Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN on ICS (Android 4, without root) - now even easier!

    Scheduled Pinned Locked Moved OpenVPN
    17 Posts 5 Posters 10.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • jimpJ
      jimp Rebel Alliance Developer Netgate
      last edited by

      http://doc.pfsense.org/index.php/Android_VPN_Connectivity#OpenVPN_on_Android_4.0_.28Non-Root.29

      :-)

      Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      1 Reply Last reply Reply Quote 0
      • T
        tbrummell
        last edited by

        Thank you!

        I had been trying to get OpenVPN for Android to work without the Inline config, and just couldn't.ย  This was flawless & easy!ย  Thanks.

        1 Reply Last reply Reply Quote 0
        • C
          charlie0440
          last edited by

          I have a OpenVPN server RoadWarrior with TLS and User Auth set up following the guide here:
          http://blog.stefcho.eu/?p=492

          I can't seem to get this to work with the above app. I have been following the wikihttp://doc.pfsense.org/index.php/Android_VPN_Connectivity#OpenVPN_on_Android_4.0_.28Non-Root.29

          Does this support TLS?

          When I import the config I get the following message:

          Could not find file pfsense-udp-1194-tls. key mentioned in the imported config file
          Your configuration have a few options that could be parsed. These options were added as custom configuration options. The custom configuration is displayed below:
          resolv-rety infinite

          Any help appreciated

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            It works fine for me with TLS enabled. It embeds the TLS key in the inline config I export/import and it shows up fine.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • C
              charlie0440
              last edited by

              Ignore my previous error. I didn't have the latest client export package. I have now updated to v0.20.

              New problem; When I click to download the "Inline Configuration" I get a single .ovpn file (as expected). But if I open it with notepad it only contains the following line:
              /tmp/client.tar

              Exporting using the other options seems to produce valid .ovpn files, but not the inline config. Any idea?

              1 Reply Last reply Reply Quote 0
              • jimpJ
                jimp Rebel Alliance Developer Netgate
                last edited by

                Interesting - let me test it here and get back to you.

                Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                Need help fast? Netgate Global Support!

                Do not Chat/PM for help!

                1 Reply Last reply Reply Quote 0
                • jimpJ
                  jimp Rebel Alliance Developer Netgate
                  last edited by

                  ok give it 5-10 mins and when 0.21 shows up, reinstall the pkg.

                  Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                  Need help fast? Netgate Global Support!

                  Do not Chat/PM for help!

                  1 Reply Last reply Reply Quote 0
                  • C
                    charlie0440
                    last edited by

                    jimp your a star. All connected working perfectly. Man you work fastย  ;D

                    1 Reply Last reply Reply Quote 0
                    • C
                      charlie0440
                      last edited by

                      I have found a bug or maybe its not a bug but my own naming error (just thought I would mention it).

                      So I added one VPN and it connected fine. Added a second which is near identical to the first.

                      first file has this line:
                      tls-remote charlie

                      second file has this line:
                      tls-remote Road Warrior Server Cert

                      On importing I got an error reading config file:
                      Option tls-remote has 4 parameters, expected between 1 and 1

                      I'm sure I can just rename my cert from "Road Warrior Server Cert" to "RWcert" and it will be fine as my other .ovpn file is only a single parameter.

                      1 Reply Last reply Reply Quote 0
                      • jimpJ
                        jimp Rebel Alliance Developer Netgate
                        last edited by

                        if you edit the config and put "Road Warrior Server Cert" in quotes (just like that) does it work?

                        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                        Need help fast? Netgate Global Support!

                        Do not Chat/PM for help!

                        1 Reply Last reply Reply Quote 0
                        • C
                          charlie0440
                          last edited by

                          yeh it does, obvious really. Thanks

                          1 Reply Last reply Reply Quote 0
                          • jimpJ
                            jimp Rebel Alliance Developer Netgate
                            last edited by

                            ok I'll enclose that in quotes when I update the exporter next time

                            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                            Need help fast? Netgate Global Support!

                            Do not Chat/PM for help!

                            1 Reply Last reply Reply Quote 0
                            • jimpJ
                              jimp Rebel Alliance Developer Netgate
                              last edited by

                              Here comes 0.22 with that in quotesโ€ฆshould fix it up.

                              Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                              Need help fast? Netgate Global Support!

                              Do not Chat/PM for help!

                              1 Reply Last reply Reply Quote 0
                              • T
                                th3r3isnospoon
                                last edited by

                                This works great!ย  Thanks for the update.

                                This works on Jelly Bean 4.1.1 as well.

                                -th3r3isnospoon

                                1 Reply Last reply Reply Quote 0
                                • P
                                  phil.davis
                                  last edited by

                                  Note this thread in Packages http://forum.pfsense.org/index.php/topic,52600.0.html that indicates that putting the string in quotes does not work for some client platforms. Needs a bit of investigation to see exactly what syntax is valid for which clients.

                                  As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                                  If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                                  1 Reply Last reply Reply Quote 0
                                  • jimpJ
                                    jimp Rebel Alliance Developer Netgate
                                    last edited by

                                    Perhaps, the real fix is of course to not use spaces in CA/cert names to begin with, but either way, it should work with the quotes I thought.

                                    We may just need a newer build of OpenVPN in the export package and that may be sufficient.

                                    Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                                    Need help fast? Netgate Global Support!

                                    Do not Chat/PM for help!

                                    1 Reply Last reply Reply Quote 0
                                    • C
                                      charlie0440
                                      last edited by

                                      @jimp:

                                      Perhaps, the real fix is of course to not use spaces in CA/cert names to begin with, but either way, it should work with the quotes I thought.

                                      I do agree. Not sure why that one cert of mine had a space in it, none of the others do. As a linux user I don't normally use spaces.

                                      1 Reply Last reply Reply Quote 0
                                      • First post
                                        Last post
                                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.