[Mobilepartners] Fwd: VPN without software [help.mit.edu #693062]

Sean Aidan Clarke saclarke at MIT.EDU
Thu Aug 28 11:00:39 EDT 2008 

Below is a message I sent to computing help.  I understand that it's
not supported, I wanted to add to their knowledge base in case there
is an eventual resolution.  They suggested I contact you.  Please let
me know if you have any suggestions on the VPN question.
Thanks,
Sean Clarke


---------- Forwarded message ----------
From: Sean Aidan Clarke <saclarke at mit.edu>
Date: Tue, Aug 26, 2008 at 5:30 PM
Subject: VPN without software [help.mit.edu #693062]
To: "computing-help at mit.edu" <computing-help at mit.edu>


I tried configuring IPSec (Cisco) VPN on the iPod touch--it has v.
2.0.2 of the software.
There are also options for L2TP / IPSec and PPTP type VPNs, but I
chose Cisco IPSec VPN since it seemed most similar to the desktop
software.

I used these settings:
server: vpn-public.mit.edu
username: saclarke
password: tried both entering it & "ask every time"
group name: MIT
shared secret: left blank because I didn't see it in the VPN
configuration file you referred me to

Before I installed certificates, this returned an error message like
"connection failed".
After installing personal certificates, I could turn on certificate
authentication in the VPN settings.
Now the error message says "fatal error" when I turn on the VPN.  Does
it matter that I am trying while connected to the wireless network on
campus?

Do you have any suggestions based on that information?  Is some
setting not correct or is there a shared secret I could enter?  Do I
need to enter that long hex password?

Also, lots of the known iphone/ipod touch issues are outdated.
# The MIT X.509 personal certificate does not work. iPhone users will
not be able to access secure MIT web sites, such web.mit.edu/ecat or
stellar.mit.edu, which require personal certificates.
I have not found this to be true even though it's on the known issues
page (http://itinfo.mit.edu/article.php?id=8740).

Thanks,
Sean

VPN settings list used for filling in the form on the ipod (only a few
lines used):

[main]
Description=MITnet VPN Connection
Host=vpn-public.mit.edu
AuthType=1
GroupName=MIT
GroupPwd=
enc_GroupPwd=FF6BBDFA8BA6D2B4028E6DE09A40E0CCE274EA857B31DA30AD8958C9E1DD300EB01D21FCB326B7EE00E0FC9ECC4BE894
EnableISPConnect=0
ISPConnectType=0
ISPConnect=
ISPCommand=
Username=
SaveUserPassword=0
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=1
MSLogonType=0
EnableNat=1
TunnelingMode=0
TcpTunnelingPort=10000
CertStore=0
CertName=
CertPath=
CertSubjectName=
CertSerialHash=00000000000000000000000000000000
SendCertChain=0
PeerTimeout=90
EnableLocalLAN=1

More information about the Mobilepartners mailing list