Solved

Mobile VPN IPSEC Watchguard UTM for IOS Devices

Posted on 2016-11-16
4
114 Views
Last Modified: 2016-11-26
I have a XTM535 and I tried to setup a mobile Ipsec tunnel to replace the not longer supported PPTP tunnel for IOS 10 for my Ipad but even when I see the user connected I can not reach any machines in the network and when I go to the WSM there are not packages sent.

My config is
Phase 1 SHA1 and 3DES, key group 2
Phase 2 SH1 and 3DES without PFSCapture.PNGForce al traffic to any-external and 0.0.0.0/0
0
Comment
Question by:tonzur40
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 32

Expert Comment

by:dpk_wal
ID: 41894692
Have you configured a policy which would allow traffic from remote client to protected resources; something like below:
from mvpn-users; to trusted or specific resources

Please check and update.

Thank you!
0
 

Author Comment

by:tonzur40
ID: 41898196
Yes I did

Thanks
Capture.PNG
0
 
LVL 32

Accepted Solution

by:
dpk_wal earned 500 total points
ID: 41898707
In the policy am assuming the user in question is part of the ipsecgroup. If implementing default route tunnel, the remote user should have internet connectivity.
If you want this user to have access to machines on the trusted interfaces, then add any-trusted as well.

Thank you!
0
 

Author Closing Comment

by:tonzur40
ID: 41902682
In a second review after reading your post I noticed the user was not added to the ipsecgroup

Thanks a lot
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Problem to App 4 123
IPSec Site to Site VPN Topology 6 72
Mobile apps - web/native or hybrid? 1 78
What is the new whtasapp feature 2 27
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Mobile app development companies have absolutely changed the ways apps are being browsed, used and downloaded by users today.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question