Hello all, I've just got a SM-G920F, Android 5.1.1 (kernel 3.10.61-5012324), and I am experiencing a problem with VPN connect to a Linux box that is running libreswan. This box works wonders with an iphone 5 and a Nexus 7. With the S6 i can track the pluto activity on the server and phase 1 and 2 correctly done, but after the IP assignment the l2tpd never gets called, and after a while the phone signals connection failed. Any idea about this beahviour? Suggestions about what to analyze in logcat ?
regards
Mat
Hi Matt,
I am running a SM-G925F, Android 5.1.1 (kernel 3.10.61-5012324) - the same as you, and having the same problems.
I cannot connect to a Draytek 2925 running a VPN server. Again still able to connect happily to same sever using say an SM-G900F running 5.0 - very weird. Seems to be failing as you point out at phase 2 before / after the IP assignment.
Anyone else seeing same problems with 5.1.1 and L2TP/Ipsec?
new update with new Kernel build, still VPN not working... Samsung, WAKE UP!!! (3.10.61-5599585)
Have you tried a different VPN client?
krelvinaz said:
Have you tried a different VPN client?
Click to expand...
Click to collapse
open VPN works but I was trying to have the native l2tp ipsec working
maXTeo said:
new update with new Kernel build, still VPN not working... Samsung, WAKE UP!!! (3.10.61-5599585)
Click to expand...
Click to collapse
Inviato dal mio SM-G920F utilizzando Tapatalk
Related
Is anyone having problem connecting to vpn with transformer? My iphone can connect on the same wifi network, so it may not be the firewall or port forward issue. Any clue? Getting error -server hungup.
golam1 said:
Is anyone having problem connecting to vpn with transformer? My iphone can connect on the same wifi network, so it may not be the firewall or port forward issue. Any clue? Getting error -server hungup.
Click to expand...
Click to collapse
I have several PPTP connections setup and working on my Transformer. In order for people here to help, you'll probably need to provide more details:
What type of VPN connection is giving you trouble? PPTP, L2TP, IPSEC?
What type of firewall or device are you trying to connect to? SonicWall, Watchguard, pfSense, etc
What is the verbatim error message you are getting? is it really just "server hungup"?
Can you provide any log files from the VPN server that you are trying to connect to that shows where the failure is?
I've tried both on PPTP and L2TP. The exact wording of the error message is 'Server hung up. The username and password you entered could be incorrect'. The same configuration works on my iphone and 2 other computers on the same wifi network.
Unfortunately, without being able to see log files from the device you are trying to connect to I could only make a wild guess as to what is happening.
The problem I find most frequently with PPTP connections is comming up with a combination of authentication and encryption protocols that are supported on both the client and host.
The only thing I could suggest would be to try changing some of the encryption options at both ends of the connection and see what happens.
Android dosen't support MSCHAP on PPTP, said in a different way, dosen't support encryption. Also it's a very recent issue, it's been there only since 1.6
Get encryption disabled on the server and everything will be alright. Lol.
(sarcasm: VPN support has been added in 1.6)
Sent from my GT-P1000 using Tapatalk
i already tried disabling encryption...didn't work. How do I get the log? Sorry if I sound novice.
golam1 said:
i already tried disabling encryption...didn't work. How do I get the log? Sorry if I sound novice.
Click to expand...
Click to collapse
Disabled on Android or on the server? On Android only it's pointless
Sent from my GT-P1000 using Tapatalk
I use VPN L2PT every day @ starbucks
No Issues
Sent from my Transformer TF101 using xda premium
I use pptp vpn for iphone connectivity it is good and fast
"server hungup" means you have a bad username/password combo
is there a way to clear just the network settings like iphone in Honeycomb without loosing the data?
Ok, maybe it is not related to ics. After installing ics, I lost my vnp connection for the office (maybe because I was not using any lock screen before) I have re-entered my vpn, but now I always get a "timeout" when I try to connect Do any of you who are using vpn's connection also have this issues, or maybe I have something wrong in my vpn settings ?
Anyone with stock firmware ics can confirm vpn is still working ?
Working fine for me, might be your specific vpn?
Sent from my Transformer TF101 using xda premium
Ok thanks. I'll make sure with the technicien here that everything is ok on their side
I had the same problem...the vpn connection settings were erased after ics update.
I created the connection one more time but didn't worked. I deleted that connection also and created another one...with the same details and worked.
Can confirm this issue also. After creating a new connection vpn works like a charm.
L2TP/IPSec PSK vpn is broken for me after upgrade to ICS. Seems to be a known problem with ICS. My colleague's Transformer Prime with ICS also not working with same type of VPN. It was working great with Honeycomb 3.2.1 before upgrade on both devices. I use the tablet for work extensively so this kind of sucks. Everything else is great.
Have a B90 TF101 so can't easily downgrade!
So is it an accurate assessment that L2 VPNs still do not work on ICS, such as solutions from Cisco and Juniper? We had to setup a special L2TP/IPSec PSK for just Android devices, whereas iDevices work just fine with industry standard SSL VPNs. Amazing that Google can't get on board with this. Wondering too if the Exchange cert issues still persist with the default mail client.
Yes. We setup L2TP/IPSec with PSK on a SonicWall firewall that works for both the iDevices and our Android devices. All android devices that upgraded to ICS stopped working. Will try to connect but will timeout trying to establish connection. I can't confirm all other L2TP VPN types but PSK is definitely not functioning.
We've never had any issues with Exchange push on the devices.
I can confirm it.
Today we have tested furthermore.
Everything is ok on the server side and on the client side.
Looking at the firewall, we can see the tf101 establishing a connection, but nothing about phase 2, it's like the server is giving the acknowledge about the PSK, but the TF101 can't hear or is not listening to it.. eventually it goes out with a timeout.
Everything was ok before ics.
where should i post this message, is it enough to be listed here or should a send a support mail to asus ? or google ?
by the way I've tried deleting and recreating, but still not working.
I formatted before and after ics. I would suggest a format first.
Sent from my GT-I9100 using xda premium
is there a solusion for not using a secure lock while using vpn on ics?
Sent from my HTC Sensation Z710e using xda premium
I've done a factory reset too, still the same problem
Alternative Solution
Hello,
This isnt a fix by any means but have you had a look at 2X Application XG Server, it is a little like citrix but a hell of a lot cheaper.
The client is awesome and works perfectly for windows, android and iOS.
It is free if you have a low count of concurrent users, I believe it is 5 concurrent users for free, anyway the link is below;
cant post links guys sorry it is 2x with www and .com in between...
If you need a hand with deployment drop me an email at [email protected] and we can sort something out, not doing the big sell here guys just something we use as a company when we decided to move our customers away from VPN's.
Anyway hope someone finds it useful.
cheers.
Don't know if this will help but i use vpnc widget and 2x client. My system is all cisco, and the only way i could get to it before was with an ipad, which i have since given away for obvious reasons. I have been on revolver for some time now, and just upgraded to 4, with no issues whatsoever - if anything it is more stable!
Works for me, too, but I sure would like to know if anyone has figured out how to disable the screen-lock when credential storage is enabled, as I am using mine for an individual OpenVPN and PPTP vpn and it is just plain irritating.
i've sent technical inquiries to Asus with no response. Very disappointing. I guess they are fixing other issues that have a more broad base of users before they take on things like VPN. I believe this is a general ICS issue as a quick search on Google shows varies reports across different manufacturers who have released ICS and the L2TP VPNs are broken. Several bug reports have been reported to Google. Great way for Google to alienate business users.
Do a Google search with these terms and you see all the references to this problem
"L2TP IPSEC PSK android ics"
I was wondering if anyone out there was using an IPSec Xauth PSK type connection? This is what we have at work. I set up the connection on my TF101, I put in all the correct info, and when I clicked connect it connected; however, there was no data sent or received. I disconnect and try reconnecting, but the connection times out. Before the ICS update I didn't even have this connection option so its a step in the right direction, the only problem is that nothing happens when I connect. Is anyone else having the same problem? Is this a known issue? Thanks in advance for any help you can offer.
x_kain_x said:
I was wondering if anyone out there was using an IPSec Xauth PSK type connection? This is what we have at work. I set up the connection on my TF101, I put in all the correct info, and when I clicked connect it connected; however, there was no data sent or received. I disconnect and try reconnecting, but the connection times out. Before the ICS update I didn't even have this connection option so its a step in the right direction, the only problem is that nothing happens when I connect. Is anyone else having the same problem? Is this a known issue? Thanks in advance for any help you can offer.
Click to expand...
Click to collapse
Works great here. I use the vpnc widget and x2 client as well works a treat since ics update.
vettejock99 said:
Works for me, too, but I sure would like to know if anyone has figured out how to disable the screen-lock when credential storage is enabled, as I am using mine for an individual OpenVPN and PPTP vpn and it is just plain irritating.
Click to expand...
Click to collapse
Grrr... indeed. But I've foud a free app on Market: VpnROOT - PPTP - Manager
karlr30 said:
I've done a factory reset too, still the same problem
Click to expand...
Click to collapse
+1
Edit: Hummm... for me I've found a temporary solution by using another app found on Market: "VpnROOT - PPTP - Manager".
My VPN use PPTP with MPPE encryption so, this one works fine for me.
Anybody test one s with 802.1x?
My schools connection is peap-mschapv2 and my galaxy s (4.0.3) cant connect it,anybody test and connect? Please tell me because i will buy a new phone.
sent from Turkey
My school is using eduroam, also with wpa2 enterprise. And i absolutely know that the galaxy phones work in wpa2 enterprise!
Check your Login-configuration and test it again.
And by the way, my One S also works in our network.
If it helps, thats the howto of our network and i think it would work with your network: https://wiki.hs-mittweida.de/index.php/Eduroam-Einrichtung_unter_Android
i can connect with android 2.3.6 but cant connect with 4.0.3
Here the intsructions
http://www.bim.yildiz.edu.tr/login/sys/admin/subPages/img/YILDIZ-NET Mobil Wi-Fi ANDROID.pdf
sent from Turkey
WPA2 Enterprise works at my uni, even the certificate for the login was already on the device (HTC One S)
I didn't trie the eduroam network but it uses the exact same configuration, so it should work as well.
Maybe you can ask an admin at your school about the certificate the use for authentification
i dont know what i do if it doesnt connect :/,inviting the friends who have one s maybe the solution
sent from Turkey
My school also uses WPA2-enterprise with peap-mschapv2.
My tattoo with 2.3.x can connect to it
My friend iwth galaxy S2 and android 4.0 also CAN connect to it.
So everything should work, check ur settings!
Using 802.1x authentication is working on my device in our office.
Stiflerlv said:
My school also uses WPA2-enterprise with peap-mschapv2.
My tattoo with 2.3.x can connect to it
My friend iwth galaxy S2 and android 4.0 also CAN connect to it.
So everything should work, check ur settings!
Click to expand...
Click to collapse
Can you our your friend send me a PM? Trying to get the US Galaxy S2 (Epic 4G Touch/Sprint) on WEP with PEAP-MSCHAPV2 on 4.0.3 (ICS) and no luck - maybe I missed something?
garwynn said:
Can you our your friend send me a PM? Trying to get the US Galaxy S2 (Epic 4G Touch/Sprint) on WEP with PEAP-MSCHAPV2 on 4.0.3 (ICS) and no luck - maybe I missed something?
Click to expand...
Click to collapse
did you check the certificate? ask your admin which certificate they use for authentification and mail it to your device if its not already installed by default
sk8hawk said:
did you check the certificate? ask your admin which certificate they use for authentification and mail it to your device if its not already installed by default
Click to expand...
Click to collapse
No certs on the network I'm trying to connect to - checked GB to see if maybe one downloads but nothing there.
I have same problem in my S2 with 4.0.
someone can help me please?
i try all suggestions
Forgot to post this here but I have got my particular situation resolved in ICS:
http://forum.xda-developers.com/showthread.php?t=1569348
This should work for most people on similar configurations. If you still have problems go ahead and drop a reply on that thread and I'll keep an eye out to see if I can help further.
I can't connect to VPN in oneplus one.
Other VPN client app works well.
My older phones can connect well.
p.s: I'm in China.
mr.left said:
I can't connect to VPN in oneplus one.
Other VPN client app works well.
My older phones can connect well.
p.s: I'm in China.
Click to expand...
Click to collapse
I'm in China as well so having VPN is a must for me. I have the international version through the official invite program. On cm11s VPN works fine. On cm11, VPN does not work. PA Rom VPN works.
jlevy73 said:
I'm in China as well so having VPN is a must for me. I have the international version through the official invite program. On cm11s VPN works fine. On cm11, VPN does not work. PA Rom VPN works.
Click to expand...
Click to collapse
Mine is the download version cm11s from cyngn.com/products/oneplusone. Original coloros can't use VPN too.
mr.left said:
Mine is the download version cm11s from cyngn.com/products/oneplusone. Original coloros can't use VPN too.
Click to expand...
Click to collapse
Which VPN program are you using? Have you made to sure to set security up so that you need to access you lock screen with either a pin or pattern?
jlevy73 said:
Which VPN program are you using? Have you made to sure to set security up so that you need to access you lock screen with either a pin or pattern?
Click to expand...
Click to collapse
I cannot use the VPN in settings. The application of the VPN service, however, works fine. I have lockscreen security and on the latest OTA. =/
I couldn't use it on the previous 25 build either. Have not tried it on other ROMs.
Built in VPN is not working for me on CM11S.
I installed VPNZilla from playstore, that works.
Well when going into VPN option of the Settings panel, I am asked to enter a password ! Even tough I never used the VPN option on the Oneplus one... is that normal ? Did you get the same issue ?
lensois4ever said:
Well when going into VPN option of the Settings panel, I am asked to enter a password ! Even tough I never used the VPN option on the Oneplus one... is that normal ? Did you get the same issue ?
Click to expand...
Click to collapse
That's normal. To use the builtin VPN,a lock screen security must be applied.
Although there should be a guide instead of the password thing.
mr.left said:
That's normal. To use the builtin VPN,a lock screen security must be applied.
Although there should be a guide instead of the password thing.
Click to expand...
Click to collapse
It worked using a lock screen security... Thanks a lot !
lensois4ever said:
It worked using a lock screen security... Thanks a lot !
Click to expand...
Click to collapse
So it works on your phone.please tell me :
vpn type(pptp/L2tp)
os (cm11/cm11s/color os)
vpn provider if its ok
If it helps any:
- In mainland China
- OPO Chinese version on Color OS 2.0.8 beta
- StrongVPN
- PPTP works fine
- L2TP just says disconnected (pretty quickly, like it's not even trying to log in).
Have not yet flashed CM11s and might not for a while, so can't comment.
Same L2TP problems on my Huawei Mediapad X1 (Huawei UI based on 4.2) and older Galaxy Y (Touchwiz 2.3.6 or CM 4.0.4). Both PPTP and L2TP work fine on my iPhone 5s and rMini (both iOS 7.1.2), and on my Yoga 2 Pro laptop (Win 8.1).
I tend to get the same pattern regardless of being on different Wifi networks or 3G / 4G providers. iOS devices seem to work much better and first time.
kinghu said:
If it helps any:
- In mainland China
- OPO Chinese version on Color OS 2.0.8 beta
- StrongVPN
- PPTP works fine
- L2TP just says disconnected (pretty quickly, like it's not even trying to log in).
Have not yet flashed CM11s and might not for a while, so can't comment.
Same L2TP problems on my Huawei Mediapad X1 (Huawei UI based on 4.2) and older Galaxy Y (Touchwiz 2.3.6 or CM 4.0.4). Both PPTP and L2TP work fine on my iPhone 5s and rMini (both iOS 7.1.2), and on my Yoga 2 Pro laptop (Win 8.1).
I tend to get the same pattern regardless of being on different Wifi networks or 3G / 4G providers. iOS devices seem to work much better and first time.
Click to expand...
Click to collapse
Tried with PPTP protocol on my OnePlus One.. says Connected but very very very slow, unable to load anythin, even if I stay connected.
Any free Vpn configuration that is working on the OnePlus One with that Protocol ?
Many thanks in advance.
some vpn can use in pptp mode,but it no longer work after several times.
Sent from my A0001 using XDA Free mobile app
Tried CM11S and it's the same for me as ColorOS: PPTP connects every time but L2TP just says disconnect.
Seems iOS and my provider work better together. PPTP is enough though - as long as there's one way to get Twitter, etc.
From my OPO
VPN doesn't work for me too.. I double check the setting and it works on iPhone and my computer but on phone.. It doesn't connect.
Opo told me to wait for a update before 33R release ,but 33R doesn't fix the vpn problem.
Sent from my A0001 using XDA Free mobile app
Has anyone got an L2TP/IPSEC vpn connecting on the s7 at all?
Everything I try just results in a failed attempt to connect, however, if I try the exact same connection settings on my N4 running 5.1.1 then it connects first time every time.
did you manage to get this to work ?
L2TP/IPSEC PSK here and not able to connect via S7 but does fine with my Windows 8 laptop. OpenVPN works on S7 though
Nope, not at all.
Marshmallow fails totally still. Did find a google link which suggests it is an OS issue.
https://code.google.com/p/android/issues/detail?id=196939
Trixster101 said:
Nope, not at all.
Marshmallow fails totally still. Did find a google link which suggests it is an OS issue.
https://code.google.com/p/android/issues/detail?id=196939
Click to expand...
Click to collapse
thanks for that https://code.google.com/p/android/issues/detail?id=196939#c70
I have found a work around. If you can force your VPN server (assuming you
are in control of it the way I am with mine), and can force it to use SHA1
instead of SHA2 then it works. It seems the version of SHA2-256 that
Android 6.x.x is using is an older draft specification and the one
implemented in many other IPsec implementations uses the official SHA2-256
implementation with the correct padding and whatever else.
Has anyone else tried this? I have it set on my server and works with both
new and old Android. Though I am not fond of having to intentionally
weaken my security strength by having to run an older hash algorithm but
considering we can't use Diffie Hellman group larger than 1024 bits anyhow,
seems like a moot point.
Sly
Click to expand...
Click to collapse
and https://code.google.com/p/android/issues/detail?id=196939#c35
In your ipsec.conf file you should add three additions,
add ,aes256-sha2_256 to both ike= and phase2alg=
Then add a newline with sha2-truncbug=yes
reload ipsec
You should now be able to connect to your VPN. I've tested it on my Nexus 5x now, and works like a charm!
Click to expand...
Click to collapse
I had a problem too connecting it to my Synology DS214+ L2PT/Ipsec. I got it by removing my capital letters in my password and after I was able to connect. I don't know the capital character was the problem but now it's working for me.
I am trying to set up a L2PT/IPSec VPN profile for my S7 running on Superman Rom (Android 6.0.1) but always when I connect to the VPN, it says "Unfortunatelly System UI has stopped" and the phone then crashes. Not sure, if this is Custom-ROM specific error, OS-specific error or something else.. Somebody too experiences this problem? Any solutions/ideas, how I can get the VPN connection work? Maybe there are some apps, capable of doing this (I found none capable of L2PT)?
blaukraut said:
I am trying to set up a L2PT/IPSec VPN profile for my S7 running on Superman Rom (Android 6.0.1) but always when I connect to the VPN, it says "Unfortunatelly System UI has stopped" and the phone then crashes. Not sure, if this is Custom-ROM specific error, OS-specific error or something else.. Somebody too experiences this problem? Any solutions/ideas, how I can get the VPN connection work? Maybe there are some apps, capable of doing this (I found none capable of L2PT)?
Click to expand...
Click to collapse
I have same problem with NOBLE rom did you fix it?
No. I then recognized that my VPN provider also supports the VPN connection via Cisco AnyConnect (also for Android), which was very simple and straight forward.