Created on 07-13-2023 02:15 AM Edited on 07-17-2023 01:23 AM By Jean-Philippe_P
Description | This article describes that Native VPN (L2TP VPN) is no longer supported in Android 13 and above android version. |
Scope |
Android 13 and above do not support L2TP VPNs anymore due to security issues with L2TP which use Ikev1.
From Andriod 13 and above we only have 3-options to establish a VPN:
To view these options on an Android phone go to Android system settings -> Connection & Sharing -> VPN -> Tap on the '+' button to add a VPN connection -> Select VPN type.
Native VPN in FortiGate firewall will use L2TP by default.
|
Solution |
As a workaround to establish a VPN between an Android device and the FortiGate firewall, it is possible to configure a custom dail-up VPN with IKev2.
This solution is feasible where end users do not want to connect to VPN via the Forticlient application installed in their Android device.
Create a policy and route accordingly to allow traffic from the Andriod-VPN tunnel interface to the LAN interface.
CLI configuration.
Dail-UP ikev2 Cli config:
config vpn ipsec phase1-interface FuEutStPeywrTFqw/8qo1XBl2fpJ9B8Ww5E+AibYu5i7k5mNZgM2jZwiwXNbL+DPJ1O/4UvNHIrwkRabgmad5gSuxo/KQIGU5ABGuhdo74A==
Android Configuration:
Note:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.