89.3. iPhone/iPad native IPsec VPN client with Main Mode

89.3.1. Checklist of parameters

This table show the parameters of iPhone/iPad native IPsec and their corresponding parameters in Abilis configuration.

Table 89.4. Checklist of parameters

The iPhone/iPad native IPsec parameterAbilis IKE TableAbilis IKE Table parameter
ServerHOSTLOC-IP
AccountHOSTXAUTH-USER
PasswordHOSTXAUTH-PWD
SecretPSKKEY

89.3.2. Configuring iPhone/iPad native IPsec VPN client

Suppose that Abilis is configured in the following way. Refer to Section 81.19.2, “How to configure a RAS using IPSEC VPN server with iPhone/iPad or Mac” for the configuration of IPsec and IKE resources.

[22:54:53] ABILIS_CPX:d ike host:1

-------------------------------------------------------------------------------
HOST: NAME:                              LIFETIME: HASH:     DPD:    DPD-ACTION:
      LOCIP:          NATT:   MODE:      MODE-CFG: DH:               DPD-DELAY:
      REMIP:          SIDE:   AUTH:      XAUTH:    CIPHER:   SA-TRY: DPD-TOUT:
      XAUTH-USER:                        XAUTH-PWD:
      -- PSK ID ---------------------------------------------------------------
      ID-TYPE:        IP:/ID:
      PEER-ID-TYPE:   PEER-IP:/PEER-ID:
      -- RSA Cert -------------------------------------------------------------
      CERT-SEND:      ASN1-DN:
      CERT-PEER:      PEER-ASN1-DN:
      CERT-VERIFY:
-------------------------------------------------------------------------------
1     iOS                                3600      SHA1      YES     STOP
      080.080.080.080 SYS     MAIN       REQUEST   MODP1024          30
      *               INSIDE  PSK        SERVER    AES256    3       120
      test                               ********
      -- PSK ID ---------------------------------------------------------------
      LOCIP           
      REMIP           
-------------------------------------------------------------------------------

[22:54:53] ABILIS_CPX:d ike psk:0

-------------------------------------------------------------------------------
PSK: KEY:     PEER-ID-TYPE:  PEER-IP:/PEER-ID:
-------------------------------------------------------------------------------
0    ******** ANONYMOUS      

[22:54:53] ABILIS_CPX:d ike cli:1

-------------------------------------------------------------------------------
CLI:  NAME:                                LIFETIME: ESP:        AH:
HOST: NET-LOC:           RULE:  PASSIVE:   PFS:      ESP-AUTH:   AH-AUTH:
      NET-REM:                  PERMANENT: TUNNEL:   ESP-CIPHER: MODE-CFG-DNS:
-------------------------------------------------------------------------------
1     iOS                                  28800     YES         NO
1     000.000.000.000/00 IPSEC  YES        NO        MD5         MD5
      192.168.100.205/32        YES        YES       AES256      SYS
-------------------------------------------------------------------------------

To configure an Apple iOS device for IPsec VPN connection with Abilis:

  • Click the Settings icon on your iOS device.

  • Then click General:

  • Click VPN:

  • Now click Add VPN Configuration:

  • Click Type and then select IPSec:

  • Now enter the configuration parameters:

  • Click Done in the upper-right corner and you should now see this screen:

  • Click the Not Connected slider button and wait for it say Connected. The VPN icon appears in the status bar to indicate that the connection is successful.

  • In the future, you can turn the VPN on/off very quickly by simply going to Settings > VPN and toggling the slider button.