Mobile IPSec VPN works but does not follow 302 redirects
-
This post is deleted! -
@derelict said in Mobile IPSec VPN works but does not follow 302 redirects:
Doesn't do any good to look at pcaps of it working without one of it not working to compare it to.
I submitted two packet captures, one where it wasn't working (i.e. Android phone on 4G and the IPSec VPN turned on) and the second where it is working (i.e. Android phone on internal Wifi and the IPSec VPN turned on).
My problem is that I would expect it to work the same whenever I am connected through the IPSec VPN...
Or did I misunderstand your comment?
Please see below:
0_1549260318219_bothpacketcaptures.zip -
@svarto
Hey
Make two files on the lan interface (ipsec is not necessary)
The first, when works
Second , when not working
What you posted was an ipsec capture (workingpacketcapture.cap)
It looks like this
The second file (Notworkingpacketcapture.cap) you already showed yesterday
This is yesterday's file (LanInterfaceClientasHost.cap)
-
@Konstanti Thanks for your patience, I did the packet captures for the two separate cases, attach them here in the .zip file and they are named according to if they were working or not:
-
And what is the error expressed ?
Visually, encrypted data is exchanged in both cases. There are no errors in the exchange. The client confirms receipt of the data. -
I attach a network diagram of my setup to make it clearer.
This is what is weird, when I connect to the VPN from my phone on 4G (option 1 in the attached diagram), I don't get errors any errors just timeouts. I can access everything on the internal LAN and internet, except, I cannot login into certain webservices. When I enter my password and press login, it just stalls - the browser says it is "thinking / loading" and then nothing happens. After a long time I get a "Server not found" error in the browser.
However, when I am on my phone on the internal wifi over the VPN (option 2), then I click login and get redirected instantly to the dashboard of the webapp. I can also reach the webapp from outside my network as I have a reverse proxy (option 3), and this works fine.
The reason I want to set up the Mobile IPSec VPN is that I want to close down the reverse proxy I have set up so that I can only access my webservices over the VPN and not anymore expose them directly to the internet.
