We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Configure Android Devices for Client-to-Site IPsec VPN Connections

  • Last updated on

For instructions how to more easily configure and manage a client-to-site VPN using CudaLaunch as the VPN client, see CudaLaunch and F-Series Firewall Configuration for CudaLaunch.

To connect to a client-to-site VPN with an Android device, you can either manually configure the built-in IPsec VPN client, or use the TINA client included in CudaLaunch for Android. The native Android IPsec VPN client supports IPsec, L2TP, and PPTP VPNs for Android version 4.0 and higher. Devices with Android version 2.3 are limited to PPTP and L2TP. Follow the steps in this article to configure an Android device to connect to a client-to-site IPsec VPN with X.509 certificates and XAUTH authentication.

Client2SiteAndroid.png

In this article:

Set Up Certificates on the Android Device

  1. Copy the certificates to the Android device's internal storage.
  2. Tap Settings > Security > Install from Storage.
  3. Tap the root certificate.
  4. Enter a Certificate Name and select VPN and apps
  5. Click OK.
  6. If prompted, enter your PIN or unlock pattern. A message stating, "Root CA installed" appears briefly at the bottom of the screen.
  7. Enter a Certificate Name and select VPN and apps.
  8. Click OK to install the certificate. 

The certificate appears under the User tab at Settings > Security > Trusted Credentials.

Set Up the Android VPN Client

  1. Tap Settings.
  2. In the Wireless & Networks section, tap More.
  3. Tap VPN.
  4. Add the VPN by tapping the plus sign (+) next to VPN.
  5. On the Edit VPN profile page, configure these settings:
    • Name –  Enter a name for the VPN connection (e.g., WorkVPNConnection).
    • Type – Select IPsec Xauth RSA.
    • Server address – Enter the network address for the VPN service (e.g., 123.45.6.7).
    • IPsec  user certificate – Select the previously installed user certificate (e.g., AndroidCert).
    • IPsec CA certificate – Select the previously install root certificate (e.g., RootCert).

To connect to the VPN, tap its name.

Last updated on