On 08/12/2011, at 22:06, "James Harper" <james.harper@bendigoit.com.au> wrote:
On Thu, 8 Dec 2011, Graeme Cross <gcross@fastmail.fm> wrote:
The last time I looked, PPTP was the only VPN solution that had good cross-platform support on all those platforms. For example, I don't know of an OpenVPN client for (non-jail-broken) iOS clients.
This is exactly the problem that I have. My client uses an iPhone because he does everything with Apple and because there are some specific iPhone programs he needs to use.
So the question is, what is the best that I can do with an iPhone as the primary client device?
I'd say l2tp/IPSec is the better choice.
Looking at my iPhone, my VPN options are L2TP, PPTP, and IPSec. The IPSec appears to be Cisco flavoured but last time I checked I think the Linux IPSEC implementation claimed compatibility with Cisco IPSEC...
often the Cisco IPSec means it does gre over IPSec, for mobile users.
If you can get IPSEC working with the iPhone that will be the best option I think. Googling for Openswan and iphone looks superficially promising, but you may find it less promising if you dig further. http://www.jacco2.dds.nl/networking/freeswan-panther.html#iPhone says:
they are referencing very old versions of iOS. at least in my iOS 5 devices, multiple of each type of VPN can be configured, and also supports RSA SecureID tokens. the Cisco VPN is still the only one to support certificate based auth, though. I've only used the iOS VPN to connect to OSX servers, but it has so far been reliable and simple. I'm sure a lot of the other bugs have been worked out since iOS 1.0 in the article, as more and more people are wanting to connect to non-Apple implementations of IPSec.