Questions about Android phones using SSL-VPN

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
LeeHS
Posts: 12
Joined: Thu Mar 02, 2023 6:10 am

Questions about Android phones using SSL-VPN

Post by LeeHS » Thu Mar 02, 2023 6:37 am

My mobile phone is Android 13 (Xiaomi 13), and the vpn option is only IKEv2/IPsec (MSCHAPv2, PSK, RSA). But no matter which one I choose, I have to enter the IPsec identifier. Therefore, IPsec or L2TP of SoftEther VPN cannot be used. Also, most VPNs like Open, L2TP are disabled by corporate firewalls. I have tried that the computer can use SoftEther VPN Client to connect to the server at home, so is there a way to make the mobile phone connect to the SoftEther VPN server in the same way?

shakibamoshiri
Posts: 285
Joined: Wed Dec 28, 2022 9:10 pm

Re: Questions about Android phones using SSL-VPN

Post by shakibamoshiri » Thu Mar 02, 2023 8:59 am

LeeHS wrote:
Thu Mar 02, 2023 6:37 am
so is there a way to make the mobile phone connect to the SoftEther VPN server in the same way?
Basically SE server supports:
- L2TP
- OpenVPN
- MS-SSTP
- WireGuard (in DE version)

Since new Android OS dropped legacy L2TP you are left with other protocols. On Android you can use SSTP and since SSTP is SSL-VPN's type you should not face FW issues in your network and should be able to bypass them.

shakibamoshiri
Posts: 285
Joined: Wed Dec 28, 2022 9:10 pm

Re: Questions about Android phones using SSL-VPN

Post by shakibamoshiri » Thu Mar 02, 2023 9:07 am

shakibamoshiri wrote:
Thu Mar 02, 2023 8:59 am
Basically SE server supports:
- L2TP
- OpenVPN
- MS-SSTP
- WireGuard (in DE version)

Since new Android OS dropped legacy L2TP you are left with other protocols. On Android you can use SSTP and since SSTP is SSL-VPN's type you should not face FW issues in your network and should be able to bypass them.
This solution is a direct connection from your phone to a SE server

Code: Select all

[ phone (sstp) ] =====> [ Server (sstp) ]
For any reason if you could not use SSTP on your phone, you can use second strategy as is explained bellow.
You can install SE server on a laptop of PC at work and enabling "cascade connection" to destination SE server. Then Add a hub and a user to the fist server and connect your phone to your laptop or PC. Since your phone does not have L2TP, you are left with OpenVPN or Wireguard (if using DE version).

Code: Select all

[ phone (ovpn/wg)  -----> SE server-1 (cc) ] =====> [ SE server-2 ]

shakibamoshiri
Posts: 285
Joined: Wed Dec 28, 2022 9:10 pm

Re: Questions about Android phones using SSL-VPN

Post by shakibamoshiri » Thu Mar 02, 2023 9:12 am

Neither of those solutions worked for you, you can try OpenConnect.
OpenConnect is an SSL-VPN server and has an unofficial android client. if you enable it PFS (Perfect Forward Secrecy) you can bypass most FWs.

- https://www.infradead.org/openconnect/index.html
- https://gitlab.com/openconnect/ocserv

LeeHS
Posts: 12
Joined: Thu Mar 02, 2023 6:10 am

Re: Questions about Android phones using SSL-VPN

Post by LeeHS » Thu Mar 02, 2023 10:50 am

shakibamoshiri wrote:
Thu Mar 02, 2023 9:12 am
Neither of those solutions worked for you, you can try OpenConnect.
OpenConnect is an SSL-VPN server and has an unofficial android client. if you enable it PFS (Perfect Forward Secrecy) you can bypass most FWs.

- https://www.infradead.org/openconnect/index.html
- https://gitlab.com/openconnect/ocserv
Well, things seem to be getting complicated and I need to spend some time looking into this. Thanks for your answer.

Post Reply