V. VPN (Virtual Private Networking)

Teleworker VPN - IPsec XAuth - iOS Client

Products:
Vigor 2620Ln
Vigor 2762
Vigor 2765
Vigor 2832
Show all

Keywords:
IPsec
Teleworker
VPN
XAuth
Show all

DrayTek routers running 3.8.9.1 or later firmware support IPsec with XAuth authentication, which allows many VPN clients to authenticate with a username and password. With IPSec XAuth you are not limited to pre-shared key because each teleworker can use their unique credentials.
This article demonstrates how to create an IPsec Xauth tunnel between Vigor Router and iOS Client.

Vigor Router Configuration

1. Go to [VPN and Remote Access] > [IPsec General Setup]
a. Enter Pre-Shared Key for Xauth User
b. Click OK to save

kb teleworker xauth ios 01

2. Go to [VPN and Remote Access] > [Remote Dial-in User]
a. Enable User account and Authentication
b. Allow IPsec Xauth dial-in type
c. Enter Username and password
d. Click OK to save.

kb teleworker xauth ios 02

iOS Client Configuration

1. Run Smart VPN client and add a profile as follows:

  • Set Type to IPsec Xauth
  • Enter the Profile name
  • Populate the Server field with router's WAN IP address or domain
  • Enter Account and Password
  • Enter the Secret IPsec Xauth pre-shared key

kb teleworker xauth ios 01

2. To start the VPN connection, switch the profile on.

kb teleworker xauth ios 04

Vigor routers display VPN status in [VPN and Remote Access] > [Connection Management] section

kb teleworker xauth ios 05

How do you rate this article?

1 1 1 1 1 1 1 1 1 1

First Published: 09/04/2020
Last Updated: 22/04/2021