Client VPN OS Configuration. Android

Similar documents
UK TV ACCESS SET UP GUIDE

How to use VPN L2TP over IPsec

APSCN VPN Settings for Windows 7 2. APSCN VPN Settings for Windows XP 8. APSCN VPN Settings for MAC OS 15

V7610 TELSTRA BUSINESS GATEWAY

Configure Point to Point Tunneling Protocol (PPTP) Server on RV016, RV042, RV042G and RV082 VPN Routers for Windows

HTG XROADS NETWORKS. Network Appliance How To Guide: PPTP Client. How To Guide

Writing Alternative Text for the ITSM Knowledge Base

3.1 Getting Software and Certificates

Secure Access Configuration Guide For Wireless Clients

SET UP VPN FOR WINDOWS 10

QNAP VPN (Virtual Private Network) Secure network experience

Setting up L2TP Over IPSec Server for remote access to LAN

How to setup Remote VPN access using Windows Radius Server and Unifi USG/Controller

KE2 SmartGate. VPN Configuration. Q.5.25 June (pn 20695)

Configuration Guide SuperStack 3 Firewall L2TP/IPSec VPN Client

How to Setup PureVPN Manually on Windows 7 (L2TP)?

Wireless Data Privacy Configuration Guide. HP ProCurve Secure Access 700wl Series.

NetIQ Advanced Authentication Framework - Extensible Authentication Protocol Server. Administrator's Guide. Version 5.1.0

VPN Connection - Instructional Document

UNT System Campus VPN Guide

Adding a VPN connection in Windows XP

Remote Access via Cisco VPN Client

Setup L2TP/IPsec VPN Server on SoftEther VPN Server

How to Configure a Client-to-Site L2TP/IPsec VPN

VPN4ALL Mobile for Android 4.X Guide

IHSVPN IHS Secure Network Access

MWA Deployment Guide. VPN Termination from Smartphone to Cisco ISR G2 Router

Use Shrew Soft VPN Client to Connect with IPSec VPN Server on RV130 and RV130W

QVPN Virtual Private Network. Secure network experience

Connecting the DI-804V Broadband Router to your network

IP806GA/GB Wireless ADSL Router

1. A broadband connection. 2. Windows Vista (for these instructions; other operating systems have other instructions).

CHAPTER 7 ADVANCED ADMINISTRATION PC

The SSID to use and the credentials required to be used are listed below for each type of account: SSID TO CREDENTIALS TO BE USED:

Configuring an IPSec Tunnel Between a Cisco SA500 and the Cisco VPN Client

LevelOne WBR User s Manual. 11g Wireless ADSL VPN Router. Ver

Procedure for Connecting to OIL VPN

Connect to the Cambridge network

Business Connect Secure Remote Access Service (SRAS) Customer Information Package

EacStudent Wireless Access for Windows XP / 2000 Computers

UMDNJ Wireless Documentation Windows 7

Configuration of Shrew VPN Client on RV042, RV042G and RV082 VPN Routers through Windows

INF204x Module 1, Lab 3 - Configure Windows 10 VPN

How To Setup VPN On Windows 10

Apple Computer, Inc. ios

SoHo 401 VPN. Shared Broadband Internet Access VPN Gateway 3-Port Switching Hub, DMZ Port. Quick Install Guide

TCP/IP CONFIGURATION 3-6

SonicWALL strongly recommends you follow these steps before installing Global VPN Client (GVC) 4.0.0:

Implementing DVN. directpacket Product Guide

Shaw Business SmartSecurity Technical User Guide

Residence Towers Network Access for Windows XP / 2000 Computers

Instructions for connecting to winthropsecure

July 9, Installation Guide

Configure the Cisco VPN 3000 Series Concentrators to Support the NT Password Expiration Feature with the RADIUS Server

Grandstream Networks, Inc. GWN7000 Multi-WAN Gigabit VPN Router VPN Configuration Guide

Setup Guide. Page 0

How to Configure Mobile VPN for Forcepoint NGFW TECHNICAL DOCUMENT

To Activate your Wireless Account

Integrating Meraki Networks with

Connecting to the NMHU network and or your office PC using Microsoft VPN

SonicWALL Addendum. A Supplement to the SonicWALL Internet Security Appliance User's Guide

VPN4ALL Mobile for Android 2.X Guide

Technology Services Group Procedures. IH Anywhere guide. 0 P a g e

IP819VGA g ADSL VoIP Gateway

Windows 8.1 and Windows 10 a) Connect to wireless network Click on the wireless icon in taskbar. Select detnsw and click on Connect.

Connecting to the NJITSecure wireless network.

STRS OHIO F5 Access Client Setup for ChromeBook Systems User Guide

How to configure PPTP VPNs roadwarrior to gateway

Barracuda Networks NG Firewall 7.0.0

Sophos Firewall Configuring SSL VPN for Remote Access

HOW TO: Establishing a VPN Connection For use with File Sharing on Windows 98, 2000, and Windows XP

Configuring User VPN For Azure

Table of Contents A. Set up VPN Client...2. B. Connect to CUHK VPN C. Disconnect from CUHK VPN... 13

Remote Support Security Provider Integration: RADIUS Server

Broadband Router DC-202. User's Guide

VPN2S. Handbook VPN VPN2S. Default Login Details. Firmware V1.12(ABLN.0)b9 Edition 1, 5/ LAN Port IP Address

SonicWall Global VPN Client Getting Started Guide

Cisco Stand-Alone Installation Instructions Linux 64-bit OS

AT&T Global Network Client for Mac User s Guide Version 1.7.3

Chapter 8. User Authentication

APSCN VPN SETUP F5 VPN October Update

AT&T Global Network Client for Mac User s Guide Version 2.0.0

ForeScout CounterACT. Controller Plugin. Configuration Guide. Version 1.0

Microsoft Microsoft TS: MS Internet Security & Acceleration Server 2006, Configuring. Practice Test. Version:

Manual UCSFwpa Configuration for Windows 7

ResNet Guide. For the University of Redlands. Determine Your Operating System... 2 Windows 8 / 8.1 Wireless Connection Instructions...

Kerio Control. User Guide. Kerio Technologies

LevelOne FBR User s Manual. 1W, 4L 10/100 Mbps ADSL Router. Ver

REMOTE ACCESS IPSEC. Course /14/2014 Global Technology Associates, Inc.

Configure the VPN If You are Terminating the VPN Connections at a SnapGear Firewall Device

Internet access system through the Wireless Network of the University of Bologna

The Rockefeller University I NFORMATION T ECHNOLOGY E DUCATION & T RAINING. VPN Web Portal Usage Guide

Virtual Workplace Personal Device Client Installation Instructions

VPN Configuration Guide. Cisco ASA 5500 Series

Configuring the VPN Client

802.11N Wireless ADSL Router

How to connect your device using eduroam

How to find your IP address information

How to Configure Connection Fallback using Multiple VPN Gateways

4 Enter an IP address and sub-net mask for the ftp server and. 5 Go to the [System and Maintenance] > [Administrative Tools]

Transcription:

Client VPN OS Configuration This article outlines instructions to configure a client VPN connection on commonly-used operating systems. For more information about client VPN, please refer to our documentation. Android To configure an Android device to connect to the Client VPN, follow these steps: Navigate to Settings -> Wireless & Networks -> VPN Click the Plus Icon to add an additional VPN profile Enter a VPN Name for the connection. For the Type drop-down select L2TP/IPSEC PSK VPN Enter the public IP (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink) of the MX device under Server address. Enter the pre-shared key under IPSec pre-shared key. 1

Save the configuration. You will be prompted for credentials when you connect. 2

Chrome OS Chrome OS based devices can be configured to connect to the Client VPN feature on MX Security Appliances. This allows remote users to securely connect to the LAN. This article will cover how to configure the VPN connection on a Chrome OS device. For more information on how to setup the Client VPN feature of the MX or how to connect from other operating systems, please visit the MX documentation. 1. If you haven't already, sign in to your Chromebook. 2. Click the status area at the bottom of your screen, where your account picture is located. 3. Select Settings. 4. In the "Internet connection" section, click Add connection. 5. Select Add private network. 6. In the box that appears, fill in the information below: a. Server hostname: The DNS name or IP address of the MX to which the client should be connecting. b. Service name: This can be anything you want to name this connection, for example, "Work VPN." c. Provider type: Select L2TP/IPsec + Pre-shared key. d. Pre-shared key: This will be the Secret created when configuring the Client VPN on the MX. e. Username credentials for connecting to VPN. If using Meraki authentication, this will be an e-mail address. f. Password credentials for connecting to VPN. 7. Click Connect. For more information regarding the configuration of VPN connections in Chrome OS, visit the Google Support page. 3

ios Note: Apple has removed the native support and pass-through capabilities of PPTP VPN connections through IOS10+ devices. The Meraki Client VPN utilizes a more secure L2TP connection and can still successfully connect through a mobile hotspot broadcast from an ios device. To configure an ios device to connect to the Client VPN, follow these steps: 1. Navigate to Settings -> General-> VPN -> Add VPN Configuration... 2. On the Add Configuration screen that appears, set the Type to L2TP. 3. Enter a Description for the VPN connection. 4. Enter the public IP of the MX device (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink) as the Server. 5. Under Account, enter the username to be used to connect to the Client VPN. 6. Enter the Password if desired. If the password is left blank, it will need to be entered each time the device attempts to connect to the Client VPN. 7. Enter the VPN Secret. 8. Ensure that Send All Traffic is set to On. 9. Save the configuration. 4

5

macos Currently only the following authentication mechanisms are supported: User authentication: Active Directory (AD), RADIUS, or Meraki hosted authentication. Machine authentication: Preshared keys (a.k.a., shared secret). When using Meraki hosted authentication, VPN account/user name setting on client devices (e.g., PC or Mac) is the user email address entered in the Dashboard. The instructions below are tested on Mac OS 10.7.3 (Lion). Open System Preferences > Network from Mac applications menu. Click the "+" button to create a new service, then select VPN as the interface type, and choose L2TP over IPsec from the pull-down menu. Server Address: Enter the public IP address (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink ). Account Name: Enter the account name of the user (based on AD, RADIUS or Meraki Hosted authentication). Click Authentication Settings and provide the following information: User Authentication > Password: User password (based on AD, RADIUS or Meraki Hosted authentication). 6

Machine Authentication > Shared Secret: The preshared key that you've created in Configure > Client VPN settings for the MX. Click OK to go back to the main VPN settings page, then click Advanced and enable the Send all traffic over VPN connection option. 7

The VPN connectivity will not be established if you don't enable the Send all traffic over VPN connection option! Windows 7 Currently only the following authentication mechanisms are supported: User authentication: Active Directory (AD), RADIUS, or Meraki hosted authentication. Machine authentication: Preshared keys (a.k.a., shared secret). When using Meraki hosted authentication, VPN account/user name setting on client devices (e.g., PC or Mac) is the user email address entered in the Dashboard. 8

Open Start Menu > Control Panel, click on Network and Internet, click on View network status and tasks. In the Set up a connection or network pop-up window, choose Connect to a workplace (Set up a dial-up or VPN connection to your workplace). 9

Choose Use my Internet connection (VPN), in the Connect to a workspace dialog window. 10

In the Connect to a Workplace dialog box, enter: Internet address: Enter the public IP address (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink ) for the MX appliance. Destination name: Optionally enter a name for the VPN connection. 11

Choose "Don't connect now; just set it up so that I can connect later" option. Click Next. In the next dialog window, enter the user credentials, and click Create. 12

Close the VPN connection wizard. 13

Go to Networking and Sharing Center and click Change Adapter Settings 14

In Network Connections window, right click on the new VPN connection settings and choose Properties In the General tab, verify that the public IP address or the URL of the MX appliance. 15

In the Options tab, make sure "Include Windows logon domain" is unchecked 16

In the "Security" tab, choose "Layer 2 Tunneling Protocol with IPsec (L2TP/IPSec)". Then, check "Unencrypted password (PAP)", and uncheck all other options. Despite the name "Unencrypted PAP", the client's password is sent encrypted over an IPsec tunnel between the client device and the MX. The password is fully secure and never sent in clear text over either the WAN or the LAN. 17

Click on "Advanced settings". In Advanced Properties dialog box, choose "Use preshared key for authentication" and enter the same key you used for the client VPN settings in the Dashboard. Note: if you are enabling client VPN for your employees, you will need to distribute this key. Click OK. 18

Back at the Network Connections window, right-click on the VPN connection and click Connect Verify your user name and click Connect. 19

Windows 8 Currently only the following authentication mechanisms are supported: User authentication: Active Directory (AD), RADIUS, or Meraki hosted authentication. Machine authentication: Preshared keys (a.k.a., shared secret). When using Meraki hosted authentication, VPN account/user name setting on client devices (e.g., PC or Mac) is the user email address entered in the Dashboard. Open Start Menu > Network and Sharing Center and click Settings. 20

In the Network and Sharing Center, click Set up a new connection or network. 21

In the Set Up a Connection or Network pop-up window, choose Connect to a workplace. (Set up a dial-up or VPN connection to your workplace). 22

Choose Use my Internet connection (VPN), in the Connect to a Workspace dialog window. 23

In the Connect to a Workplace dialog box, enter: Internet address: Enter the public IP address (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink ) for the MX appliance. Destination name: Optionally enter a name for the VPN connection. Click Create. 24

Go back to Network and Sharing Center and click Change Adapter Settings. 25

In the Networks Connections window, right click on the VPN connection icon and choose Properties. In the General tab, verify that the public IP address or the URL of the MX appliance. 26

In the "Security" tab, choose "Layer 2 Tunneling Protocol with IPsec (L2TP/IPSec)". Then, check "Unencrypted password (PAP)", and uncheck all other options. Despite the name "Unencrypted PAP", the client's password is sent encrypted over an IPsec tunnel between the client device and the MX. The password is fully secure and never sent in clear text over either the WAN or the LAN. 27

Click on "Advanced settings". In Advanced Properties dialog box, choose "Use preshared key for authentication" and enter the same key you used for the client VPN settings in the Dashboard. Note: if you are enabling client VPN for your employees, you will need to distribute this key. 28

Click OK. Back at the Network Connections window, right-click on the VPN connection and click Connect / Disconnect. 29

Find your VPN profile and click Connect. 30

Enter your user name and password. Click OK. 31

32

Windows 10 Currently only the following authentication mechanisms are supported: User authentication: Active Directory (AD), RADIUS, or Meraki hosted authentication. Machine authentication: Preshared keys (a.k.a., shared secret). When using Meraki hosted authentication, VPN account/user name setting on client devices (e.g., PC or Mac) is the user email address entered in the Dashboard. Open Start Menu > Search "VPN" > Click Change virtual private networks (VPN) 33

From the VPN settings page, click Add a VPN connection. 34

In the Add a VPN connection dialog: Set the VPN provider to Windows (built-in) Provide a Connection name for the VPN connection Specify a public IP address (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink ) or hostname for the Server name or address Select L2TP/IPsec with pre-shared key for the VPN type Provide a User name and Password (optional) 35

After the VPN connection has been created, click Change adapter options under Related settings. 36

Right click on the VPN Connection from the list of adapters and click Properties. 37

In the Security tab, select "Require encryption (disconnect if sever declines)" under Data encryption. Then, select Allow these protocols under Authentication. From the list of protocols, check "Unencrypted password (PAP)", and uncheck all other options. Despite the name "Unencrypted PAP", the client's password is sent encrypted over an IPsec tunnel between the client device and the MX. The password is fully secure and never sent in clear text over either the WAN or the LAN. 38

Click on "Advanced settings" In Advanced Properties dialog box, choose "Use preshared key for authentication" and enter the same key you used for the client VPN settings in the Dashboard. Note: if you are enabling client VPN for your employees, you will need to distribute this key. 39

Back at the Network Connections window, right-click on the VPN connection and click Connect / Disconnect. Find your VPN profile and click Connect. 40

Enter your user name and password. Click OK. 41

Windows XP Currently only the following authentication mechanisms are supported: User authentication: Active Directory (AD), RADIUS, or Meraki hosted authentication. Machine authentication: Preshared keys (a.k.a., shared secret). When using Meraki hosted authentication, use the email address for VPN account / user name. Open Start Menu > Control Panel, click on Network Connections. 42

In the Network Tasks section, click on Create a new connection. 43

Choose Connect to the network at my workplace, in the New Connection Wizard window. Choose Virtual Private Network connection in the next section. 44

Then, give a name for this connection: 45

Enter the public IP address for the MX appliance (found in Dashboard, under Security appliance > Monitor > Appliance status > Uplink ): 46

In the Connect <Connection Name> box, click on Properties 47

In the General tab, verify that the public IP address or the URL of the MX appliance. In the Options tab, make sure "Include Windows logon domain" is unchecked 48

In the Security tab, choose Advanced (custom settings). Click Settings 49

In Advanced Security Settings page, select Optional encryptionfrom the Data encryption pull-down menu. Choose Unencrypted password (PAP) from the Allow these protocols options and uncheck everything else. Despite the name "Unencrypted PAP", the client's password is sent encrypted over an IPsec tunnel between the client device and the MX. The password is fully secure and never sent in clear text over either the WAN or the LAN. 50

Back on the Security tab, click IPSec Settings... 51

Check "Use pre-shared key for authentication" and enter the same key you used for the client VPN settings in the Dashboard. Note: if you are enabling client VPN for your employees, you will need to distribute this key. Click OK. In Networking tab, choose L2TP IPSec VPN from the Type of VPN options. 52

Back at the Network Connections window, right-click on the VPN connection and click Connect 53

Verify your user name and click Connect 54

Linux Since Client VPN uses the L2TP over IPsec standard, any Linux client that properly supports this standard should suffice. Please note that newer versions of Ubuntu do not ship with a VPN client that supports L2TP/IP, and will therefore require a 3rd party VPN client that supports the protocol. Note: The xl2tp package does not send user credentials properly to the MX when using Meraki Cloud Controller authentication, and this causes the authentication request to fail. Active Directory or RADIUS authentication can be used instead for successful authentication. 55

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback