Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    VPN для Iphone

    Scheduled Pinned Locked Moved Russian
    5 Posts 3 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      Kajfolom
      last edited by

      Товарищи, подскажите рабочий гайд или просто опишите, как настроить vpn на айфоне с 10 ios, лучше ipsec или l2tp. Перепробовал много гайдов, но ничего не получается( причем на андройде все летает отлично (ipsec с ikev1 и с ikev2 с сертификатом. при настройке ikev2 с сертом на айфоне идет подключение и сразу вырубается без всяких ошибок). Очень нужно  :-[. Буду признателен.

      Вот лог после отключения (некоторую инфу, правда, скрыл). Помогите, пожалуйста.

      Mar 28 15:59:36 charon 08[NET] <68> received packet: from 10.0.1.133[500] to ..15.50[500] (604 bytes)
      Mar 28 15:59:36 charon 08[ENC] <68> parsed IKE_SA_INIT request 0 [ SA KE No N(REDIR_SUP) N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) ]
      Mar 28 15:59:36 charon 08[IKE] <68> 10.0.1.133 is initiating an IKE_SA
      Mar 28 15:59:36 charon 08[IKE] <68> DH group MODP_2048 inacceptable, requesting MODP_1024
      Mar 28 15:59:36 charon 08[ENC] <68> generating IKE_SA_INIT response 0 [ N(INVAL_KE) ]
      Mar 28 15:59:36 charon 08[NET] <68> sending packet: from ..15.50[500] to 10.0.1.133[500] (38 bytes)
      Mar 28 15:59:36 charon 10[NET] <69> received packet: from 10.0.1.133[500] to ..15.50[500] (476 bytes)
      Mar 28 15:59:36 charon 10[ENC] <69> parsed IKE_SA_INIT request 0 [ SA KE No N(REDIR_SUP) N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) ]
      Mar 28 15:59:36 charon 10[IKE] <69> 10.0.1.133 is initiating an IKE_SA
      Mar 28 15:59:36 charon 10[IKE] <69> sending cert request for "C=RU, ST=Kaluga region, L=***** , O=***** , E=******, CN=internal-ca"
      Mar 28 15:59:36 charon 10[ENC] <69> generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(FRAG_SUP) N(MULT_AUTH) ]
      Mar 28 15:59:36 charon 10[NET] <69> sending packet: from ..15.50[500] to 10.0.1.133[500] (341 bytes)
      Mar 28 15:59:36 charon 10[NET] <69> received packet: from 10.0.1.133[4500] to ..15.50[4500] (484 bytes)
      Mar 28 15:59:36 charon 10[ENC] <69> parsed IKE_AUTH request 1 [ IDi N(INIT_CONTACT) N(MOBIKE_SUP) IDr CPRQ(ADDR DHCP DNS MASK ADDR6 DHCP6 DNS6) N(ESP_TFC_PAD_N) N(NON_FIRST_FRAG) SA TSi TSr ]
      Mar 28 15:59:36 charon 10[CFG] <69> looking for peer configs matching ..15.50[
      .com]…10.0.1.133[10.0.1.133]
      Mar 28 15:59:36 charon 10[CFG] <bypasslan|69>selected peer config 'bypasslan'
      Mar 28 15:59:36 charon 10[IKE] <bypasslan|69>peer requested EAP, config inacceptable
      Mar 28 15:59:36 charon 10[CFG] <bypasslan|69>no alternative config found
      Mar 28 15:59:36 charon 10[IKE] <bypasslan|69>received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
      Mar 28 15:59:36 charon 10[IKE] <bypasslan|69>peer supports MOBIKE
      Mar 28 15:59:36 charon 10[ENC] <bypasslan|69>generating IKE_AUTH response 1 [ N(AUTH_FAILED) ]
      Mar 28 15:59:36 charon 10[NET] <bypasslan|69>sending packet: from ..15.50[4500] to 10.0.1.133[4500] (68 bytes)</bypasslan|69></bypasslan|69></bypasslan|69></bypasslan|69></bypasslan|69></bypasslan|69></bypasslan|69>

      1 Reply Last reply Reply Quote 0
      • P
        pigbrother
        last edited by

        Из подборки ссылок. Сам не пробовал.
        http://www.thegeekpub.com/5855/pfsense-road-warrior-ipsec-config-works/

        1 Reply Last reply Reply Quote 0
        • werterW
          werter
          last edited by

          Доброе.
          https://forum.pfsense.org/index.php?topic=127457.0
          http://cocoontech.com/forums/blog/29/entry-454-pfsense-vpn-easy-peasy-way/

          1 Reply Last reply Reply Quote 0
          • P
            pigbrother
            last edited by

            Надеюсь @Kajfolom отпишется о результате.

            1 Reply Last reply Reply Quote 0
            • K
              Kajfolom
              last edited by

              @pigbrother:

              Из подборки ссылок. Сам не пробовал.
              http://www.thegeekpub.com/5855/pfsense-road-warrior-ipsec-config-works/

              благодарю от души, все заработало  :)

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.