Hey guys,
I have been keeping my eyes out for the tun.ko module to come out in one of the kernels, and it finally did in the 1.76 GHz kernel. I had to reinstall VPN connections after flashing the kernel, and then VPN connections would tell me that my VPN was connected properly. However, I can't get data to pass through the VPN. No pings to the remote end, no RDP, nothing.
Anybody else get this working?
Thanks,
Seth
I thought I set up my VPN wrong >_> Well that explains it! Thanks! Same issue. I have however been able to see my phone in my router, though I can't do anything with it there in or out.
This sounds like the same issue I was having with openvpn (I assume that's what you're referring to since you're talking about the tun module). I'm running Das BAMF 1.3.2, and tun is already built into the kernel. I'm having the same problem. The VPN connects, no errors at all, even ran it in the terminal so I could see all of OpenVPN's connection output. But data is not routed through the tunnel. WhatIsMyIP still reports my Verizon IP address.
Now, on two occasions I have had success. I was able to connect and disconnect my VPN all I wanted and everything worked. However this only lasted for the current phone 'life cycle', ie it failed again after the next reboot. I can't find a pattern or anything, it seems that it will randomly work after a reboot, but not that often... 1 out of 10 maybe? I didn't waste my time trying to nail down a ghost.
I think I solved the OpenVPN problem. There's an option in OpenVPN settings called 'Fix HTC Routes'. If you check it, you can get the link to view the issue tracker. Essentially it deletes a few routing tables after OpenVPN starts up. For some reason, it doesn't seem to work on the Thunderbolt. Perhaps that option is using a deprecated script command (ip ru del route)? Whatever the reason, the fix is simple. After connecting to OpenVPN, open a terminal and issue the following commands:
Code:
ip ru del table gprs
ip ru del table wifi
Ignore any errors you might get if the routing table doesn't exist. I don't think you need SU, and you can use GScript Lite to make the process easier on you.
I'll give this a shot with VPN Connections when I get a chance and report back. If anybody else has any success, please post here.
I have had better success, but it's not right yet for me. I am able to get some data to flow using RDP, Telnet, etc., but nothing actually works completely right.
When telnetting into routers, I am not able to actually authenticate. however, I CAN finally see the prompts.
When using RDP, it doesn't time out any more, but I don't get any video data back to my phone's screen. No login page, etc.
Those two commands also seem to time out eventually. I need to reenter them to get the data flowing again, it seems.
Anybody else have better results?
Seth
Well, without knowing which VPN you're using, I can't say. But it does seem to work with openvpn and the OpenVPN Settings market app (I have my own install of openvpn, so I don't use the related OpenVPN Installer app).
The routing tables gprs/wifi are automatically recreated when those connections are re-established. Meaning, if you are on VPN via wifi, and wifi disconnects/reconnects, then the wifi routing table is recreated. The same goes for gprs if you lose connection and it is reestablished. I don't know what the system might try to do using the built in VPN connections.
Sorry about that, the lack of info wasn't very helpful.
I'm trying to connect to my Cisco VPN. We are using group authentication as well as user authentication. The outside device is a 2811 router, and if there are any other specifics that might help, I'd be happy to provide it.
Thanks,
Seth
Related
Has anyone got VPN connectivity working with DCD 3.2.5? I have been trying for hours with no luck. Every time I try to connect I just get the generic unable to connect message (VPN Server problems. Verify your username and password..... I do know its not a user name / password issue. I set the VPN up and administer it. Its a ClarkConnect Community Edition Firewall Router 4.3.
I can however use the phone with Internet Sharing and connect to the same VPN end point with my laptop. I know the VPN is working.
Any one have any experience with this?
scrosler said:
Has anyone got VPN connectivity working with DCD 3.2.5? I have been trying for hours with no luck. Every time I try to connect I just get the generic unable to connect message (VPN Server problems. Verify your username and password..... I do know its not a user name / password issue. I set the VPN up and administer it. Its a ClarkConnect Community Edition Firewall Router 4.3.
I can however use the phone with Internet Sharing and connect to the same VPN end point with my laptop. I know the VPN is working.
Any one have any experience with this?
Click to expand...
Click to collapse
I'll be honest. I haven't really tried yet, but I am interested in getting this working myself, as I need to set it up; in addition to somehow getting this damn thing to connect to my school's network - which it has refused to for many weeks now.
scrosler said:
Has anyone got VPN connectivity working with DCD 3.2.5? I have been trying for hours with no luck. Every time I try to connect I just get the generic unable to connect message (VPN Server problems. Verify your username and password..... I do know its not a user name / password issue. I set the VPN up and administer it. Its a ClarkConnect Community Edition Firewall Router 4.3.
I can however use the phone with Internet Sharing and connect to the same VPN end point with my laptop. I know the VPN is working.
Any one have any experience with this?
Click to expand...
Click to collapse
Did you try using the kitchen and enabling the Enterprise IPSEC checkbox? It's the first item on the list. I assumed this was for those who needed VPN connections, so have not used it myself personally.
BTC
BillThyCat said:
Did you try using the kitchen and enabling the Enterprise IPSEC checkbox? It's the first item on the list. I assumed this was for those who needed VPN connections, so have not used it myself personally.
BTC
Click to expand...
Click to collapse
yep you need that for IPSEC vpn, but PPTP vpn would work without it.
BillThyCat said:
Did you try using the kitchen and enabling the Enterprise IPSEC checkbox? It's the first item on the list. I assumed this was for those who needed VPN connections, so have not used it myself personally.
BTC
Click to expand...
Click to collapse
Yes. Im going to flash back to a stock ROM later today and test.
I'll post the results.
DCD have you ever got PPTP to work?
scrosler said:
Yes. Im going to flash back to a stock ROM later today and test.
I'll post the results.
DCD have you ever got PPTP to work?
Click to expand...
Click to collapse
Telus ROM can authenticate just fine. Hmmmm. DCD Any thoughts?
PPTP VPN works
Here is what I did:
Configured the VPN connection.
Create a nework exception for a valid DNS name or use wildcards:
*.myvpnconnection.com
Anything you go to in that domain will use the VPN. IE seems to be the only thing that will initiate the connection.
It sounds like you might have something wrong on the server side.
MM
I just setup mine to use the vpn into my office and it worked slick as "stuff"... but we use a MS VPN server with AD...
I'm able to use VPN on 3.2.5 (stock, not cooked in kitchen) It works, but often time I have to soft reset before it will let me connect. Windows even suggests it... I haven't figured out a way around this when it happens, other then to soft reset.
Also I'm having a problem where VPN locks up the phone if I leave it connected, and the phone goes into lower power mode. It won't wake up with power. I have to soft reset.
Lastly, I'm trying to figure out the fastest way to actually launch the connection. It seems horribly buried / inefficent, the way I'm doing it:
I'm going to Start -> Settings -> Connections Tab -> Connections Icon -> Under the VPN Connection hitting "Manage Existing Connections -> VPN Tab -> Selecting the VPN Connection and "right clicking (hold until context menu pops up) and hitting "Connect".
Anyone know of a faster way?
Thanks in advance!!
PPTP and L2TP work fine here. I do have an issue where if I leave the connection live and the device goes to sleep it doesn't wake up and requires a soft reset. It's been like that for a number of revisions. Other than that it works fine.
Until yesterday I have been successful in connecting to various WiFi hot spots, now I have to use a static IP to connect to the very same two WiFi hot spots. Using dynamic addressing my tablet cycles "authenticating, obtaining IP address etc." and never successfully connects. When I use static IP, the connection is instanteneous. I have tried recycled power to one of the WiFi hotspots without any change. Also, I have been successful in connecting another device to the WiFi router successfully suggesting the problem is with my tablet. The table otherwise works fine.
Has anyone else encountered this?
Lost DHCP over WiFi
I just found the following (timely) posting forum.cyanogenmod.com/topic/18708-dhcp-timeout-over-wifi and will investigate whether that would be cause of my recent problem since I had just downloaded another version of busybox.
I have the same issue but from makin my laptop the hotspot n connecting tab to that, but I use Connectify for the hotspot and itworks with connecting, just not all the time.
When it doesn't, have to forget the connection then re-connect, usually fixes it. I don't think its ur tablet though, ive experienced this with every rom I've tried(tnt stock, tntlite 4.25, vegan froyo and ginger experimental)
Hope this helps
No it does not help since your problem does not resemble mine.
Problem solved after updating busybox to working version. Apparently a version of busybox lacked certain programs needed by the DHCP client.
More info on updating busybox please?
hga89 said:
Problem solved after updating busybox to working version. Apparently a version of busybox lacked certain programs needed by the DHCP client.
Click to expand...
Click to collapse
I have gone through the steps in the development post for [Module] tun.ko for stock 2.6.32.9 (for openvpn/vpnc/etc), http://forum.xda-developers.com/showthread.php?t=1013513. I am still unable to connect to my companies Cisco VPN router. I have rooted my Atrix and confirmed that tun.ko is running. Every time I try VPN Connections, it will not connect with no response after an attempt. I have also tried VPNC Widget which tells me "0:unexpected operatorError: root access missing! Waringin:'Advanced Routing' feature missing - VPN Conectivity might be lost after a while"
VPN access is all I am missing to get RDP working, at least I hope as I can use it on my home domain with my Windows server.
I am somewhat new to Android devices, other than tinkering with my old AT&T Tilt with Android 2.2 on NAND. Any help to resolve is much appreciated.
I am still unable to connect through my company's VPN. I have found out that we use a Cisco 3000 Concentrator. If anyone else has had luck with this model, I would like to hear about it.
I had a lot of issues getting mine to work too..
After hours of hunting and lots of logcats later I figured out VPNConnections is very picky about your busybox version. Something to do with the output of the ps command.
Check this thread (Mostly my last two posts on page 5): http://forum.xda-developers.com/showthread.php?p=13859822
Cliff Notes version:
I got it working with VPN Connections .6, Busybox 1.17.1, and the tun.ko posted by rozzco in that thread.
BB 1.17.1 is available from Stericsons BB installer under alternate versions.
If you need the APK for it or the VPN app lemme know and I'll post it.
FWIW, I never got VPNC widget to work. I had your same error,
I tried your suggestions, using the specific versions. Still no luck. Look at logcat, it appears to attempt to connect but ultimately finishes with "process stderr: no response from target".
scoob8000 do you know what VPN device through which you are connecting? I don't know if it is a issue with the Cisco VPN 3000 Concentrator we are using. There was a mention of retiring the device, but they do not know when or with what it will be replaced.
Did you try this one?
http://code.google.com/p/get-a-robot-vpnc/
That is the VPN Connections app scoob8000 has mentioned.
rgbaxter said:
I tried your suggestions, using the specific versions. Still no luck. Look at logcat, it appears to attempt to connect but ultimately finishes with "process stderr: no response from target".
scoob8000 do you know what VPN device through which you are connecting? I don't know if it is a issue with the Cisco VPN 3000 Concentrator we are using. There was a mention of retiring the device, but they do not know when or with what it will be replaced.
Click to expand...
Click to collapse
From memory I think it's juist a old 26xx series router.. (Don't quote me on this lol)
It almost sounds like your at least hitting the network. Can anyone try to see your attempted connections on the concentrator?
Working IPSEC VPN Client for Cisco VPN Concentrator
I know this is an old thread, but thought I would post an update anyway.
I recently started looking for a VPN client I could use with our Cisco VPM Concentrator, and ran across the one mentioned in this topic, VPN Connections. I installed it from the same link also posted by lhurtado earlier.
I think this may be a newer version than what was available at that time, though. Either way, I've got it working without any issues, and I'm able to VPN into my network, and use RDP without any issues.
I did try this on a non-rooted Asus Transformer TF-101, and it did not work. I only got a "Failed to Connect" message in VPN Connections. I'll have to see if I can find the logcat mentioned previously for any information on why it is failing, but I'm guessing the stock Kernel/ROM does not have tun.ko.
Here's the specs on what I've got:
Acer Iconia A500 (rooted), custom ROM (Taboonay 2.2) and Kernel (HoneyVillain 3.4)
BusyBox 1.19.2
VPN Connections 0.99
2X Client
Cisco VPN Concentrator 3005
Hope this helps someone else who is looking for a VPN client that works with the Cisco VPN Concentrators.
As long as your kernel support tap/tun configs, you can use the VPN Widget. I use it with our cisco equipment at the hospital I work for. It works like a champ! You will need to get your information to get it to work properly but its the only one I have found so far to work out of the box (with the proper kernel).
As for the OP, being this is an old thread I sure he gave up- however if he was trying to RDP using the hostname, that is not possible (without hackery). Always use your IP until we have CIFS support. NetBIOS name are not resolved on a linux platform without it. I use RDP/VNC with my VPN over 4G almost daily.
Beating a dead horse
OK...First off, thank you to everyone for looking into this.
I'm a Network Engineer that has the pleasure of supporting a Cisco 3030 VPN Concentrator from the stone age. For those with Iphones we just give the Facutly/Staff the IPSEC/PSK and use the native VPN client and all is well.
The Androids (which I'm a die hard fan of) don't work....UNTIL version 4.0.x arrived.
There is an app called VPNCILLA (or for those rooted VPN WIDGET) that works with the old style concentrators. VPNCILLA has a 10 day trial, but afterward is a $4.95 one time fee.
They both work flawlessly and are easily setup.
Just wanted to pass the word in case the one person in the world out there is still trying to get it to work (like me).
Thanks
Shayne
Hello
I have installed OpenVPN and its logging on to the vpn and is visible on the network list BUT I dont get any connection to another client in the vpn. I tried to ping another client from my SGS2 and from a client to the SGS2 but its always a timeout. I tried it with the phone and serveral wireless networks.
So I think it could be a routing issue but I dont have a clue how to see if thats really the problem and if its true how to fix it. I read some other posts and maybe it could also be a tun.ko problem but the SGS2 with 2.3.3 should already have installed it on the software, so I'm not sure how to see if thats ok. The Busybox is installed at /system/xbin. So does anybody have an idea how to find out whats actually the problem and how to fix this?
Thanks for your help!
Manolo
It's not clear to me if you tried connecting through your mobile data plan. Did you also tried that?
What is the IP that you are getting when your are connected to the VPN?
If it something like 192.168.1.* Then that's could be your problem. If the WIFI your are on, also gives you an ip adress as 192.168.1.* then that causes the problem. Either change the ip range of your network to 192.168.10* (just an example) or the ip range of you VPN.
ps can you post your VPN server settings?
Do you mean my own ip or the ip that i have in the vpn?
my own edge telekom ip is 10.219.127.35 and my internal vpn ip is 10.10.0.22
I can't post my vpn server settings because i got some key files for the vpn.
If you have installed installed this .zip
http://forum.xda-developers.com/showthread.php?p=16182571#post16182571
Then all you need to do is download openvpn settings from the market. And run in.
If you already did these steps, then the problem lies probably with your server and I need the server config. I don't need the keys of course
Thx!
How does this update work? I see no instructions on the post. Is it just to copy on the root folder?
Ah yes... I found how it goes and its working perfectly!
Thx a lot!
Hi All,
I think I have finally cracked it. I have had this issue since getting my SG2 out of the box and i have read every forum possible for a solution. I mean i have tried everything until this:
Fix: This is for those people using their phone as a wifi hotspot that get a successful connection to their laptop or Tablet etc but cannot use the internet because of DNS issues. I.e, when connected to your laptop you establish a connection but get a limited connectivity warning.
Steps:
1. ensure you are on ICS
2. I want you to re download a fresh set of your APN's from telstra - http://configure.telstra.com.au/telstra/index.jsp (Follow your nose with this bit, you want the one that downloads all of them)
Now the fix!!
3. Go to Settings> more>mobile networks>access point names
4. Click on Telstra internet (telstra.iph)
5. Scroll down to APN Type
6. Type: default,supl,internet,dun
7. press menu then save
Your Done.
Your data notification will switch off and then back on in about 15 secs and away you go.
I really hope this helps those that have had this issue for ages.
Mewsik.
Hi,
I would be interested to see your feedback if this fix worked for you. I have had 2 work friends have the same issue and the above post fixed their wifi hotspot issue.
Cheers.
sorry to resurrect a super old thread, but i just want to say that this worked for me and thank you.
i am using openvpn and for some reason my "push dns" server rule was not applying to my phone. the computer kept pointing to my phone's ip as the dns resolver, but my phone was not resolving anything (most likely it was trying to resolve from localhost) but after i applied the above, openvpn push rules correctly applied and my computer now accepts the dns from my server automatically.
my setup:
openvpn server -> openvpn on phone -> usb tether -> computer
this way my computer's traffic is routed through openvpn on my phone so dont have to install it on my computer basically a portable vpn 'server'. this works for wifi as well so any clients that connect will also route through vpn.
Do you even have an I9100 ?
I can't believe they let this drag on this long without a fix. Upgrading to Kitkat was the worst mistake ever.
My VPN was flawless on 4.3 .... Someone please figure out how to downgrade back to 4.3.
Thanks OP for the info.
Total_Lag said:
sorry to resurrect a super old thread, but i just want to say that this worked for me and thank you.
i am using openvpn and for some reason my "push dns" server rule was not applying to my phone. the computer kept pointing to my phone's ip as the dns resolver, but my phone was not resolving anything (most likely it was trying to resolve from localhost) but after i applied the above, openvpn push rules correctly applied and my computer now accepts the dns from my server automatically.
my setup:
openvpn server -> openvpn on phone -> usb tether -> computer
this way my computer's traffic is routed through openvpn on my phone so dont have to install it on my computer basically a portable vpn 'server'. this works for wifi as well so any clients that connect will also route through vpn.
Click to expand...
Click to collapse
great, it also worked for me (Samsung S7, Proximus operator in Belgium), thanks!!!