90 set up for 10.172.198.241:* (95.199.6.241:4500) --> (83.241.220.204:4500) 192.168.125.220:1701
ag_iked Creating state for 38688
user <none> selected role _ikerole
ag_iked Got client connection, 95.199.6.241:46051 --> 192.168.125.220:1701

The phone says the VPN tunnel is connected but the appgate client doesn't accept this, It just says Checking... and the same startscreen is visual,
Usernamn:, Authenication Method and the Start VPN button...