?
Solved

Mobile VPN IPSEC Watchguard UTM for IOS Devices

Posted on 2016-11-16
4
Medium Priority
?
136 Views
Last Modified: 2016-11-26
I have a XTM535 and I tried to setup a mobile Ipsec tunnel to replace the not longer supported PPTP tunnel for IOS 10 for my Ipad but even when I see the user connected I can not reach any machines in the network and when I go to the WSM there are not packages sent.

My config is
Phase 1 SHA1 and 3DES, key group 2
Phase 2 SH1 and 3DES without PFSCapture.PNGForce al traffic to any-external and 0.0.0.0/0
0
Comment
Question by:tonzur40
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 41894692
Have you configured a policy which would allow traffic from remote client to protected resources; something like below:
from mvpn-users; to trusted or specific resources

Please check and update.

Thank you!
0
 

Author Comment

by:tonzur40
ID: 41898196
Yes I did

Thanks
Capture.PNG
0
 
LVL 32

Accepted Solution

by:
dpk_wal earned 2000 total points
ID: 41898707
In the policy am assuming the user in question is part of the ipsecgroup. If implementing default route tunnel, the remote user should have internet connectivity.
If you want this user to have access to machines on the trusted interfaces, then add any-trusted as well.

Thank you!
0
 

Author Closing Comment

by:tonzur40
ID: 41902682
In a second review after reading your post I noticed the user was not added to the ipsecgroup

Thanks a lot
0

Featured Post

Bringing Advanced Authentication to the SMB Market

WatchGuard announces the acquisition of advanced authentication provider, Datablink, with one mission – to bring secure authentication to SMB, mid-market, and distributed enterprises with a cloud-based solution, ideal for resale via their established channel & MSSP community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ensuring effective and secure communication in the age of healthcare BYOD.
Ransomware is a growing menace to anyone using a computer or mobile device. Here are answers to some common questions about this vicious new form of malware.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question