Community discussions

MikroTik App
 
marcmerz
newbie
Topic Author
Posts: 26
Joined: Wed Jul 20, 2016 11:31 am

IOS 14.7 suddenly breaks VPN connectivity  [SOLVED]

Tue Sep 07, 2021 8:05 pm

I am not able to connect to ROS 6.48.3 (and .4).

I don’t know when this happened but I was using VPN from both LTE and WLAN until just recently.

This is major issue as I have no access to my documents when traveling.
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 11967
Joined: Tue Feb 25, 2014 12:49 pm
Location: Italy
Contact:

Re: IOS 14.7 suddenly breaks VPN connectivity

Tue Sep 07, 2021 8:11 pm

Reboot iOS and retry
 
marcmerz
newbie
Topic Author
Posts: 26
Joined: Wed Jul 20, 2016 11:31 am

Re: IOS 14.7 suddenly breaks VPN connectivity

Tue Sep 07, 2021 8:26 pm

That makes no difference.

I tried the whole day to connect via L2TP/IPSec and Phase 2 does not get esrablished.

Then I set up IKEv2 using certificates following a MUM tutorial on YouTube. Both Phase 1 and Phase 2 get established but iOS still does not show connected.

I have no clue what happened since Apple invented iOS 14.5 and up.

I thought it could be linked to the APN which is internet.v6.telekom but it does not work when I am logged into a wlan away from home either.

VPN connectivity is a key factor in my daily business and I am just puzzled (I do have a static IPv4 with my router at home).
 
marcmerz
newbie
Topic Author
Posts: 26
Joined: Wed Jul 20, 2016 11:31 am

Re: IOS 14.7 suddenly breaks VPN connectivity

Tue Sep 07, 2021 9:00 pm

What rules do I need in the firewall and are there any specific NAT rules I have to check?

My RB4011 handles two other VPN connections without problems (I use the RB4011 as a client to connect to a Windows Server 2019) and there is a VPN connection using xauth and certificates to a LiSS 3000.

My iPhone can connect to the same LiSS without any problems for years.

So this issue must be Mikrotik specific.

P.S.: How can disable the SHA-256 compatible mode (96 bit) on ROS?
 
marcmerz
newbie
Topic Author
Posts: 26
Joined: Wed Jul 20, 2016 11:31 am

Re: IOS 14.7 suddenly breaks VPN connectivity

Wed Sep 08, 2021 8:18 am

Out of nowhere the VPN connection via L2TP/IPSec from WLAN is working again - I use the IPSec feature from L2TP server.

Via LTE it does not and the difference is:

When I connect from WLAN the iPhone has the IPv4 address of the Router and no IPv6 address.

Via LTE it has an IPv6 address and an IPv4 address and this is the only obvious difference I can see.

It connects with its IPv4 address in both cases but it seems packets are not reaching the iPhone when I connect via LTE.

If this was just a provider issue, it should have caused much more noise and i couldn’t connect to the LiSS 3000 i mentioned above.
 
marcmerz
newbie
Topic Author
Posts: 26
Joined: Wed Jul 20, 2016 11:31 am

Re: IOS 14.7 suddenly breaks VPN connectivity

Wed Sep 08, 2021 8:59 am

The solution is as simple and embarrassing as it can get:

I use a FRITZ!box as a cable modem and IPv6 was disabled on that box. For some reason I was able to connect via LTE for quite a while though.

After enabling IPv6 on the FRITZ!box again I can instantly connect both from LTE via L2TP/IPSec and also via IKEv2.

Who is online

Users browsing this forum: BinaryTB, GoogleOther [Bot], rplant and 72 guests