[Q] Android devices cannot connect to Windows' PPTP VPN service - General Questions and Answers

I own a few Android devices (an Android 2.3 mobile, an Android 4.0.4 tablet, and an Android 4.1.1 tablet). All of them cannot connect to a PPTP VPN server (it's Windows Server 2008 based, using MS CHAP2 for authentication) with MPPE (PPP encryption) option selected in the client side. Even that a device was rooted and VPNroot (the latest version) is used, the connection still fails. From the log of VPNroot, the error log is "MPPE required but peer negotiation failed". However, if the MPPE option is deselected, devices can connect the PPTP VPN server. Besides, the same can be connected from Windows XP & Windows 7 (with MPPE option enabled).
Due to security issue, I have to connect the PPTP VPN service with MPPE. It makes me unhappy as I cannot use a new tablet due to VPN connection problem. What can I do?

daemongmong said:
I own a few Android devices (an Android 2.3 mobile, an Android 4.0.4 tablet, and an Android 4.1.1 tablet). All of them cannot connect to a PPTP VPN server (it's Windows Server 2008 based, using MS CHAP2 for authentication) with MPPE (PPP encryption) option selected in the client side. Even that a device was rooted and VPNroot (the latest version) is used, the connection still fails. From the log of VPNroot, the error log is "MPPE required but peer negotiation failed". However, if the MPPE option is deselected, devices can connect the PPTP VPN server. Besides, the same can be connected from Windows XP & Windows 7 (with MPPE option enabled).
Due to security issue, I have to connect the PPTP VPN service with MPPE. It makes me unhappy as I cannot use a new tablet due to VPN connection problem. What can I do?
Click to expand...
Click to collapse
VPNroot log attached:
Code:
Connecting to xxxxx port 1723 via wlan0
Connection established (socket = 14)
Sending SCCRQ
Received SCCRP -> Sending OCRQ (local = xxxxx)
Tunnel established
Received OCRQ (remote = xxxxx)
Session established
Creating PPPoX socket
Starting pppd (pppox = 15)
Pppd started (pid = xxxxx)
Using PPPoX (socket = 15)
using channel 3
Using interface ppp100
Connect: ppp100 <-->
Received SLI
MPPE required but peer negotiation failed
Discard non-LCP packet when LCP not open
Discard non-LCP packet when LCP not open
Received SLI
Connection terminated
Received signal 17
Pppd is terminated (status = 10)
Mtpd is terminated (status = 42)

Have you tried open vpn? Cheap vpn service ive been using is http://xtreamvpnworld.blogspot.com
Sent from my WT19i using xda premium

Related

Mobile VPN

Hello,
is anybody have a idea how can be used this mobile vpn technology:
technical overview:
h-ttp://msdn.microsoft.com/en-us/library/cc440255.aspx
VPN Architecture:
h-ttp://msdn.microsoft.com/en-us/library/cc440248.aspx
all files described in architecture are present on WM 6.5,
but i did not found a way to configure vpn.
best regards!
start -settings - connections - connections - add a new vpn connection
tonyblack said:
start -settings - connections - connections - add a new vpn connection
Click to expand...
Click to collapse
there is 2 type of VPN that can be added
pptp
l2tp/ipsec
pptp is working fine, but when is disconnected / not by me / it is not reconnect automaticly.
l2tp/ipsec not working, ipsec session is up, l2tp is up, but lcp session on ppp fail.
acording to this article wm 6 does not support l2tp/ipsec:
h-ttp://msdn.microsoft.com/en-us/library/aa918540.aspx
this two types of vpn pptp and l2tp/ipsec does not apply to "Mobile VPN"
technology (h-ttp://msdn.microsoft.com/en-us/library/cc440255.aspx).
there is a program called "ipsecvpnapp.exe" that represent "IPsec VPN User Interface " acording to this article:h-ttp://msdn.microsoft.com/en-us/library/cc440248.aspx,
but nothing is happening when this program get started...

[Q] adding a dns host record for an android device

I'm running android-x86 in vbox on a Windows network in bridged mode. The device and all other computers are on the same network - 192.168.2.x. I have a router performing dhcp service and giving out the dns server ip address. A Windows 2008 server provides the dns services.
The android device can ping and nslookup all the other machines on the network. The other machines (all windows) can connect to the android device using its ip address.
I'd like to have a host record at the dns server so that the other computers on the network can connect to the android device using its name - "android-1", for instance, rather than 192.168.2.40.
Can anyone tell me how to make this happen?
Thanks.
Will

[Q] VPN Connection Problem - KatKiss .029

First off, I just started using this rom last month, but my old TF101 is like a new tablet. Outstanding work!
I am having an issue connecting to a VPN using the built-in android VPN settings. The VPN server is a simple PPTP VPN running on a Win 7 system, setup through the "Incoming Connections" dialog. Earlier today, the tablet was able to connect to the VPN server no problem; however, it randomly stopped connecting this evening.
When connecting to the VPN, the built-in app starts sitting at "Connecting..." until it changes to "Disconnected". The server is setup correctly and still running as a Win 7 laptop is still able to connect without a hitch using the same wifi connection as the tablet. I also tried clearing cache/Dalvik and fixing permissions to no avail.
The problem might not be specific to this device/rom/android version since a gingerbread phone is also having a similar issue using 3g or wifi. The phone was able to connect earlier in the week but stopped connecting a few days ago. I have pasted the relevant section of the aLogcat log of the tablet below to shed some light on the subject. Can anyone give any input on why this issue might have just started cropping up?
I/mtpd ( 4222): Using protocol pptp
I/mtpd ( 4222): Connecting to ***.***.***.*** port 1723 via wlan0
I/mtpd ( 4222): Connection established (socket = 11)
D/mtpd ( 4222): Sending SCCRQ
D/mtpd ( 4222): Received SCCRP -> Sending OCRQ (local = 20020)
I/mtpd ( 4222): Tunnel established
D/mtpd ( 4222): Received OCRQ (remote = 63187)
I/h mtpd ( 4222): Session established
I/mtpd ( 4222): Creating PPPoX socket
I/mtpd ( 4222): Starting pppd (pppox = 12)
I/mtpd ( 4222): Pppd started (pid = 4223)
I/pppd ( 4223): Using PPPoX (socket = 12)
D/pppd ( 4223): using channel 2
I/pppd ( 4223): Using interface ppp0
I/pppd ( 4223): Connect: ppp0 <-->
D/EthernetService( 752): interfaceAdded: ppp0
D/EthernetService( 752): addInterface: ppp0
D/EthernetService( 752): addInterface: I cannot manage ppp0
D/EthernetService( 752): interfaceLinkStateChanged for ppp0, up = false
l3py said:
First off, I just started using this rom last month, but my old TF101 is like a new tablet. Outstanding work!
I am having an issue connecting to a VPN using the built-in android VPN settings. The VPN server is a simple PPTP VPN running on a Win 7 system, setup through the "Incoming Connections" dialog. Earlier today, the tablet was able to connect to the VPN server no problem; however, it randomly stopped connecting this evening.
When connecting to the VPN, the built-in app starts sitting at "Connecting..." until it changes to "Disconnected". The server is setup correctly and still running as a Win 7 laptop is still able to connect without a hitch using the same wifi connection as the tablet. I also tried clearing cache/Dalvik and fixing permissions to no avail.
The problem might not be specific to this device/rom/android version since a gingerbread phone is also having a similar issue using 3g or wifi. The phone was able to connect earlier in the week but stopped connecting a few days ago. I have pasted the relevant section of the aLogcat log of the tablet below to shed some light on the subject. Can anyone give any input on why this issue might have just started cropping up?
I/mtpd ( 4222): Using protocol pptp
I/mtpd ( 4222): Connecting to ***.***.***.*** port 1723 via wlan0
I/mtpd ( 4222): Connection established (socket = 11)
D/mtpd ( 4222): Sending SCCRQ
D/mtpd ( 4222): Received SCCRP -> Sending OCRQ (local = 20020)
I/mtpd ( 4222): Tunnel established
D/mtpd ( 4222): Received OCRQ (remote = 63187)
I/h mtpd ( 4222): Session established
I/mtpd ( 4222): Creating PPPoX socket
I/mtpd ( 4222): Starting pppd (pppox = 12)
I/mtpd ( 4222): Pppd started (pid = 4223)
I/pppd ( 4223): Using PPPoX (socket = 12)
D/pppd ( 4223): using channel 2
I/pppd ( 4223): Using interface ppp0
I/pppd ( 4223): Connect: ppp0 <-->
D/EthernetService( 752): interfaceAdded: ppp0
D/EthernetService( 752): addInterface: ppp0
D/EthernetService( 752): addInterface: I cannot manage ppp0
D/EthernetService( 752): interfaceLinkStateChanged for ppp0, up = false
Click to expand...
Click to collapse
I can confirm I have the same issue. 4.3 rom was fine, 4.4 is not connecting. Definitely not a issue with the vpn or details as I have tested on my phone and pc.

Wifi Internet Repeater (Relay or Extender) and Router for Android

My Samsung SM-T350 Galaxy Tab A running 6.0.1 (BPI2) has two wifi radios (2.4GHz and 5GHz). I can view the radios (wlan0 and wlan1) in the console by using commands ifconfig -a or netstat. Is there an Android app that relays the active internet connection (in my case, wlan0 was connected and assigned an IP address) to the unused radio (wlan1 was not being used).
When my iPad was jailbroken, I commonly used MyWi (available on Cydia) to perform this function. MyWi would share whatever connection available on the first wifi radio (usually 2.4GHz) to the unused wifi radio, using WPA2 security and generating DCHP IP addresses for the connected devices. MyWi had more flexibility: if the iPad was connected using wlan0 (assigned a local IP address) and connected to a VPN (assigned a remote IP address), MyWi could either share the local connection (wlan0) or the remote connection (ppp) over the second radio wlan1. Or it could share the selected connection through USB or Bluetooth. There is also a Windows equivalent that works equally as well called Connectify.
I lost my iPad jailbreak due to a repair and I need to replace MyWi in the meantime. It seems this should be straightfoward on the Android.
I got a dual-radio (2.4GHz and 5GHz) iOS device running 9.3.3 jailbroken and running MyWi. Seems a shame that this utility is not available on the Android platform, but easily obtainable with Windows (Connectify), Linux (various tools), jailbroken iOS (MyWi), but not rooted Android. Certainly there are toolsets that can achieve this?
Fq.router supposedly does wifi repeating, but I don't know if it uses cross-band communications (single band repeating kills WiFi performance)

Android 11 'couldn't connect to network' NPS with PEAP/MS-CHAPv2

Hi All,
I am trying to connect company-owned / unmanaged Android 11 devices to a Cisco WAP SSID using our public certificate wireless.fqdn
For my Galaxy A20 Android 11 phone , when connecting the SSID the phone returns:
'couldn't connect to network'
'couldn't authenticate connection'
On the NPS Server, the wireless.fqdn certificate is installed in the Certificates (Local Computer) Personal / Certificates container
We are using Windows NPS/PEAP/MS-CHAPv2 which I believe requires a certificate on the server-side only
I belive PEAP encapsulates the EAP type MS-CHAPv2 authentication in a secure TLS tunnel.
As a further configuration item, I installed the wwireless.fqdn certificate into the cert store on my Android device (User certificates, installed for WiFi)
NPS / RADIUS Server is Windows Server 2016 Datacenter
NPS Role installed with the following Windows NPS Policy
Connection Request Policy:
Wireless connections, NAS Port Type: wireless - other or wireless IEEE 802.11
Network Policy: Staff
CONDITIONS:
Wireless - Other OR Wireless IEEE 802.11
Windows Groups: ADDSGroup
Calling Station ID: ^[^:]+:SSID$
CONSTRAINTS:
EAP TypesMicrosoft: Protected EAP (PEAP)
Edit / certificate issued to: wireless.fqdn
Issuer: DigiCert TLS RSA SHA256 2020 CA1
Enable Fast Reconnect
EAP Type:
Seure password (EAP-MSCHAP v2)
Android 11:
I got into settings / biometrics and security
Other security settings
PFX user certificates: wireless.fqdn installed for WiFi (contains root/intermediate/cert chain)
View security certificates / system / CA root
No user certificates
Click the WiFI SSID / manage
EAP method: PEAP
Enter identity / password
CA certificate: Use system certificates (if I choose 'select certificate' there is nothing to select, android stated in a red color "CA certificate must be selected")
Online certificate status: don't validate
Domain: wireless.fqdn
When connecting to the SSID the phone returns:
'couldn't connect to network'
'couldn't authenticate connection'
MAC of Android phone not in NPS logs
Hope someone with more experience can assist.
Thanks!

Categories

Resources