It should be called IPsuc..

red-beard · red-beard's Garage

Time suck. Only about 20 hours to get the clients configured and working...

But I now have the laptops and the Android tablets on IPsec VPNs

HardDrive · 08-28-2014, 04:53 PM

How many clients? MSFT environment?

red-beard · red-beard's Garage

2 different clients:

NPC for the Android phones/tablets VPN IPsec client

Netgear (Greenbow) Windows VPN IPsec client

Once the configuration is working, installing on the laptops and tablets is a snap...

stealthn · 08-28-2014, 05:10 PM

Should have bought a Mac

red-beard · red-beard's Garage

Yeah. THAT is the problem...

masraum · 08-28-2014, 05:45 PM

i love IPSec. Not a fan of SSL. But then my experience is all on Cisco routers and firewalls. I've got IPSec set ip on a cisco ASA at the house.

I'm sure Mikester will be along any minute.

stealthn · 08-28-2014, 05:53 PM

Sorry I've just never had that much of an issue, it is a standard, it's just his some companies deviate that causes issues.

That being said it's always best to contact the vendor and get their configs as it's usually been done before.

red-beard · red-beard's Garage

Part of the problem, the NPC client can't be configured in the Android environment. You install the windows client on a PC. Get it up and running, then save the config file. this is then copied to the Android.

It is the only IPsec client working on Android with the Netgear Routers.

red-beard · red-beard's Garage

I haven't been an IT professional since 1983...

masraum · 08-28-2014, 07:44 PM

Quote:

Originally Posted by red-beard

Part of the problem, the NPC client can't be configured in the Android environment. You install the windows client on a PC. Get it up and running, then save the config file. this is then copied to the Android.

It is the only IPsec client working on Android with the Netgear Routers.

Ah, I was wondering. My Android phone has an IPSec client built in, and it worked great with my Cisco.

mikester · 08-28-2014, 09:02 PM

Here I am!

Yep. I'm the VPN guy, well sort of... But James knows this and isn't using anything from Cisco for some reason.

Personally I dig SSL and have had a ton of success with it over the years.

masraum · 08-28-2014, 09:05 PM

Quote:

Originally Posted by mikester

Here I am!

Yep. I'm the VPN guy, well sort of... But James knows this and isn't using anything from Cisco for some reason.

I suspect it may be the price. Cisco is not exactly the Honda or Chevy of the networking world.

Quote:

Personally I dig SSL and have had a ton of success with it over the years.

I think the problem is that my fw is still on a 7. code and won't do anything too advanced. When I do VPN, I want a tunnel, not a webpage.

mikester · 08-28-2014, 09:47 PM

Dude, 7.x code? Are you running a museum?

red-beard · red-beard's Garage

Quote:

Originally Posted by masraum

Ah, I was wondering. My Android phone has an IPSec client built in, and it worked great with my Cisco.

Is that the L2TP/IPsec setup? The Netgear router has an L2TP server, but not a lot of direction on it's use.

Dammit Jim! I'm an Engineer not a Network Specialist!

mikester · 08-29-2014, 06:58 AM

So you're doing L2TP/IPSec or just L2TP?

id10t · 08-29-2014, 07:02 AM

Too lazy to set up a VPN... I just use SSH tunnels, or a remote X based application over SSH.

red-beard · red-beard's Garage

I'm doing straight IPsec. The Android devices have a combo L2TP/IPsec VPN function. They also have a PPTP function, but that quit working with my router after Honeycomb (Android 3.x).

I was using the PPTP server function for one of my remote workers, but it was unstable and would cause the router to reset a few times a day. So, I endeavored to persevere.

I setup an IPsec client Policy and then worked on configuring the windows client. After that, I worked on configuring the NCP client.

I used to buy "Cisco" stuff. But the "consumer" level stuff would quit working after about a year. And the "Cisco" VPN router I had would not work with my VOIP phone system. I am sure the commercial stuff works fine. But it is pretty darn expensive.

Of course, 20 hours at $150-200/hr is pretty expensive too!

masraum · 08-29-2014, 08:59 AM

Quote:

Originally Posted by red-beard

Is that the L2TP/IPsec setup? The Netgear router has an L2TP server, but not a lot of direction on it's use.

Dammit Jim! I'm an Engineer not a Network Specialist!

For my profile, I have an "IPSec Xauth PSK" profile set up.That's essentially a standard IPSec client.