If anyone is good with linux routing could you give me a hand.
I have my VPN running with VPN connection (not stock android, the vpnc clone). I would like to set up the routes so that anything going through _______.edu runs through tun0 while all other traffic is through eth0.
Is this possible on the droid. And if so, does anyone with routing experience know how I could do it?
Thanks
Related
Does anyone know of a ROM in which the PPTP VPN actually works? I've tried 6 or 7 different roms today and have yet to find one that works. Is this a Google issue, or something else? Surely some developer must have tested this function and can speak to whether or not the VPN works. I recall that in WINMO only a few roms had reliable VPN functionally, Mighty Mike and Silence come to mind. Just to be clear...here is what is generally happening; the VPN connects without a problem. The RAS server displays the connection and shows packets in and out. Some roms will not route one packet properly to the device. Others will appear to work great, pinging remote resources, but as soon as you try to do anything else, i.e. RDP, the connection crashes.
Thanks
On the original 2.1 you could connect a VPN and still surf the internet. Now with Froyo you can't. I've searched high and low for a setting in the GUI and on the file system and can't find anything that would allow me to turn off use of the VPN connection as the default gateway. Since many Market apps, in particular my Xtralogic RDP client, often check to make sure they are registered this new VPN "feature" renders all of these apps useless to those who use them through VPN tunnels.
Does anyone know where the settings for VPN connections are stored? Are they human readable? I did find one file in /system/etc/ppp that looks like a standard debian-like interface script, if-up-vpn, but it looks to be binary. However I am using an L2TP connection and can't find anything anywhere. Worst case, is there a way i modify the routing table on the fly? I'm used to UNIX-like manageability using the usual netstat/iptables/ifconfig kind of thing, but Android is far from what I'm used to and doesn't seem to be easily manhandled. Hopefully there is someone around here who knows how to Ginsu this back to normal. Thanks in advance!
Running the Virtuous 2.3 rom with 2.15 radio.
-M
I have 2 old PIX firewalls I can use, or I could could use OpenVPN inside WRT, or anything. I have nothing setup yet.
What's the easiest VPN for the EVO to hook to?
I'm running unrooted 2.2.
There is no PIX or OpenVPN support in Android. If you root and download "VPN Connections" you can connect to a PIX or OpenVPN server. I have connected to each. Make sure to read through the bug reports. The version I was using had a routing problem that had to be corrected in vpnc-script.
I've managed to get my evo to connect a winxp pro box set up as a pptp vpn server. but only if I disable encryption on the evo. which kind of defeats the purpose.
Basically, android VPN support is spotty at best. There is an epically long google code thread on the subject.
For the time being setting up an ssh server and using connectbot seems to the best way to securely access remote networks. It's far from perfect but it's the best solution I've seen.
Some people have reported vpn success using custom roms. But they are the exception. And setting up an ssh server is probably easier than tweaking a custom rom, IMHO.
This conversation is over my head, but Logmein Ignition owns my soul.
Thanks everyone.
I might have to root my EVO again(last one was rooted, but had to get a new EVO through warantee)
I setup the anyconnect client on my phone which works great. I can access internal web pages, ssh to internal devices. Problem is that if I launch the anyconnect client on the phone, and then wifi tether my laptop to the phone, the phone will not forward the traffic from the tethered device to the Anyconnect VPN.
FWIW, Wifi Tethering works fine without the Anyconnect.
Running Task650's 4.2.2 rom and the Anyconnect for root users on the phone.
-J
Same problem here. Any help would be appreciated!
it's probably a routing issue on the phone, but I haven't had a chance to look into it yet.
-J
bump.
bump. I will look into this. But can't post my help until I make 10 posts and get the ability to post links
Its a setting set by your administrator
The issue:
You might already know this but your network admin configured the app to prevent sharing of the connection. This is a common measure to prevent breaches in security. Looking at the Cisco AnyConnect release notes:
Cisco has qualified the AnyConnect VPN client over a bluetooth or USB tethered Apple iPhone only. Network connectivity provided by other tethered devices should be verified with the AnyConnect VPN client before deployment.
Click to expand...
Click to collapse
The WorkAround
How AnyConnect works on the android is the same as on a computer, which is documented on SuperUser.
So what we have to do is either, export the VPN profile to another VPN app, or change the variable in memory that prevents tethering of the AnyConnect VPN session.
This can be done using (while it wasn't created for this purpose) Game Gardian
Hi, I have a ASUS router loaded with DD-WRT. I have enabled PPTP server on my router. I wish to connect to my router using this PPTP VPN natively from my FTV.
I can connect fine from my Windows 8 machine (and my IPhone), but not from FTV. I understand FTV has been stripped of VPN modules. I am able to successfully connect to my OPENVPN server on the same router from my FTV using a few google play apps like Tun.KO, OpenVPN settings and OPENVPN installer.
I am wondering if there is way to accomplish the same thing for the PPTP? I did try the VpnRoot application, but it gives me an error. Important 2 lines are:
-- Creating PPPoX socket --
-- Socket() Address family not supported by protocol
I researched this error and it seems like FTV (as we already know) is missing pppox.ko (or pppol2tp??) kernel module. Now, there are places to download the supporting files to build this module. I am not sure how to proceed on that (build and install). Or if there is a simpler way to install this on FTV? From my understanding, building modules on linux has to be targeted to the kernel version... So, I am lost and any help is appreciated.
Any luck figuring this out with PPTP?
No, I haven't looked at it furthur. I don't have a linux box, but I did free up some space on my HD to install Fedora. But, I am planning to take a crack at it soon! It would be nice if RBox can include the PPTP support in his pre-rooted ROMs... Not sure how difficult that is for him (yes, its a copout :crying
This might not address your initial question directly, but you can use a script to change iptables on the router to VPN only the IP of the AFTV:
http://serverfault.com/questions/38...-hosts-route-through-openvpn-client-on-tomato
Mind you, this is for Tomato, but DD-WRT uses scripts too. I'm using it with Tomato Shibby BUT with OpenVPN not PPTP...cannot comment on the latter.
I tried a few VPN clients on AFTV, no dice.
Thanks. There was a wiki on dd-wrt on how to selectively route VPN traffic for certain hosts. But don't have a need for it. But it is a good learning post and potentially helpful to folks trying to use VPN to access US based services and not wanting to buy an extra router just for that. Much appreciated.