Sign in with
Sign up | Sign in
Your question

PPC 2003 VPN client that works with Linksys?

Last response: in Networking
Share
Anonymous
November 15, 2004 8:37:03 PM

Archived from groups: comp.dcom.vpn,microsoft.public.pocketpc.wireless (More info?)

Does anyone know of a VPN client for PPC 2003 that will connect with a
Linksys BEFVP41 VPN router? I'm trying to setup so that I can use the
PPC to get to file servers and the desktop it syncs with while I'm on
the road.

I had Movian VPN for 2002, but never _quite_ got it configured to work
right ... but now that I've upgraded the device to 2003, the Movian 2002
client sends it into a deadlock that requires a hard reset if I install
it. And, Certicom has dropped all support of Movian, so I have no way
of getting Movian VPN 2003 for trial, let alone getting a license for
it. The Apani client is for Nortel Contivity only and doesn't seem to
like the Linksys at all. What are my other options, if any?

TIA!

-- Chris
________*________ Chris Barnabo, chris@spagnet.com
____________ \_______________/ http://www.spagnet.com
\__________/ / /
__\ \_______/ /__ "The heck with the Prime Directive,
\_______________/(- let's destroy something!"
Anonymous
November 16, 2004 3:39:18 PM

Archived from groups: comp.dcom.vpn,microsoft.public.pocketpc.wireless (More info?)

In article <1100577740@i'm.home.with.u>, i'm@home.with.u says...
> Sorry but there's nothing available. I used to use a vp41 that I had
> working with movian but that was some versions ago under pocketpc 2002.

I've had some success ... I got a pointer from Steve Wilson that
Worldnet21 has taken over the Movian VPN products from Certicom as of
11/1, and I was able to get a copy of Movian for PPC 2003 from their
site (www.worldnet21.com). It installed fine on the (upgraded to PPC
2003) Samsung.

Now I'm back to the same problems I had with Movian 2002 ... I can
"touch" the BEFVP41 router, but the VPN negotiation is failing. I'm no
IPSEC expert, maybe I'm overlooking something obvious?

On the Linksys BEFVP41, the settings are as follows:

Tunnel 3 (PPC Inbound) enabled
Local secure group Subnet (192.168.1.0 255.255.255.0)
Remote Secure Group Any, Remote Secure Gateway Any
Encryption DES
Authentication MD5
Key management Auto. (IKE)
PFS _NOT_ enabled
Pre-shared key <set to a test password>
Key lifetime 3600
Advanced settings:
Phase 1:
Aggressive mode enabled, no username
Proposal 1 DES/MD5 grp 768-bit keylife 28800 seconds
(3 additional proposals are also used in main mode, they are
DES/MD5/768, 3DES/SHA/1024 and 3DES/MD5/1024)
Phase 2:
DES/MD5 PFS OFF grp 768-bit keylife 3600 seconds

Keep-Alive option enabled

On the PPC, the settings are as follows:
Policy name: Home Net
Device: Cylink Nethawk (linksys isn't an option)
Gateway address (set to proper numeric IP)
Split tunnelling & PFS are disabled

User password set to same value as Linksys preshared key
SA life: 1 hour
Protected network: 192.168.1.0 255.255.255.0
IKE suite:
Group GRP1_DH-768
Cipher: DES_CBC
Hash: MD5
DNS/WINS: Query DNS/WINS/Domain
IPSec Suite: ESPIP_DES_MD5-96

Upon trying to connect, here's what I get in the logs:

On the Linksys:
00:00:34 IKE[71] Rx << AG_I1 : 166.180.255.195 SA, KE, NONCE, ID
00:00:34 IKE[71] ISAKMP SA CKI=[dda7c509 ad48f1cd] CKR=[c73c6b9d
c0b4dcfb]
00:00:34 IKE[71] ISAKMP SA DES / MD5 / PreShared / MODP_768
00:00:34 IKE[71] Tx >> AG_R1 : 166.180.255.195 SA, KE, Nonce, ID, HASH

On the PPC status window:
Exchanging Keys, please wait ...
Failed to receive reply!

=== Error Negotiation Failed ===

In the PPC's IKE Log:
Negotiating Tunnel.
Initiating Aggressive Mode
Waiting for AM reply
Processing Aggressive Mode Response
Error: SA payload
Bad ISAKMP payload!
Recv error, resending ...
No reply, resending ...
=== Failed ===





-- Chris
________*________ Chris Barnabo, chris@spagnet.com
____________ \_______________/ http://www.spagnet.com
\__________/ / /
__\ \_______/ /__ "The heck with the Prime Directive,
\_______________/(- let's destroy something!"
Anonymous
November 17, 2004 11:02:39 AM

Archived from groups: comp.dcom.vpn,microsoft.public.pocketpc.wireless (More info?)

Chris Barnabo wrote:
> Does anyone know of a VPN client for PPC 2003 that will connect with a
> Linksys BEFVP41 VPN router? I'm trying to setup so that I can use the
> PPC to get to file servers and the desktop it syncs with while I'm on
> the road.
>
> I had Movian VPN for 2002, but never _quite_ got it configured to work
> right ... but now that I've upgraded the device to 2003, the Movian 2002
> client sends it into a deadlock that requires a hard reset if I install
> it. And, Certicom has dropped all support of Movian, so I have no way
> of getting Movian VPN 2003 for trial, let alone getting a license for
> it. The Apani client is for Nortel Contivity only and doesn't seem to
> like the Linksys at all. What are my other options, if any?
>
> TIA!
>
> -- Chris
> ________*________ Chris Barnabo, chris@spagnet.com
> ____________ \_______________/ http://www.spagnet.com
> \__________/ / /
> __\ \_______/ /__ "The heck with the Prime Directive,
> \_______________/(- let's destroy something!"

I don't think it exists, yet. You may want to check with Apani, I think
they would be most likely to come out with something.

Steve H.
http://apani.com/products.html
Anonymous
November 26, 2004 3:46:58 PM

Archived from groups: comp.dcom.vpn,microsoft.public.pocketpc.wireless (More info?)

Chris Barnabo wrote:

> Does anyone know of a VPN client for PPC 2003 that will connect with a
> Linksys BEFVP41 VPN router?

I have seen the NCP Secure Client connect to a Astaro Linux VPN server.
The Linksys is also based on Linux. A trial copy of NCP is available at:

http://www.ncp.de/english/home/index.html

Jacco
--
Jacco de Leeuw mailto:jacco2@dds.mil
Zaandam, The Netherlands http://www.jacco2.dds.nl
Please note: my real e-mail address is not shown, due to spam.
(Hint: I'm *not* in the military but in the Netherlands...)
!