Hi,
I have a HP Ipaq 210 series PDA with WM6 and trying to get OpenVPN to work for allowing me to connect the our university network.
After presenting my user data, OpenVPN says "connected" and displays the green symbol. Nevertheless my browsers (PIE, Opera Mobile) or any other internet app is able to "go outside".
Do I have to tell Windows or the browser to use the VPN-tunnel anyhow? I just don't know how to proceed.
Any information that could help me?
Kind regards,
roke
Can somebody please at least indicate how the configuration in the windows connection manager should be? ISP/work and so on? network device should connect to work/ISP? Configuration of OpenVPN: Use connection manager? On which network? Exclusive? ...
I just don't know what else I can do. The admins responsible for the VPN are bloody amateurs and don't know anything about windows mobile...
Help me please...
Regards,
roke
I have not tried openvpn on the ppc, but i run some openvpn connections for my company.
The openvpn server is configured to push the various parameters to the client, essentially that is the ip address ranges which should pass through the vpn and any DNS servers. (Excepted for bridged mode, where the ipaddress will be in the same subnet as the main site.)
From the Openvpn web site :"By default, when an OpenVPN client is active, only network traffic to and from the OpenVPN server site will pass over the VPN. General web browsing, for example, will be accomplished with direct connections that bypass the VPN." Why would you want it any other way?
What is it that is not working?
Can you access the sites and resources with the openvpn connection?
Can you access the sites on the openvpn server side by ipaddress?
Regards
Chapelhill
Related
I've just set up a small wireless network at home through which I intend to use several devices to connect to the internet through my LAN!
The LAN gateway is running ISA 2004 and my home computer is running the necessary Firewall client (a completely secure connection with username and password)!
Now everything's working fine... the pocket pc hooks up just right and i can browse the network and do what I could probably do using my own personal computer BUT the internet doesn't work!
It keeps asking me for a username and password (which like i usually provide in internet explorer on my personal computer) which i do supply... three times in a row after which it gives me an error saying that ISA cannot authenticate me!
The home computer doesn;t run the internet without the firewall client, and i'm supposing the pocket pc is facing the same dilemma! is there any way to circumvent this issue? perhaps a mobile version of the isa firewall client?
Please help. Thanks!
afaik there isn't a mobile version of the firewall client.
I set my ISA server to allow anonymous internet access ,and set all my machines up as secure nat clients (set isa servers ip as default gateway, I use a dhcp scope to do this). There is lots of info on this on microsofts ISA server website, I'd suggest a look there first, or try a google for secure nat.
Good luck, works well for me but ymmv.
HI guys,
Does anyone know how to get a static IP address when using the GPRS connection to the internet. The reason being is because our corporate firewall has to recognise the device through it's IP. Is there any other possible methods for recognising the user?
Also does a VPN work well over GPRS and is there any extra configuration involved on the VPN server
Cheers
Any answers would be great.
Unfortunately there is no simple answer to your question. AFAIK you cant get a fixed ip on gprs, but if your using the right firewall and the right vpn host you dont need to.
I use and supply windows sbs 2003 servers and vpn into them regularly. I have also used citrix to achieve similar results. Might be a bit difficult to persuade your firms it dept to set up something like that for 1 person though.
PM me if youd like any advice.
BillyB said:
HI guys,
Does anyone know how to get a static IP address when using the GPRS connection to the internet. The reason being is because our corporate firewall has to recognise the device through it's IP. Is there any other possible methods for recognising the user?
Also does a VPN work well over GPRS and is there any extra configuration involved on the VPN server
Cheers
Any answers would be great.
Click to expand...
Click to collapse
Hello Billy,
You ask a good question, but the answer isn't simple. Most carriers do have two types of APN (Access Point Name) provision for your SIM: "private" APN (which provides a non-routable IP assignment from behind a NAT, for basic browsing and e-mail functionality) and "public" APN (that provides a routable IP assignment, which is the Minimum Requirement for a more sophisticated connection type, such as VPN, etc). However, both of them are assigned by a DHCP (Dynamic Host Configuration Protocol) Server on a GGSN (Gateway GPRS Support Node) of your particular GPRS network operator. In either case, the end result will obviously be a DYNAMIC IP address on your GPRS terminal (be it a laptop PC, a PDA, or phone)
Some carriers do offer what is called a "dedicated APN" provision, which gives the subscriber their own IP range to choose from (almost like a small subnet), but it is only available to corporate giants like Pepsi (for example).
Now, to sum it up, you must have the proper APN provisioned on your Mobile SIM account (which the provider will normally call something like a "VPN data package" in billing terms). Then, you must obviously establish a GPRS session before you can connect your VPN client (but remember that most basic VPN clients work the best). It is pretty sad to say, but Microsoft Windows-embedded VPN client on Win2k/XP Pro so far has performed the best with no quirks whatsoever. It has to be via PPTP...L2TP has also worked for me..otherwise, the fancier (and more secure) the VPN tunneling protocol, the more its likely to fail. Normally all you need for a basic MS WIndows VPN client config is the Server name (or IP address), the user name, and the password.
Hope this helps,
Let me know how it goes,
Alex
PS. PM me if you have further questions.
VPN and TS Its like pulling teeth
hi all this has got to be the most anoying problem ever. i can connect to O2 vpn access point and hence i can connect to my work vpn server. however as soon as i try to open a TS connection to my desktop (through the vpn) the VPN connection is dropped and i never connect. Can anybody tell me why? if i have a vpn connection to my work server why does TS try to make another connection and bomb out the original. Is there a fix or another way of doing this i.e. does a external IP have to be nat'd to my desktop IP on port 3389? all help greatly appreciated. Ian
I want to use PPTP vpn connection to my work together with Remote Desktop (Teminal Service) application.
The PPTP vpn connection is established successfully.
From my work PC I can ping the pptp ip address of my PPC.
However if I switch to an application which would generate internet traffic (such as terminal services, internet explorer) my PPTP connection drops.
On my vpn server I get the logs and see the disconnect reason as "user requested)
What is the problem ?
Thanks...
hi,
I guess nobody has such experience with vpn connections.
where can I find information about this problem ?
thanks
Hi, I have the same problem more or less
see http://forum.xda-developers.com/showthread.php?t=291208
I have the same problem when trying to use Skype. My office also requires the use of a VPN (PPTP) when connecting via the wifi.
Skype connects, I can make calls, but the connection is dropped after 30s (the VPN is closed). Oddly enough, it I have the impression I prevent the VPN connection from dropping by using Pocket Internet Explorer at the same time (I have tried creating a website that automatically refreshes every 10s, but this didn't keep the VPN open). The Messaging client als shows odd VPN behaviour: it always closes the VPN, and opens it every time send/receive is selected.
I suspect not all programs keep the VPN open, even despite the fact that those programs are generating traffic over the connection.
Any hints or suggestions are greatly appreciated!
Jorg
(sorry, I can't edit posts in Opera Mini)
MarsRover: I have changed the AlwaysOn registry setting in the registry (in the folder of my work vpn). Ii appears to have changed the Messaging behaviour (but I need further testing to be sure). Tomorrow I'll see if it changed the Skype connection.
Thanks for the suggestion, if it works it ought to be put in the FAQ.
Jorg
Hi,
MarsRover,
I couldn't understand the solution. Can you explain ?
My situation is :
I am using Wifi connection to access internet. This connection is selected as my internet connection.
My pptp vpn connection is set under my Work connection.
So when I use the pptp connection I connect to Work over Internet.
But then it gets dropped if I open internet explorer.
If I set "*/*" to my intranet addresses, I have to connect to everywhere over my VPN connection. This is not good because I don't want to use VPN connection for Web browsing etc.
There must be another way ? Don't you think so ?
Btw, if I set AlwaysOn to "1" in registry , and then check it back after a connection is made, I see it is "0" again.
Hi
You do not have to redirect all traffic through the VPN you can pick and choose under settings>connections>advanced>exceptions just add the urls you need. ie so instead of */* use the specfic range ie 10.0.0.*/* or whatever range your work uses. One more issue however if the wirless ip range overlaps the internal VPN work range you may still have isssues. ie if your wireless ip address range is 10.0.0.x and your vpn range is 10.0.0.x then even if you add 10.0.0.*/* in the exceptions it may still try the wireless link rather than the vpn link for your TS etc. If you get my drift. There is a discussion on this here:
http://forum.xda-developers.com/archive/index.php/t-217422.html
Stephen
Thank you Stephen.
In fact, I am aware of how the exception list works. I can add the IP addresses which I want to reach via work vpn.
However, I still wish that there was a way to use VPN connection manually without using an exception list.
Isn't this possible ?
mrmrmrmr said:
.... This is not good because I don't want to use VPN connection for Web browsing etc....
Click to expand...
Click to collapse
This is good for me because I DO WANT to use VPN for all network access.
mrmrmrmr said:
Btw, if I set AlwaysOn to "1" in registry , and then check it back after a connection is made, I see it is "0" again.
Click to expand...
Click to collapse
It happens if you use settings->connections to view/change settings
hello...
i haven't a clue if this helps...
in my firm theres a cisco vpn connection... i search a long time for a programm that i can use with that vpn connection...
finally i find one... NCP Secure Client... works for me... maybe it helps you...
futureshock said:
hello...
finally i find one... NCP Secure Client... works for me... maybe it helps you...
Click to expand...
Click to collapse
where can I find it ?
does it connect to cisco vpn concentrator / ASA ?
there is also AnthaVPN from AnthaSoft but it's not very reliable.
PPTP
Bluefire seems to work fine with IPSec, but I need PPTP (IPSec requires NAT-T in most cases with GPRS/3G).
Hi,
I'm currently on a HTC Trinity using Mary's 3.3.5 ROM and want to be able to connect to my universities WiFi network but to do so I need to use a VPN tunnel, anyone recommend a good PPC App that will allow me to connect to my universities VPN?
Cheers,
Mike
mikecsmith said:
Hi,
I'm currently on a HTC Trinity using Mary's 3.3.5 ROM and want to be able to connect to my universities WiFi network but to do so I need to use a VPN tunnel, anyone recommend a good PPC App that will allow me to connect to my universities VPN?
Cheers,
Mike
Click to expand...
Click to collapse
WM6 Pro includes both a PPTP & a L2TP/IPSec VPN client. This will work with most VPN routers & firewalls, however they may not be configured to support it. If you can connect using Windows 2000/XP's built-in PPTP or L2TP/IPSec VPN Client then you can almost certainly connect with WM6's.
A lot if VPN Routers & Firewalls are supplied with a 'free' Windows client that has the documentation geared around it. However most (if not all?) of these products will work with the native VPN client in Windows 2000+ (and WM5/6). I would try and stick with the L2TP/IPSec client but this requires some additional steps over setting up PPTP - on both the client & server (router). It is worth the extra steps in my opinion though.
Andy
I have the same problem ... I am not able to connect using the default VPN client ...
Hi,
There's a great review of vpn clients by Menneisyys in the Wiki. It's entitled:
'Access Your Desktop PC From Your Pocket PC!'
I'm sure you'll find it very useful because it would point you in the right direction as regards VPN tunnelling to your Uni's server.
kiwi992.
kiwi992 said:
Hi,
There's a great review of vpn clients by Menneisyys in the Wiki. It's entitled:
'Access Your Desktop PC From Your Pocket PC!'
I'm sure you'll find it very useful because it would point you in the right direction as regards VPN tunnelling to your Uni's server.
kiwi992.
Click to expand...
Click to collapse
HI!
Thank you for your reply, but this articles are about "Remote desktop" - like solutions for WM - based devises. Not for connecting to VPN.
Did anybody have had any success so far?
Any working 3-rd party VPN clients / Solutions?
Thank you in advance.
Dmitry.
====
keyword list: VPN; connection; VNP over WIFI; VPN WM5; VPN WM6; VPN problem; VPN client;
Hi,
You might find Manneisyys' review very long but if you take your time to read it, you'll see that he talks about the various VPN clients and how they compare. VNC, VNC+, etc are all mentioned there.
Just take your time to read it.
kiwi992.
Nice article, is the VPN working?
Do you have the WM6 VPN client working? Specifically the ActiveSync -> VPN -> MS Exchange functionality that was there under WM5?
kiwi992 said:
Hi,
You might find Manneisyys' review very long but if you take your time to read it, you'll see that he talks about the various VPN clients and how they compare. VNC, VNC+, etc are all mentioned there.
Just take your time to read it.
kiwi992.
Click to expand...
Click to collapse
Thank you for your answer!
But. Once again: the article talks about REMOTE CONTROL with the use of things like: RAdmin, MS RDP, etc.
This sofware - are remote desktops, so called VNC, not VPN clients in a classic way.
There is a little mess we get at the moment. (I've defenetelly got)
Let me describe in detail:
People need VPN here for many reasons, for me it is:
- to connect to some VPN through WIFI with our WM5 \ 6 device.
In my case- this is a public WIFI internet provider, which has a wifi coverage in the city.
Wifi is open PPTP. I need to type in a login \ pass on the web page I get, to start using the internet in current wifi session.
The ALTERNATIVE way to conect to internet - is to establish a VPN connection over the wifi.
I can successfully do in on the laptop.
With my UNI, WM5, AKU 3.5 - I can connect to VPN with the built-in VPN Client, but the first request to internet (via browser or Messaging send-receive) - drops my VPN connection, as it described here in the forum.
So: we need some software that can work.
I tried so far:
1. BlueFire VPN - just can't connect.
2. Antha VPN - just doesn't work.
I have heard thah on some other ROMs there is no problem with the built-in VPN client for PPTP, will try with some other WM6 ROMs later.
Any solution so far?
Thank you, kiwi992
Thanks to everybody!
Hi, im sorry for my bad english.
I have the same Problem. I search for an VPN tool. I have wm6. I know ther ist an VPN client but it doesn't work. To connect to the VPN in my University I need the L2TP/IPSec "safety andcertificate" but I don't kwon where I can load this.
thank's for helping
IronMaster1987 said:
Hi, im sorry for my bad english.
I have the same Problem. I search for an VPN tool. I have wm6. I know ther ist an VPN client but it doesn't work. To connect to the VPN in my University I need the L2TP/IPSec "safety andcertificate" but I don't kwon where I can load this.
thank's for helping
Click to expand...
Click to collapse
Hi! The L2TP/IPSec is a special story.
It is widely discussed here at forum: xda-developers > General discussion > Networking >
Search for *VPN* string on this forum.
This is the: http://forum.xda-developers.com/showthread.php?t=302520&page=2&highlight=*VPN* one of the success stories.
You need to obtain the certificate from the system administrators of your network. You may also have some "magic" URL in your campus network, where you can download the required certificate. This URL should point to the inranet web page of the web interface of the VPN server.
If your goal is to securely connect to some specific computer on the network, you should use one of the VNC programs: the VNC server part on the computer, and the VNC client on your device.
In any case - first check your certificate \ settings on, say, Windows XP laptop, connected through WIFI, first, then continue with the device.
Good luck!
Dmitry
VPN problems
I don't know if this issue is specific to my device (pharos gps 600 gps phone), or to windows mobile 6 which I'm running.
I can't connect to my vpn through wifi, the reason being is that I cannot associate any connections through the wifi card with the vpn info.
Wifi card doesn't show as a selectable modem in the modem tab next to the vpn tab in the vpn config. Only modems are cellular line modems, bluetooth, and one "hayes compatible com1" which is my usb I would guess.
Does anybody know how I might get around this?
Hi all,
I have been tinkering with connectivity into my corporate network and so far been able to get a connection to our Office Communicator server via ASProxy and a secure wireless connection. However I am looking for a solution that works across my 3G connection via a VPN.
I have looked at the market place versions of OpenVpn and I cannot get it to work with our Cisco Gateway. I got stuck at the tun and adb part, so not sure what I need to do at this point so though I would ask the experts on here ;-) There has been much work on a very important missing part which was a user authentication proxy, so the next bit for me would be a means of connecting to an IPSec/UDP Cisco VPN Gateway that works with my Domain username and then a fob generated password.
Any help from you guys would be most appreciated and perhaps I can share my ASProxy configuration for anyone wishing to get their's working....
Thanks
Avalon
Hi,
you can't use an OpenVPN client to connect to a Cisco (IPsec) VPN server.
If you want to connect to an OpenVPN server then you can use OpenVPN Installer and OpenVPN Settings from the market.
If you want to connect to an IPsec server then use the built-in android VPN client or even some proprietary Cisco client from the market... (don't know about these as I only use OpenVPN)
Hi, thanks for the reply, however the built in VPN client will not work with our server. There is a Cisco anyconnect client that does connect, but we need a license for it which we dont currently have.
I will keep trying....