I use LightwaveRF home automation to control lights in the house. The published APIs specify human readable strings to be sent to UDP Port 9760 on the LRF device on the local network. I wrote a simple app to do this and it works fine on assorted Samsung phones, such as the Galaxy S8 with Android 7. When I run the app on my Mate 10 Pro with Android 8.0, there are no errors but the packets are apparently not sent. I have tried a few 'UDP Sender' apps and none of them work. Is this behaviour a bug or by design?
Please delete
I have found the answer. UDP sockets are working fine. The problem was with my network.
Related
I'm trying to setup IPSec VPN tunnel from SGS3 with stock 4.0.4 firmware to Wathguard XTM firewall. Watchguard has official support for using IOS inbuilt Cisco VPN client so I was thinking I might get it working with Android too.
I was following Watchguard guide to setup IPSec for IOS (which url I cannot paste here) and basically settings are following:
Phase 1:
Auth : SHA1
Encryption: AES-128
PFS Group 2
SA life 1h and DPD
Pre-Shared Key
Phase 2:
Type: ESP
Auth: Sha1
Encryption AES-128
Lifetime 1h
No PFS
And in addition theres Active Directory authentication. SGS3 connects to firewall but I get "WARNING: Rejected phase 1 aggressive mode from x.x.x.x to x.x.x.x (no matching policy)" to firewall log, so apparently therese problems with phase 1 configuration. I've checked shared key many times, so I was wondering if anyone knows which auth/Encryption/PFS should be working on Android client and is there any pitfalls should one know?
I too am seeking a work around for the lack of official support for VPN on Watchguard devices. I have an XTM5 and a SGS3 with 4.04 on it. There is a discussion thread here (i can't post a link, so remove the space) http ://community.spiceworks.com/topic/221632-vpn-access-to-xtm-and-xedge-devices-with-droid-or-ipad?page=2#entry-1532015 that is covering the same topic, and apparently some have been successful, but I cannot get any of the VPN types to work. PPTP connects but no network communication. IPSec doesn't connect, even when configured as the directions for iOS explain... Any feedback on the subject would be helpful.
IPSec on Android ICS
Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)
End_Bringer said:
Well, I finally got my Android Samsung Galaxy S3 (ICS) phone to connect to the Watchguard XTM 5 Firmware: 11.5.2 using IPSec. I followed the directions given by watchguard for connecting an IOS/OSX device. Then it was a matter of what VPN client to use. The default Android ICS VPN client under network settings would not work. I noticed that Samsung included a Third Party IPSec VPN client "AuthenTec VPN Client v2.5.1" (not able to find it in the Google Play store). This app did the trick with the default IPSec settings for Preshared Key IKEv1, with the Aggressive mode checked. My co-worker has the Samsung Nexus Tablet with Jellybean (4.1.1) and the native VPN tool works from that version, with default settings.
This discovery brings happiness and rejoicing to our entire IT team who all have Android phones or Tabs. I use 2X for RDP, (which works well), and "ES File Explorer" (free) for SMB file browsing. With these two tools I can do just about everything I did on my laptop. Anyone have better or more tools than these?
I have also tested IOS and Mac OSX 10.6.8 native VPN tool and they work well, as well as the original SSL client that has always worked.
WatchGuard should totally go public with this, many would benefit. It works great! (I wonder if there are some security holes that they are aware of that's preventing them from announcing Android support officially...)
Click to expand...
Click to collapse
Hello,
I faced the same issue for VPN connection to my watchguard.
Where could I find the AuthenTec VPN Client v2.5.1? Is it free ? Not avaiable from the editor's website.
Thanks for your return
It appears that the VPN client on the Samsung Galaxy S3 (USA, Verizon) is not available for other devices...
My phone connects fine, but I have many employees with other phones/tabs that may need this connection as well, so our IT team is in the process of testing out other VPN clients that we found in the google play store. Here is our starter list. We will report back here if we find one that works with our Watchguard settings. Let me know if you find one that works as well. Thanks!
Tigervpns VPN client
Tigervpns
NCP VPN Client (Trial)
NCP engineering
NCP VPN Client Premium (Trial)
NCP engineering
VpnCilla (Trial)
Matthias Meier
strongSwan VPN Client
strongSwan Project
Hi. I already test vpn cilla + npc vpn client without success. I will test rhe other one and let you know.
Thks
Sent from my GT-I9300 using xda app-developers app
I connected my sgs2 skyrocket to an x550e without problems though it didn't support encryption (gingerbread vpn is broken) haven't tried with my sgs3 (running ics) yet but might try tonight.
Sent from my SAMSUNG-SGH-I747 using xda premium
One of our guys got the Google Nexus Tablet with Android Jelly Bean (4.1.1) to work with the Watchguard XTM 5 - IPSec VPN.
He was using the Android built-in VPN client.
These were the settings he used:
ipsec exauth: psk
ipsec identifier: mobile
We tested all the apps that I previously listed and no success. It seems that some of them have a lot of settings, and maybe with more testing one of them might work... But I doubt it.
so after much testing, even with my new XTM515 (before i had a x550e - though i remember getting it working on that with no encryption....)
on my XTM515 i can get connected but cannot pass traffic....
i followed the steps on the watchguard document "Set up IPSec VPN connectivity from an Android device [Fireware XTM v11.5.x and higher" step by step.
now its time to play with it myself, if i get anywhere i'll let you know.
What im seeing is that i can connect, but no traffic is being sent (very few packets, if any.. i.e 1 packet here and there)
Opened a trouble ticket with watchguard and after a few days of troubleshooting still unable to get it working on a sgs3..
The official response now is that ipsec is broken on our phones..
WatchGuard was able to connect to my vpn with other android phones but they didn't have a sgs3 to test..
Then they sent me links of other people with other people having the exact same problem
Seems its samsung specific and not android specific. Not sure what samsung does to change ipsec... But it's broken...
With my ios device before I came over to the dark side, ipsec with the watchguard worked perfectly fine...
Sent from my SAMSUNG-SGH-I747 using xda premium
Downloaded the ncp vpn client (trial), imported wgx profile and everything works fine!
If all goes well over my next day or two of testing, going to buy the full version
Sent from my SAMSUNG-SGH-I747 using xda premium
waiters said:
Downloaded the ncp vpn client (trial), imported wgx profile and everything works fine!
Click to expand...
Click to collapse
Where can I find the wgx profle? I don't have in my "Watch Guard Mobile VPN with SSL" directory
rcravero said:
Where can I find the wgx profle? I don't have in my "Watch Guard Mobile VPN with SSL" directory
Click to expand...
Click to collapse
You need to generate it from policy manager..
Under vpn - mobile vpn - ipsec - press generate button
Also mobile vpn with SSL is not the same thing as ipsec and will not work
Sent from my SAMSUNG-SGH-I747 using xda premium
Hi,
I am just a Android user, but I believe my observations and questions are interesting and relevant to people in this forum.
I use a Samsung Galaxy A3 (2017) and wanted to use one of the many VLC remote control apps towards my Ubuntu computer that has a Qualcomm Atheros QCA9565 / AR9565 Wireless Network Adapter (Lite-on). Unfortunately none of them worked. All had network issues. I tried different ports and also used several browsers to access the http server of vlc directly, but even the browser had issues: it basically kept synchronised for 4 or 5 seconds, then lost synch and recovered only after roughly 15 seconds just to loose synch again after 4 or 5 seconds.
I checked the TCP connection. It did not break down. However, every 4th or 5th GET request got delayed by around 14 seconds.
I digged into it and found out that the A3 sends a TDLS Setup Request to the QCA9565, gets a TDSL Setup Response and then sends a TDLS Setup Confirm which is replied by the QCA9565 with a TDLS Teardown. After that, the connection between the two hosts is dead for about 14 seconds.
Other hosts in the network did not have such issues, but as far as I can see, they are also not using TDSL. So I suspect that some issues with TDLS between my Samsung A3 and my Ubuntu machine regularly interrupt the local WiFi connection between the two.
So now my question: Is it somehow possible to disable TDLS on my Android phone? Or are there any vlc remote apps around that somehow suppress TDLS for such local WiFi communcation?
Thanks
Michael
I am developing one android application for server emulation(like Online terminal) using SocketChannel(Java Native) for stream connection. But in the application I am trying to flush the output stream every time after I send the data to the server. When I am doing that The flush method taking 2 to 4 seconds for it's execution in Nougat and above. And I tested that scenario with 5 different mobiles. Also in Marshmallow I tested the same scenario in 2 different mobiles that's work fine.?
Note:Now I am using BufferedOutputStream for writing data to the server.
I have been tightening down the FW rules on my network allowing only known and need ports from my devices. I started noticed that my Pixel 2 keeps trying to connect to an Amazon aws server on port 1883. I haven't been able to determin what app uses that. Everything seems to work on the phone including all the messaging apps. Any idea of what uses that port?
Hi all
I've setup VPn tunnels to my office on my S9+. I've setup a PPTP from the built in client and IPsec and SSL from the Fortinet Client and none of them are working.
I'm sure that authentications are correct as I use same settings on my laptop running windows 10 and on a iPhone 7 plus.
Anyone with the same problem?
This might not help you exactly but there seems to be an issue with the stock ROM and VPNs. Adguard, which blocks ads via VPN, was also having the same issue and the devs have reported it to Samsung from what I understand. The fix will probably come during a later update since VPN issues are a bigndeal, especially for people who need to use their devices in a corporate environment.
My VPNs include one PPTP and one IPSec/PSK, and they both connect without issues on four different Verizon S9+ phones.
tasmaniandevil69 said:
Hi all
I've setup VPn tunnels to my office on my S9+. I've setup a PPTP from the built in client and IPsec and SSL from the Fortinet Client and none of them are working.
I'm sure that authentications are correct as I use same settings on my laptop running windows 10 and on a iPhone 7 plus.
Anyone with the same problem?
Click to expand...
Click to collapse
Same here, PPTP not working on my s9+. But IPSec/PSK working (slow speed)
Hi
same here . It's little different for me
PPTP work with S9 but in hotspot, i can't connect to PPTP VPN on my laptop with wifi of S9 !
There is a really problem with PPTP ...
I opened ticket here : https://forum.xda-developers.com/galaxy-s9/help/hotspot-vpn-pptp-issue-t3765773 !
New firmware for s9+ and s9
I m waiting new file for my s9.
Bug of vpn pptp is solved ?
not solved with last firmware ...
jpbl1976 said:
This might not help you exactly but there seems to be an issue with the stock ROM and VPNs. Adguard, which blocks ads via VPN, was also having the same issue and the devs have reported it to Samsung from what I understand. The fix will probably come during a later update since VPN issues are a bigndeal, especially for people who need to use their devices in a corporate environment.
Click to expand...
Click to collapse
Hola
I just wanted to give you a heads up that Adguard dev's have figured out a temporary workaround to make the their VPN ad blocking features stick. You'll need to check their forums for the actual setting (or use their nightly release which has the setting enabled by default). I have this setting enabled and now I am able to browse ad free for the most part without issues.
I've just update the phone and it's now working yet. Besides that the problem is even worst because I can't even connect VPNs on my laptop if using the phone as hotspot.
I've reported to Samsung and I'm waiting for a call and a remote assistence but if I can get a fix in a few days the phone will be returned because this is a big issue for my work.
tasmaniandevil69 said:
I've just update the phone and it's now working yet. Besides that the problem is even worst because I can't even connect VPNs on my laptop if using the phone as hotspot.
I've reported to Samsung and I'm waiting for a call and a remote assistence but if I can get a fix in a few days the phone will be returned because this is a big issue for my work.
Click to expand...
Click to collapse
I used this functionality fairly frequently with my (Verizon) S8+.
I've just completed about an hour of testing with my (Verizon) S9+.
I tried the USB tether, the Bluetooth tether, and the Hotspot networking on the phone. In each case I established a network connection to the public Internet without issue.
The VPN connections from my Windows 10 system, however - using that S9+ connection - all fail now with one exception.
The PPTP, L2TP/PSK and IKEv2 connections (that all work[ed] with my S8+) will not connect using my S9+.
The one exception is the Microsoft-specific SSTP variant, which tunnels over port-443. That one will connect with the S9+ in all three networking scenarios - USB, bluetooth and Hotspot WiFi.
This seems to indicate that the new phone does not pass TCP port 1723 and/or GRE 47 (PPTP) and UDP ports 500 and/or 4500 (L2TP and IKEv2) through it's network tethering and the WiFi connections.
Bummer.
At least I can still use SSTP to get to my server resources - which is 90% of my VPN needs anyway - but the other connections are dead now.
Connections FROM the phone, using it's built-in PPTP and L2TP profiles to host networks, continue to work properly on the S9+ -- as they did on the S8+.
afh3 said:
I used this functionality fairly frequently with my (Verizon) S8+.
I've just completed about an hour of testing with my (Verizon) S9+.
I tried the USB tether, the Bluetooth tether, and the Hotspot networking on the phone. In each case I established a network connection to the public Internet without issue.
The VPN connections from my Windows 10 system, however - using that S9+ connection - all fail now with one exception.
The PPTP, L2TP/PSK and IKEv2 connections (that all work[ed] with my S8+) will not connect using my S9+.
The one exception is the Microsoft-specific SSTP variant, which tunnels over port-443. That one will connect with the S9+ in all three networking scenarios - USB, bluetooth and Hotspot WiFi.
This seems to indicate that the new phone does not pass TCP port 1723 and/or GRE 47 (PPTP) and UDP ports 500 and/or 4500 (L2TP and IKEv2) through it's network tethering and the WiFi connections.
Bummer.
At least I can still use SSTP to get to my server resources - which is 90% of my VPN needs anyway - but the other connections are dead now.
Connections FROM the phone, using it's built-in PPTP and L2TP profiles to host networks, continue to work properly on the S9+ -- as they did on the S8+.
Click to expand...
Click to collapse
That is the Snapdragon version? Does it have a special ROM from Verizon or is the stock Samsung?
Maybe that is the difference
tasmaniandevil69 said:
That is the Snapdragon version? Does it have a special ROM from Verizon or is the stock Samsung?
Maybe that is the difference
Click to expand...
Click to collapse
Stock Verizon (SD845 8.0) S9+ compared with a stock Verizon (SD835 7.0) S8+. I suppose the difference might be explained by going from Android 7 to Android 8, but I have no way of testing that hypothesis at this time.
(The last phone I modified was a 2013 Motorola RAZR. I've subsequently switched to using my phones as phones, rather than as a hobby. )
If someone has a different experience with employing a networked platform's VPN while using a similar phone in a tethered or hotspot configuration, it would interesting to know.
My own successes with the phone's built-in VPN (PPTP and L2TP) - as separate from the scenario described above -
apparently differ from those of others in this thread for reasons I cannot explain.
I'm in the same boat - a new S9 and can't connect to my work VPN when using the phone as a hotspot. It works fine on S8 and Iphones. Does anyone know how to fix this? This is a critical issue for me as I work remotely quite a bit.
julianskipworth said:
I'm in the same boat - a new S9 and can't connect to my work VPN when using the phone as a hotspot. It works fine on S8 and Iphones. Does anyone know how to fix this? This is a critical issue for me as I work remotely quite a bit.
Click to expand...
Click to collapse
I think there is no fix yet. I had someone from Samsung support connected to my S9 last Tuesday and they could not find anything so they escalated the problem inside Samsung but until now no further news.
S9+ work with IPSEC!
My Samsung S9+ work with IPSEC - tested on Andoid version 8.0.0..
grube007 said:
My Samsung S9+ work with IPSEC - tested on Andoid version 8.0.0..
Click to expand...
Click to collapse
What CPU does it have? Is it unlocked or from what network/provider is it?
tasmaniandevil69 said:
What CPU does it have? Is it unlocked or from what network/provider is it?
Click to expand...
Click to collapse
CPU - Exynos 9810 - 2,7 GHz, its on Croatian network - T-Com ( T-mobile ) - locked.
New update in germany : G960FXXS1ARD1
Maybe a good patch ...
My S9 unlocked (SD) can connect to my L2TP/Ipsec VPN but disconnects within a minute or so (even if the connection is under constant use.) I have another Anrdoid 7 device (and a Windows 10 laptop) that has no problem with the same VPN/router/WiFi combination and can stay connected for hours. I don't know how to escalate this with Samsung in a way where they just don't blame my other hardware.
https://eu.community.samsung.com/t5/Galaxy-S9-S9/VPN-PPTP-Broken-with-HotSpot-Galaxy-S9/td-p/522153