| 90.6. Android native VPN Client with IKEv2 Mode | ||
|---|---|---|
 | Chapter 90. IPsec clients |  |
| 90.6. Android native VPN Client with IKEv2 Mode | ||
|---|---|---|
| | Chapter 90. IPsec clients | |
This table show the parameters of native VPN Client and their corresponding parameters in Abilis configuration. The information must be inserted in a “mirror” way: i.e. “LOCAL” information for Abilis are “REMOTE” for IPsec VPN client and vice versa.
Table 90.7. Checklist of parameters
| The native VPN client parameter | Abilis IKE Table | Abilis IKE Table parameter |
|---|---|---|
| Server address | HOST | LOC-IP |
| IPSec identifier | HOST | PEER-ID |
| IPsec pre-shared key | PSK | KEY |
Please enter the following commands to configure the VPN in Abilis. Refer to Section 83.19.1, “How to configure a RAS using IPSEC VPN server” to for the configuration of IPsec and IKE resources.
[14:51:53] ABILIS_CPX:a ike host:1 mode:ike2 locip:80.80.80.80 remip:* side:inside hash:sha256 ID-TYPE:locip peer-id-type:key-id peer-id:android name:Android_IKE2COMMAND EXECUTED [14:55:35] ABILIS_CPX:a ike cli:1 host:1 net-loc:0.0.0.0/0 net-rem:10.0.2.1/32 pfs:no name:Android_IKE2_CliCOMMAND EXECUTED [14:55:44] ABILIS_CPX:a ike psk:1 key:24android20ike2pskey peer-id-type:key-id peer-id:androidCOMMAND EXECUTED
![[Caution]](../images/caution.png) | Caution |
|---|---|
To activate the changes made, execute the initialization command init res:ike. |
To view the configuration made above, use the following commands.
[14:57:49] ABILIS_CPX:d ike host:1 -cli------------------------------------------------------------------------------- HOST: NAME: LIFETIME: HASH: DPD: DPD-ACTION: LOCIP: NATT: MODE: MODE-CFG: DH: DPD-DELAY: REMIP: SIDE: AUTH: AUTH2: CIPHER: SA-TRY: DPD-TOUT: AUTH2-USER: AUTH2-PWD: -- ID ------------------------------------------------------------------- ID-TYPE: IP:/ID: PEER-ID-TYPE: PEER-IP:/PEER-ID: -- RSA Cert ------------------------------------------------------------- CERT-SEND: ASN1-DN: CERT-PEER: PEER-ASN1-DN: CERT-VERIFY: ------------------------------------------------------------------------------- 1 Android_IKE2 3600 SHA256 YES STOP 178.168.028.120 YES IKE2 MODP2048 30 * INSIDE PSK NO AES256 3 120 -- ID ------------------------------------------------------------------- LOCIP KEY-ID android ------------------------------------------------------------------------------- IKE Clients: ------------------------------------------------------------------------------- CLI: NAME: LIFETIME: ESP: AH: HOST: NET-LOC: RULE: PASSIVE: PFS: ESP-AUTH: AH-AUTH: NET-REM: PERMANENT: TUNNEL: ESP-CIPHER: MODE-CFG-DNS: ------------------------------------------------------------------------------- 1 Android_IKE2_Cli 28800 YES NO 1 000.000.000.000/00 IPSEC YES NO SHA1 SHA1 010.000.002.001/32 YES YES AES256 SYS ------------------------------------------------------------------------------- [14:57:52] ABILIS_CPX:d ike psk:1------------------------------------------------------------------------------- PSK: KEY: PEER-ID-TYPE: PEER-IP:/PEER-ID: ------------------------------------------------------------------------------- 1 ******** KEY-ID android
To configure an Android native VPN Client for IPsec VPN connection with Abilis, follow the screen below :
Open your device's Settings app.
Click on Connections.
Click on More connection settings.
Hit VPN.
Tap the three dots in the upper right corner and hit “Add VPN Profile”and Enter the VPN information.
Click Save.
Now that your VPN is set up, you can connect to it by tapping on the VPN name in the VPN section of Connections. After that, tap Connect.
A notification will appear indicating that you are connected.
| |  | |
| 90.5. iPhone/iPad native IPsec VPN client with IKEv2 Mode |  | 90.7. Android NCP VPN Client with Main Mode |
![[Tip]](../images/tip.png)