Hey everyone.
short info:
me device is a routed htc desire on GingerVillain 3.3 (= Cyanogenmod 7.1).
I'm using the app ssh tunnel to establish a ssh tunnel to my server.
my goal is to use the "individual proxy"-setting which allows me to specify apps to use this proxy setting.
the problem is: the proxy setting doesn't work. (the global proxy setting doesn't work, too.)
when I use an additional proxy app everything's working fine.
is this cyanogenmod related? (iptable-support? - but e.g. droidwall works without problems)
hope you have some ideas
thx in advance!
Related
To access the Internet using Wifi I need to go through the proxy server of our organization. Usually in a Windows Desktop we configure to get the DNS server automatically and use a proxy.pac (some thing like: http: //SSS.SSS.SS.SSS/proxy.pac).
I have rooted my Xperia X10 mini and tried anProxy and TransProxy, but failed to go through the proxy server.
Is there any way out or work around to access the Internet through our proxy server?
Thanks in advance!
I know this is old, but this is an ongoing problem and I figured out how to use a .pac proxy file! After reading about proxy's and what .pac files are, I stumbled upon a little hint and after a little tinkering I was able to use my work's wifi that uses an auto-config .pac file and my phone and tablet has full internet access with browser, apps etc including Netflix for example.
Here are the steps you need:
1) Your phone has to be rooted to take advantage of the proxy apps on the market, I personally use ProxyDroid, which is free and has a feature to bind certain proxy profiles to automatically turn on when a certain wifi network is connected.
2) Usually there is an option that gives you an http proxy pac file to manually input to your browsers or what not, so whatever the link is, put it an active internet browser to download the pac file (an example of the url with the pac file would be something like http://internet.xxxxx.com/proxy.pac)
3) Where ever you download the pac file, open it with notepad or wordpad and this will reveal all the proxy info you need in order to access the proxy enable wifi. What the ProxyDroid app needs from the PAC file is the Host url and Port number. When you open a PAC file in notepad, you'll see something like this near the top along with a bunch of other things under it:
"Cisco Remote Envelope Service
if (dstHost=="internet.e-mail") {
return "PROXY internet-x-x.xxxxxx.com:9090""
- So in "Host" under Proxy Settings in the ProxyDroid app you would input: internet-x-x.xxxx.com
- For the "Port" you would put input: 9090
4) After inputting those 2 pieces of info into the ProxyDroid app, turn the wifi on for your Android Device then enable to ProxyDroid app, you should able to connect to the proxy enabled wifi!
*Some notes for the ProxyDroid app.
- It allows for Authentication, but since my work wifi does not use that, I'm not sure how it would work
- For Proxy type, I set it as an HTTP
- I binded the specific proxy profile to my work wifi so it would ProxyDroid would automatically enable when work wifi was detected
Hope this bit of info helps other that have Android devices and were unable to use a proxy enable wifi to finally access them. Hopefully in the future, Android will make using proxy and pac files a lot easier like how it's done on the ipad where they allow you to manually set up proxy settings by having the device download the PAC file.
This works on both a rooted AT&T HTC Inspire and a HP Touchpad running CM7 Alpha
This looks like a resolved issue, but if anyone else is reading this, there is an easier way. Check out Autoproxy on the market. You can add a new proxy, put in the address to the proxy.pac file, and it will connect to the current proxy.
That's also good if you're on a network where they keep changing the proxy (like the place I work).
Hello guys,
Another good and useful application that I found and was like a Christmas present for me. I always needed proxy configuration to browse the internet and I was not able to do it.
A while ago I started using SPQRom which has proxy configuration only for the default Android browser.
Today I found a new application that offers proxy functionality for Android devices.
If anyone is interested just download the application below. Install it. Give to it root access. Connect to your WiFi network. Start the application. Enter proxy configuration. AND.... HAPPY BROWSING.
Transparent Proxy Application
I am currently using the beta version and is working excellent.
Working with : SPQRom 0.7
Thanks!
Many thanks using it for school network
Works with cyanogenmod
Doesnt work at some places because the DNS does not resolve IPs outside the network. Is there a method to route the DNS resolution through proxy?
It will be nice if it is implemented.
I am having the same DNS problem. Many people claimed it working. I can only make the browser work to access IP addresses. No idea how other apps like market can work.
thx man like like like
Now I use proxydroid instead of this. https://market.android.com/details?id=org.proxydroid&hl=en Works better for me.
This could have been already covered elsewhere so if so, I apologize. VPN is a tough thing to search for being so short.
Anyways, trying to setup VPN access to my work network via my Atrix (HP Touchpad running AOKP too). I am new to the whole VPN thing, but as far as I can tell we are using IPSec, I access via cisco vpn client from my work laptop.
Running Nottachtrix 1.3.1, from the native VPN setting under wireless I cannot generate a connection. On my touchpad booting in webOS, I am able (I think) to connect to the VPN and enter all the parameters I have:
Address ##.###.###.###
group access name
group access code
domain
my personal login username and password
It says I am connected on the touchpad in webOS, but there is no field for group access name or access code in the android VPN settings. Is there a 3rd party client software I should use? Is this unsupported at this time?
This should be pretty straight forward if simple ipsec PSK (preshared key), you should just need the server name and preshared key (vpn password, not user password) to connect. when connecting, it should ask for your user credentials, which should map you to access groups (either locally on vpn device or LDAP mapping through RADIUS). Unfortunately there isn't nearly enough info to properly diagnose.
Sent from my MB860 using xda premium
Although, if you are required to enter group info, you will likely need another client such as cisco.
Sent from my MB860 using xda premium
I'm trying to setup IPSec VPN tunnel from SGS3 with stock 4.0.4 firmware to Wathguard XTM firewall. Watchguard has official support for using IOS inbuilt Cisco VPN client so I was thinking I might get it working with Android too.
I was following Watchguard guide to setup IPSec for IOS (which url I cannot paste here) and basically settings are following:
Phase 1:
Auth : SHA1
Encryption: AES-128
PFS Group 2
SA life 1h and DPD
Pre-Shared Key
Phase 2:
Type: ESP
Auth: Sha1
Encryption AES-128
Lifetime 1h
No PFS
And in addition theres Active Directory authentication. SGS3 connects to firewall but I get "WARNING: Rejected phase 1 aggressive mode from x.x.x.x to x.x.x.x (no matching policy)" to firewall log, so apparently therese problems with phase 1 configuration. I've checked shared key many times, so I was wondering if anyone knows which auth/Encryption/PFS should be working on Android client and is there any pitfalls should one know?
I too am seeking a work around for the lack of official support for VPN on Watchguard devices. I have an XTM5 and a SGS3 with 4.04 on it. There is a discussion thread here (i can't post a link, so remove the space) http ://community.spiceworks.com/topic/221632-vpn-access-to-xtm-and-xedge-devices-with-droid-or-ipad?page=2#entry-1532015 that is covering the same topic, and apparently some have been successful, but I cannot get any of the VPN types to work. PPTP connects but no network communication. IPSec doesn't connect, even when configured as the directions for iOS explain... Any feedback on the subject would be helpful.
IPSec on Android ICS
Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)
End_Bringer said:
Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)
Click to expand...
Click to collapse
Hello,
I faced the same issue for VPN connection to my watchguard.
Where could I find the AuthenTec VPN Client v2.5.1? Is it free ? Not avaiable from the editor's website.
Thanks for your return
It appears that the VPN client on the Samsung Galaxy S3 (USA, Verizon) is not available for other devices...
My phone connects fine, but I have many employees with other phones/tabs that may need this connection as well, so our IT team is in the process of testing out other VPN clients that we found in the google play store. Here is our starter list. We will report back here if we find one that works with our Watchguard settings. Let me know if you find one that works as well. Thanks!
Tigervpns VPN client
Tigervpns
NCP VPN Client (Trial)
NCP engineering
NCP VPN Client Premium (Trial)
NCP engineering
VpnCilla (Trial)
Matthias Meier
strongSwan VPN Client
strongSwan Project
Hi. I already test vpn cilla + npc vpn client without success. I will test rhe other one and let you know.
Thks
Sent from my GT-I9300 using xda app-developers app
I connected my sgs2 skyrocket to an x550e without problems though it didn't support encryption (gingerbread vpn is broken) haven't tried with my sgs3 (running ics) yet but might try tonight.
Sent from my SAMSUNG-SGH-I747 using xda premium
One of our guys got the Google Nexus Tablet with Android Jelly Bean (4.1.1) to work with the Watchguard XTM 5 - IPSec VPN.
He was using the Android built-in VPN client.
These were the settings he used:
ipsec exauth: psk
ipsec identifier: mobile
We tested all the apps that I previously listed and no success. It seems that some of them have a lot of settings, and maybe with more testing one of them might work... But I doubt it.
so after much testing, even with my new XTM515 (before i had a x550e - though i remember getting it working on that with no encryption....)
on my XTM515 i can get connected but cannot pass traffic....
i followed the steps on the watchguard document "Set up IPSec VPN connectivity from an Android device [Fireware XTM v11.5.x and higher" step by step.
now its time to play with it myself, if i get anywhere i'll let you know.
What im seeing is that i can connect, but no traffic is being sent (very few packets, if any.. i.e 1 packet here and there)
Opened a trouble ticket with watchguard and after a few days of troubleshooting still unable to get it working on a sgs3..
The official response now is that ipsec is broken on our phones..
WatchGuard was able to connect to my vpn with other android phones but they didn't have a sgs3 to test..
Then they sent me links of other people with other people having the exact same problem
Seems its samsung specific and not android specific. Not sure what samsung does to change ipsec... But it's broken...
With my ios device before I came over to the dark side, ipsec with the watchguard worked perfectly fine...
Sent from my SAMSUNG-SGH-I747 using xda premium
Downloaded the ncp vpn client (trial), imported wgx profile and everything works fine!
If all goes well over my next day or two of testing, going to buy the full version
Sent from my SAMSUNG-SGH-I747 using xda premium
waiters said:
Downloaded the ncp vpn client (trial), imported wgx profile and everything works fine!
Click to expand...
Click to collapse
Where can I find the wgx profle? I don't have in my "Watch Guard Mobile VPN with SSL" directory
rcravero said:
Where can I find the wgx profle? I don't have in my "Watch Guard Mobile VPN with SSL" directory
Click to expand...
Click to collapse
You need to generate it from policy manager..
Under vpn - mobile vpn - ipsec - press generate button
Also mobile vpn with SSL is not the same thing as ipsec and will not work
Sent from my SAMSUNG-SGH-I747 using xda premium
Curious if anyone else has experienced this issue? Since upgrading to android 4.3 roms, I have not been able to use my home proxy correctly. Connections to my proxy have been successful, in that, android still reports internet connection, however when using apps (that are blocked on my work wifi) are showing no connection. 4.2.2 roms all work fine.
The app I'm using is ProxyDroid however I also tried setting the proxy in native settings with the same result. Is there a change in the implementation of proxy services since 4.2 roms? Thanks in advance.
Maybe it will work with Drony or SandroProxy
http://forum.xda-developers.com/showthread.php?t=2320008
http://forum.xda-developers.com/showthread.php?t=1737138
unsivil_audio said:
Curious if anyone else has experienced this issue? Since upgrading to android 4.3 roms, I have not been able to use my home proxy correctly. Connections to my proxy have been successful, in that, android still reports internet connection, however when using apps (that are blocked on my work wifi) are showing no connection. 4.2.2 roms all work fine.
The app I'm using is ProxyDroid however I also tried setting the proxy in native settings with the same result. Is there a change in the implementation of proxy services since 4.2 roms? Thanks in advance.
Click to expand...
Click to collapse
Drony, is the wrong kind of proxy (server not client). SandroProxy isn't working either though (I mean in 4.3), however its very difficult to use; It's possible I screwed up setting it up (still was showing 'listening 127.0.0.1').
Drony is subset of SandroProxy so it acts the same way. You probably need just Drony.
http://code.google.com/p/sandrop/wiki/HowToUseDronyWithOtherProxy
unsivil_audio said:
Drony, is the wrong kind of proxy (server not client). SandroProxy isn't working either though (I mean in 4.3), however its very difficult to use; It's possible I screwed up setting it up (still was showing 'listening 127.0.0.1').
Click to expand...
Click to collapse
Interesting implementation. Perhaps I will try it again. I'm curious is there a widget for quickly connecting/disconnecting from proxy's? Unfortunately running through my house its not a very fast connection (one of the biggest reasons I went with ProxyDroid, there is a quick connect/disconnect).
Drony will go on if active wifi has proxy set on localhost 8020.
It goes off if wifi goes down.
What can you miss with Drony is that not all apps will work.
For example WhatsApp do not respect androiod os proxy settings.
To have all working you need rooted phone and SandroProxy.
It install his own local copy of iptables to redirect all traffic.
But has more features and it is harder to set up as you find out .
It is more a developer tool than a plain proxy.
There is some wizard to help you out.
And acts the same way as Drony listening if active wifi has proxy set that points to it.
unsivil_audio said:
Interesting implementation. Perhaps I will try it again. I'm curious is there a widget for quickly connecting/disconnecting from proxy's? Unfortunately running through my house its not a very fast connection (one of the biggest reasons I went with ProxyDroid, there is a quick connect/disconnect).
Click to expand...
Click to collapse