[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Mobile VPN IPSEC Watchguard UTM for IOS Devices

Posted on 2016-11-16
4
Medium Priority
?
171 Views
Last Modified: 2016-11-26
I have a XTM535 and I tried to setup a mobile Ipsec tunnel to replace the not longer supported PPTP tunnel for IOS 10 for my Ipad but even when I see the user connected I can not reach any machines in the network and when I go to the WSM there are not packages sent.

My config is
Phase 1 SHA1 and 3DES, key group 2
Phase 2 SH1 and 3DES without PFSCapture.PNGForce al traffic to any-external and 0.0.0.0/0
0
Comment
Question by:tonzur40
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 41894692
Have you configured a policy which would allow traffic from remote client to protected resources; something like below:
from mvpn-users; to trusted or specific resources

Please check and update.

Thank you!
0
 

Author Comment

by:tonzur40
ID: 41898196
Yes I did

Thanks
Capture.PNG
0
 
LVL 32

Accepted Solution

by:
dpk_wal earned 2000 total points
ID: 41898707
In the policy am assuming the user in question is part of the ipsecgroup. If implementing default route tunnel, the remote user should have internet connectivity.
If you want this user to have access to machines on the trusted interfaces, then add any-trusted as well.

Thank you!
0
 

Author Closing Comment

by:tonzur40
ID: 41902682
In a second review after reading your post I noticed the user was not added to the ipsecgroup

Thanks a lot
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Mobile app development companies have absolutely changed the ways apps are being browsed, used and downloaded by users today.
If you are a mobile app developer and especially develop hybrid mobile apps then these 4 mistakes you must avoid for hybrid app development to be the more genuine app developer.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question