Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Configured IPSEC VPN works on Windows device but no on IOS

    Scheduled Pinned Locked Moved IPsec
    15 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sugarpeter
      last edited by

      Hello Everyone,
      i have recently installed Pfsense 2.4.2-P2 with IPSEC vpn,i am using letsEncrypt certificates.
      After testing for couple of hours , i figured VPN works with no issues on Win10 devices but not on my IOS device. IOS12.3 .
      Can anyone suggest anything ? ...i am happy share configuration screenshots if that helps

      Cheers

      1 Reply Last reply Reply Quote 0
      • KOMK
        KOM
        last edited by

        Are you using a config from the openvpn-client-export package, or are you trying to set everything manually?

        S 1 Reply Last reply Reply Quote 0
        • S
          sugarpeter @KOM
          last edited by

          @KOM i have setup everything manually on both IOS and Windows device

          1 Reply Last reply Reply Quote 0
          • KOMK
            KOM
            last edited by

            So then try installing the openvpn-client-export package and then use it to generate either a Viscosity bundle for IOS or an inline config .ovpn file.

            1 Reply Last reply Reply Quote 0
            • NogBadTheBadN
              NogBadTheBad
              last edited by

              It's IPsec not OpenVPN.

              Andy

              1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

              1 Reply Last reply Reply Quote 1
              • S
                sugarpeter
                last edited by

                yes , Just to clairfy ... this is a IPSEC VPN ... not OpenVPN

                1 Reply Last reply Reply Quote 0
                • NogBadTheBadN
                  NogBadTheBad
                  last edited by

                  I use the following for home use:-

                  Screenshot 2019-05-16 at 15.31.29.png

                  Screenshot 2019-05-16 at 15.31.58.png

                  Andy

                  1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

                  S 2 Replies Last reply Reply Quote 1
                  • KOMK
                    KOM
                    last edited by

                    Hahaha I'm an idiot...

                    I don't know how I missed the IPSec part. I'll shut up now.

                    1 Reply Last reply Reply Quote 2
                    • S
                      sugarpeter @NogBadTheBad
                      last edited by sugarpeter

                      @NogBadTheBad Look slike this has worked for me now.
                      Only difference i had fro your config was "My identifier" field was selected to Dynamic DNS
                      I enabled and disabled "Network List" in Phase 2 and "IP Compression" in Advance settings and everything now works.
                      I will reboot it tonight and confirm if everything is same as it is now after the reboot.
                      Until then i request Moderators to keep this topic open :)

                      1 Reply Last reply Reply Quote 0
                      • S
                        sugarpeter @NogBadTheBad
                        last edited by

                        @NogBadTheBad looking at your config i just released you are using EAP-Radius.
                        Can you help me with the settings? i have just installed everything and using this Google Authenticator on pfSense

                        i can test login on the device itself but on IOS its log logging in and when i revert back to local database it works.

                        Thanks

                        1 Reply Last reply Reply Quote 0
                        • NogBadTheBadN
                          NogBadTheBad
                          last edited by

                          Mostly followed this:-

                          https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/configuring-an-ipsec-remote-access-mobile-vpn-using-ikev2-with-eap-mschapv2.html

                          https://docs.netgate.com/pfsense/en/latest/vpn/ipsec/ikev2-with-eap-radius.html

                          Andy

                          1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

                          S 1 Reply Last reply Reply Quote 0
                          • S
                            sugarpeter @NogBadTheBad
                            last edited by

                            @NogBadTheBad Used the same config but doesn't work

                            Mobile Clients.png hing screenshots.Phase 1 config.png auth Servers.png Radius Server config.png

                            1 Reply Last reply Reply Quote 0
                            • NogBadTheBadN
                              NogBadTheBad
                              last edited by

                              Screenshot 2019-05-17 at 11.42.03.png

                              Andy

                              1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

                              S 1 Reply Last reply Reply Quote 0
                              • S
                                sugarpeter @NogBadTheBad
                                last edited by sugarpeter

                                @NogBadTheBad thank you ... does that work along with Google Authenticator too ?
                                Also do you see anything else different on mine than yours ?

                                NogBadTheBadN 1 Reply Last reply Reply Quote 0
                                • NogBadTheBadN
                                  NogBadTheBad @sugarpeter
                                  last edited by

                                  @sugarpeter

                                  Not a clue sorry, I don’t use google authenticator.

                                  Andy

                                  1 x Netgate SG-4860 - 3 x Linksys LGS308P - 1 x Aruba InstantOn AP22

                                  1 Reply Last reply Reply Quote 0
                                  • First post
                                    Last post
                                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.