We have moved to a new Sailfish OS Forum. Please start new discussions there.
12

[2.1.0.9] VPN config for Fritzbox?

asked 2017-02-23 14:50:55 +0200

mosen gravatar image

updated 2017-02-23 14:53:01 +0200

Has someone accomplished to connect to Fritzbox IPsec VPN? I tried the vpnc option offered by the new Settings UI VPN Config but had no luck with connecting. Could someone who has a running setup translate Fritzbox Android instructions -> Sailfish VPN UI settings?

If the UI is broken, instructions how to configure vpn from cli would be an appreciated workaround.

edit retag flag offensive close delete

2 Answers

Sort by » oldest newest most voted
5

answered 2017-02-23 15:21:27 +0200

As stated in the release notes IPSec is not yet supported by the build-in VPN feature. Hopefully it will come in a following release.

edit flag offensive delete publish link more

Comments

Ok, thanks! Lets keep this open, i will add instructions when the feature gets implemented.

mosen ( 2017-02-23 17:24:32 +0200 )edit
2

Yes I'd like to be able to connect to my FritzBox VPN too.

The command-line tool vpnc seems to be available from the console:

[nemo@Sailfish ~]$ vpnc --version
vpnc version 0.5.3
Copyright (C) 2002-2006 Geoffrey Keating, Maurice Massar, others
vpnc comes with NO WARRANTY, to the extent permitted by law.
You may redistribute copies of vpnc under the terms of the GNU General
Public License.  For more information about these matters, see the files
named COPYING.
Built without openssl (certificate) support.

Supported DH-Groups: nopfs dh1 dh2 dh5
Supported Hash-Methods: md5 sha1
Supported Encryptions: null des 3des aes128 aes192 aes256
Supported Auth-Methods: psk psk+xauth

So maybe this guide could work: Raspberry Pi als VPN Client an Fritzbox mit ipsec

I'm currently not at home to test it myself.

scharelc ( 2017-02-23 17:34:14 +0200 )edit
1

I've just tried the above guide. It seems to be impossible because of the missing IPv6 support of Sailfish.

scharelc ( 2017-02-25 15:42:33 +0200 )edit
3

answered 2017-09-24 17:24:42 +0200

Dietmar gravatar image

I'm successfully using the vpnc client from here: https://talk.maemo.org/showthread.php?t=92338 (binary and instructions are right in post #1.

edit flag offensive delete publish link more

Comments

very cool! did you compile a specific version like described in the post or use recent stock supplied version from 2.1.x?

mosen ( 2017-09-24 22:45:50 +0200 )edit
2

I've just downloaded and unpacked the vpnc.zip archive that is attached to the linked post #1.

The stock supplied version is probably still the old one from 2008 which does not have the patches. I did not try that one recently, but the version number it reports is still the old one.

/usr/sbin/vpnc --version
vpnc version 0.5.3

The version compiled by meShell does not report a version number:

[root@Sailfish nemo]# ./vpnc --version
vpnc version
Dietmar ( 2017-09-24 23:03:15 +0200 )edit

Thanks again for the hint! will try and report back by editing original post.

mosen ( 2017-09-24 23:31:07 +0200 )edit

can you write an easy step by step howto for us :)

cvp ( 2017-11-07 00:01:25 +0200 )edit

Basically, all instructions are in the linked post. But it is mixed with info about e.g. compiling, which is not required for you as user.

So:

  • you need to be root, I think
  • download the vpnc binary from https://talk.maemo.org/showthread.php?t=92338
  • (it's the file vpnc.zip at the end of the post)
  • unpack the file and make it executable
  • create/edit the file /etc/vpnc/default.conf
  • start vpnc and set route

Unpack and make executable:

unzip vpnc.zip
chmod +x vpnc

Create / edit the config file:

nano /etc/vpnc/default.conf

Contents of /etc/vpnc/default.conf:

IPSec gateway server.domain
IPSec ID yourusername
IPSec secret yoursecret
IKE Authmode psk
Xauth username yourusername
Xauth password yourpassword

Replace server.domain, yourusername, yoursecret and yourpassword with your values.

I think you get the secret when you set up the VPN in the Fritzbox. server.domain is the name under which your box is reachable from the internet. It could be an IP address, a real host name or one from a DynDNS service.

To start vpnc:

./vpnc
ip route add 192.168.0.0/24 dev tun0
Dietmar ( 2017-11-07 00:32:46 +0200 )edit
Login/Signup to Answer

Question tools

Follow
10 followers

Stats

Asked: 2017-02-23 14:50:55 +0200

Seen: 2,442 times

Last updated: Sep 24 '17