Community discussions

 
ik3umt
Member Candidate
Member Candidate
Topic Author
Posts: 248
Joined: Tue Jul 08, 2014 3:58 pm

IPsec tunnel between Apple iOS and RouterOS

Tue Mar 15, 2016 1:23 pm

I have few Apple iOS devices configured using the native Cisco VPN client to establish a IPsec tunnel with a Cisco router

This Cisco router has been replaced with a RouterOS device

Can I setup this last one to bring up IPsec tunnel again without change iOS devices settings or VPN mode ?
PPTP native iOS vpn work like a charm with RouterOS but i don't want to use it.

Just for information, iOS configuration ask for :

a username (user1)
a password (password1)
a group name MYVPNGROUPNAME
a secret 123456

working cisco config :

aaa authentication login vpn_xauth_ml_1 local
aaa authentication login sslvpn local
aaa authorization network vpn_group_ml_1 local

username user1 secret password1 (encrypted...)

crypto isakmp client configuration group MYVPNGROUPNAME
key 123456
dns 192.168.0.1
pool VPN-Pool
acl 120
max-users 5

crypto isakmp profile vpn-ike-profile-1
match identity group MYVPNGROUPNAME
client authentication list vpn_xauth_ml_1 local
isakmp authorization list vpn_group_ml_1 local
client configuration address respond
Virtual-Template2

interface Virtual-Template2 type tunnel
ip unnumbered Vlan1
tunnel mode ipsec ipv4
tunnel protection ipsec profile VPN-Profile-1

crypto ipsec profile VPN-Profile-1
set transform-set encrypt-method-1

crypto ipsec transform-set encrypt-method-1 esp-3des esp-sha-hmac







Is there any documentation or help about ??
 
ik3umt
Member Candidate
Member Candidate
Topic Author
Posts: 248
Joined: Tue Jul 08, 2014 3:58 pm

Re: IPsec tunnel between Apple iOS and RouterOS

Tue Mar 15, 2016 6:31 pm

Briefly, what I don't understand is the corresponding configuration part named "group" in cisco:

crypto isakmp client configuration group MYVPNGROUPNAME
key 123456
dns 192.168.0.1
pool VPN-Pool
acl 120
max-users 5



is this something cisco-proprietary i cannot reproduce in RouterOS ??

Thank you

Who is online

Users browsing this forum: No registered users and 76 guests