Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[ScreenOS] Apple iPhone and iPad is having problems creating an IPSec tunnel to a Juniper firewall

0

0

Article ID: KB9923 KB Last Updated: 26 Apr 2016Version: 8.0
Summary:

Can an IPSec tunnel be established between the Juniper firewall and an Apple iPhone or iPad?

Symptoms:

Apple iPhone and iPad is having problems creating an IPSec tunnel to a Juniper firewall.

Solution:

IPSec to Apple iPhone and iPad is not supported. 

IPhone and iPad IOS lacks the following configuration parameters required for IPSec Interop:

  • Does not support configurable client id.  Lacks the capability to pass default identity information such as macuser@localhost
  • Supports static IP address for IPSec negotiation.  Static IP address assignment to VPN users is not feasible.


While IPSec using IKE-V1 does not work with Apple IPad/IPhone, it is possible to build an IKE-V2 tunnel between these devices and a ScreenOS firewall. Please refer to the TechWiki article on How to establish VPN connection between Apple iPhone/iPA​D and ScreenOS SSG devices.  You must have Apple iOS 9.x installed and have access to an Apple MAC to prepare an Apple VPN profile.

Note: The above referenced TechWiki article is a 'known working document' between a Juniper product and a third party. The code design may be changed by the 3rd party vendor at any point, so it may affect the proposed solution.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search