Expired

DrayTek routers running 3.8.9.1 or later firmware support IPsec with XAuth authentication, which allows many VPN clients to authenticate with a username and password. With IPSec XAuth you are not limited to pre-shared key because each teleworker can use their unique credentials.
This article demonstrates how to create an IPsec Xauth tunnel between Vigor Router and iOS Client.

Vigor Router Configuration

1. Go to [VPN and Remote Access] > [IPsec General Setup]
a. Enter Pre-Shared Key for Xauth User
b. Click OK to save

2. Go to [VPN and Remote Access] > [Remote Dial-in User]
a. Enable User account and Authentication
b. Allow IPsec Xauth dial-in type
c. Enter Username and password
d. Click OK to save.

iOS Client Configuration

1. Run Smart VPN client and add a profile as follows:

• Set Type to IPsec Xauth
• Enter the Profile name
• Populate the Server field with router's WAN IP address or domain
• Enter Account and Password
• Enter the Secret IPsec Xauth pre-shared key

2. To start the VPN connection, switch the profile on.

Vigor routers display VPN status in [VPN and Remote Access] > [Connection Management] section

---

How do you rate this article?

1 1 1 1 1 1 1 1 1 1

---

Add a comment to this article

In the below box, you can add comments which you consider might be helpful to other users reading this article:

(Will be shown on your comment)
(Optional, Not shown/published)

NOTE : All comments are reviewed before publication and may not be posted or may be redacted if the editors do not consider them helpful. The use of offensive or obscene language, copyrighted material, or advertising or promotion or linking to any other product or service is prohibited. By submitting your comment, you confirm that you are the original author and assign copyright of the content to DrayTek indefinitely and irrevocably.