Hi,
I had a wild idea... is it possible to run Cisco Anyconnect within a chroot Ubuntu install and then setup the andrioid side of things to route all its IP traffic through to Ubuntu... and then out through the secure tunnel (and vice versa)? Essentially using the chroot Ubuntu as a proxy server for incoming/outgoing vpn traffic.
It seams like this could be quite a light weight solution, or even have vpnc running inside a stripped down lightweight (non-gui) ubuntu.
I'm guessing this might work if NAT is allowed by the vpn server, but I have no idea how to go about doing it... iptable manipulation on both the the ubuntu and android side of things I guess. This all assumes that ubuntu is trully being multitasked and not suspended.... sorry bit of a new comer to android so not entirely sure how it all works yet.
As I say, a wild idea.... no cisco vpn support is a bit of a show stopper for my xoom adoption (note I spent a couple of days trying to get vpnc running but it dies with library issues).
I was under the impression that OpenVPN connected to Cisco Anyconnect devices. If so, someone has that working already:
http://forum.xda-developers.com/showthread.php?t=972550&highlight=vpn
Cisco IPSEC VPNs are still not working, the tun.ko module in the above link either doesn't work with VPNConnections or VPNConnections doesn't work with the Xoom.
Thanks for the reply!
Yep, I installed OpenVPN and the tun.ko on Saturday... then I hit a brick wall working out how to configure openvpn for my coropoate VPN. I use Cisco AnyConnect on both Linux and Windows to connect to their radius server. My iPhone connects just fine as well.... over IPSEC __with__ a group id.
After doing quite a bit of web searching I came to the conclusion that OpenVPN doesn't work well with Cisco VPN?!? Hence the reason I was looking at vpnc and subsequently wondering about the chrooted linux vpn bridge type solution.
rinsewin said:
Thanks for the reply!
Yep, I installed OpenVPN and the tun.ko on Saturday... then I hit a brick wall working out how to configure openvpn for my coropoate VPN. I use Cisco AnyConnect on both Linux and Windows to connect to their radius server. My iPhone connects just fine as well.... over IPSEC __with__ a group id.
After doing quite a bit of web searching I came to the conclusion that OpenVPN doesn't work well with Cisco VPN?!? Hence the reason I was looking at vpnc and subsequently wondering about the chrooted linux vpn bridge type solution.
Click to expand...
Click to collapse
I've gotten OpenVPN to work on my Motorola Droid using VPN connections and a Cisco VPN. You just have to get the configuration settings right but it will work.
Just thought I'd share....
My idea definitely won't work for cisco anyconnect since it is compiled for i386.... kind of stupid of me not to think that one through .
I tried running vpnc in a chroot ubuntu on the xoom and apparently the tun device can't be found. I did an apt-get on openvpn and I see "tun" referenced in various places but for some reason it just isn't setup correcting doing apt-get install in this ubuntu image.
So, unfortunately I think I'll be flashing my poor little xoom back to stock and taking it back :-(. Really wanted to keep this little guy, with all its future potential but with no _easy_ workable cisco vpn solution... and no solid plans (i.e. date!) from google/cisco for supporting IPSEC vpn (with group id) out of the box my dreams of a thin client in meetings are dead. Looks like an iPAD 2 is my best bet, definitely not my first choice but oh well the android is what it is.
Carl C.
rinsewin said:
Just thought I'd share....
My idea definitely won't work for cisco anyconnect since it is compiled for i386.... kind of stupid of me not to think that one through .
I tried running vpnc in a chroot ubuntu on the xoom and apparently the tun device can't be found. I did an apt-get on openvpn and I see "tun" referenced in various places but for some reason it just isn't setup correcting doing apt-get install in this ubuntu image.
So, unfortunately I think I'll be flashing my poor little xoom back to stock and taking it back :-(. Really wanted to keep this little guy, with all its future potential but with no _easy_ workable cisco vpn solution... and no solid plans (i.e. date!) from google/cisco for supporting IPSEC vpn (with group id) out of the box my dreams of a thin client in meetings are dead. Looks like an iPAD 2 is my best bet, definitely not my first choice but oh well the android is what it is.
Carl C.
Click to expand...
Click to collapse
Look up ssh tunneling, you could do like you wanted in the first post really easily I bet. The ssh command can be run to tunnel any port or ports you want through another machine very easily. I don't have the setup on hand, but googling ssh tunnel should be enough to get you going.
Related
So I now have a rooted RC33 and the handy little command line ssh (as well as connectbot). Now the only thing I need is a vpn client.
Certainly vpn clients exist for linux, so it should be possible to compile one to work on the G1, no?
I'm looking for a vpn client that works with the cisco vpn 3000 endpoint. Not sure of the details beyond that.
Can anyone point me in the right direction?
UPDATE: did some further poking around. I think what I want is a command-line linux ipsec vpn client that could be compiled to run on the g1. If I could find some open-source client and figure out how to build it for the g1, that would be great Who can point me to a tutorial for that?
Oh, I see that someone smarter than I is working on it:
http://groups.google.com/group/android-platform/browse_thread/thread/3beb70c46d237bd5
HI to all
I am looking for a working VPN Client (the Iphone has one which is working) to connect my Touch Cruise to the intranet of my firm.
I read that NCP has one, but it is quite expensive ...
is there any other solucion?
For free?
Shrew is working fine on my laptop, but y would like to check something out of mi WinMo Polaris.
I actually am using WinMo 6.1 but if necessary I also could change to 6.5
Thanks
Isidar
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
you can use hamachi-0.0.3.1
http://rapidshare.com/files/83751409/hamachi-0.0.3.1.rar (for your mobile)
https://secure.logmein.com/products/hamachi/list.asp (for your pc)
clmbngbkng said:
OpenVPN has a free client for WinMo but I don't know if it will work for your VPN, give it a shot.
Click to expand...
Click to collapse
i think openvpn is not compatible with cisco vpn since cisco uses ipsec and openvpn uses a simply tunnel created on udp port 1194 (no need for gre,ike,or pptp port's/protocols open).
it's much simpier but work very well and just with the p12 certificate (ok my certificate is 2048bit so i think it is minimally secure, nothing like a dynamic generated rsa key but even better than just a ssh tunnel or something like).
Back in the days of Windows Mobile 2003 I used to use "MovianVPN" to connect to my university network. The software is now superseded by AnthaVPN (www.anthasoft.com). It is designed for Windows Mobile 5 and they have no mention of WM6 compatibility, but I think its worth a shot.
I also read about another product called "Bluefire VPN", but I can't seem to find it online at the moment.
Edit: The above solutions are not free, but the price might be refundable by your company.
Cisco AnyConnect for Pocket PC
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
The Cisco device at the other end has to be setup for SSL VPN otherwise Anyconnect does not work. This is somewhat new and SSL VPN licenses are expensive.
Personally I use AnthaVPN on my HTC Touch (WinMo 6.1 Pro) and it works great with our IPSec Cisco VPN (the old way since we're too cheap to buy the licenses for the SSL VPN).
EDIT: And if your company is setup for SSL VPN, you should not need to download a client. Your admin should give you a website and it connects to the router/firewall/VPN concentrator and downloads the proper client for you. Better than going to some random site to download something.
The integrated L2TP/IPSec client?
I have posted previously on here about VPN clients and Cisco Routers & Firewalls. The integrated L2TP/IPSec client works with both Cisco PIX/ASA Firewalls as well as IOS Routers - it is dependant on how these are configured though. I posted two configurations from PIX 6.3(5) and PIX 7.2(4) - both of which I had working. It seems there are some limitations when setting up groups however my testing didn't include this.
http://forum.xda-developers.com/showthread.php?t=444948&highlight=Cisco
I was going to test the Group issues someone reported but never got around to it - I have a full-time job as well
Andy
Shawn Botha said:
There is an application from Cisco itself that you can download and try.
It's based an Cisco's new Anyconnect module
anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
http://cisco.quanza.net/anyconnect-wince-ARMv4I-activesync-2.3.2016-k9.msi
The website http://www.tycoon.mxm.cx/ has a couple of VPN software apps for all OS
Click to expand...
Click to collapse
Cisco nice good work,try it with my Dopod and router working.
thank you guys to put the links.
AnyConnect Secure Mobility Client 2.5
Hi guys
Could anyone post the link for Cisco AnyConnect Secure Mobility Client 2.5 as it is one of the only vpn client solutions having WM6.5 and Cisco routers work together
Could you propose any other solution for WM6.5 and Group authentication cisco servers
Thanks
I have just downloaded the AnyConnect Secure Mobility Client, v2.5 and it works a treat thanks for this post, it was released in Aug and works with 6.5
Please note, i legally have a CCO account and valid service contracts for Cisco ASA and VPN gateways.
To the previous poster, please buy relevant CCO access to download.
Just picked up a G1, nice condition cheap and looking to get openvpn running on it.
The howtos are sparse however, not to mention vague.
I rooted the phone and I'm just running a 1.6 rooted rom, I don't need froyo right now.
The firewall on the asterisk server only allows connections from a local network and an openvpn server ip's so I really need to get a openvpn client installed.
Can anybody point me in the right direction to get openvpn running with a tap interface?
Much appreciated.
Bumppp, Nobody?
Hi all,
I have been tinkering with connectivity into my corporate network and so far been able to get a connection to our Office Communicator server via ASProxy and a secure wireless connection. However I am looking for a solution that works across my 3G connection via a VPN.
I have looked at the market place versions of OpenVpn and I cannot get it to work with our Cisco Gateway. I got stuck at the tun and adb part, so not sure what I need to do at this point so though I would ask the experts on here ;-) There has been much work on a very important missing part which was a user authentication proxy, so the next bit for me would be a means of connecting to an IPSec/UDP Cisco VPN Gateway that works with my Domain username and then a fob generated password.
Any help from you guys would be most appreciated and perhaps I can share my ASProxy configuration for anyone wishing to get their's working....
Thanks
Avalon
Hi,
you can't use an OpenVPN client to connect to a Cisco (IPsec) VPN server.
If you want to connect to an OpenVPN server then you can use OpenVPN Installer and OpenVPN Settings from the market.
If you want to connect to an IPsec server then use the built-in android VPN client or even some proprietary Cisco client from the market... (don't know about these as I only use OpenVPN)
Hi, thanks for the reply, however the built in VPN client will not work with our server. There is a Cisco anyconnect client that does connect, but we need a license for it which we dont currently have.
I will keep trying....
I know this bug was filed in April 2011:
http://code.google.com/p/cyanogenmod/issues/detail?id=3353
As far as I know, VPN has never worked on the Nook Color. I know there has been new splash screens or pretty wallpapers added, but I don't know of anything changed with VPN. I can watch anime and play video games, but I can never connect to my office to work on a server.
CyanogenMod 7.0, 7.1, 7.2: try to connect to VPN = hard lock.
CyanogenMod 9.0: try to connect to VPN = always fails.
PPTP or L2TP, it's always the same.
I'm guessing when CyanogenMod 10 comes out, VPN will still not work.
Is there any build of any version of Android that works on the Nook Color that allows for a VPN connection to be established?
It's the same with my HP TouchPad. VPN always fails.
BitingChaos said:
I know this bug was filed in April 2011:
http://code.google.com/p/cyanogenmod/issues/detail?id=3353
As far as I know, VPN has never worked on the Nook Color. I know there has been new splash screens or pretty wallpapers added, but I don't know of anything changed with VPN. I can watch anime and play video games, but I can never connect to my office to work on a server.
Click to expand...
Click to collapse
Are you stuck with VPN and cannot use an SSH client like ConnectBot?
stolenmoment said:
Are you stuck with VPN and cannot use an SSH client like ConnectBot?
Click to expand...
Click to collapse
I've never thought of myself "stuck" with VPN. I just click "connect" and it works. Usually.
Windows - connects to our L2TP and Cisco IPSec devices.
Mac OS X - connects to our L2TP and Cisco IPSec devices.
iOS - connects to our L2TP and Cisco IPSec devices.
Android (Nook Color, HP TouchPad) - no connection possible!
I use iTap/RDP, iTeleport/VNC, and local Intranet web pages.
All those work over SSH?
I didn't intend "stuck" to be pejorative, but lots of places (like where I work) offer both VPN and SSH access.
As for services, I use ConnectBot's SSH tunnels for VNC, email, chat, etc.
Sent from my NookColor using xda premium
I've yet to find a build that works with the Cisco AnyConnect client, and I've been trying.
The latest CM7 kang build works with VPNs, udp, tdp, etc. perfectly.
It's already configured in the code to work, but you need to download this:
https://play.google.com/store/apps/details?id=de.schaeuffelhut.android.openvpn&hl=en
"openvpn settings" for a quick and easy vpn connect