It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

This Product is End-of-Life and End-Of-Support

End-Of-Life and End-Of-Support on December 1st, 2020: All Barracuda Firewall X-Series sales will cease; neither new sales nor any renewals will be available. If you currently hold a maintenance and support contract, you will continue to receive our award-winning support and services until your contract expires. Please see the End-Of-Life definition as described in the End of Support and End of Life Information.

How to Configure the Apple iOS VPN Client for IPsec Shared Key VPN

  • Last updated on

To use an Apple iOS device to connect to a client-to-site IPsec VPN without having to import a certificate, use shared key authentication.



Configure the Apple iOS Device

Before you configure the Apple iOS device:

To configure an Apple iOS device for IPsec VPN connections with the Barracuda NextGen Firewall X-Series:

  1. On the Apple iOS device, tap Settings > General > VPN > Add VPN Configuration.
  2. On the Add VPN configuration screen, tap the IPSec tab.
  3. Configure the following settings:
    • Server – The IP address or FQDN that the VPN service is listening on (e.g.,
    • Account and Password – Your username and password.
    • Group Name – The access policy name for the client-to-site VPN on the X-Series Firewall you want to connect to (e.g., IPsecVPN).
    • Secret – The shared key. 
  4. Tap Save in the top right corner. The VPN configuration then appears on the VPN screen.


Connect to the VPN with the Apple iOS Device

After configuring the Apple device, you can connect to the IPsec VPN.

On your Apple iOS device, tap Settings and then turn on VPN. After a few seconds, the VPN icon appears in the status bar to indicate that the connection is successful.

Establishing VPN through NAT can be problematic. If you experience connection losses, increase the UDP timeout on the NAT'd device. For example, the iPhone sends keepalive packets every 60 seconds. To increase the UDP timeout for the iPhone, enter any value over 60 seconds.

Unfortunately, many cell phone providers use NAT to connect mobile devices to the Internet. Contact your cell phone provider support for help.