FireBrick Road Warrior Windows 10: Difference between revisions
Content deleted Content added
m clean up, typos fixed: eg → e.g. (5) |
|||
| Line 1: | Line 1: | ||
<indicator name="RoadW">[[File:Menu-Road-Warrior.svg|link=:Category: |
<indicator name="RoadW">[[File:Menu-Road-Warrior.svg|link=:Category:FireBrick IPsec Road Warrior|30px|Back up to the FireBrick Road Warrior Category Page]]</indicator> |
||
== Windows 10 == |
== Windows 10 == |
||
| Line 10: | Line 10: | ||
First, download the CA certificate in DER format to the Windows machine. The easiest way to do this is to@ |
First, download the CA certificate in DER format to the Windows machine. The easiest way to do this is to@ |
||
#Use a browser ( |
#Use a browser (e.g. 'Edge') to visit your FireBrick |
||
##Go to: Config - Certificates to reach the certificate management page |
##Go to: Config - Certificates to reach the certificate management page |
||
##Click on the Download DER link corresponding to the CA certificate. |
##Click on the Download DER link corresponding to the CA certificate. |
||
| Line 46: | Line 46: | ||
#Click VPN (see screenshot) |
#Click VPN (see screenshot) |
||
#Click 'Add a VPN connection' |
#Click 'Add a VPN connection' |
||
#Enter in the VPN settings |
#Enter in the VPN settings e.g.: (see screenshot) |
||
#*VPN Provider: Windows (built in) |
#*VPN Provider: Windows (built in) |
||
#*Connection name: (What ever you like, |
#*Connection name: (What ever you like, e.g. Office) |
||
#*Server name or address: The IP or host name of your FireBrick. (the Server name needs to match the name in the generated certificate, this is usually a hostname rather than an IP address) |
#*Server name or address: The IP or host name of your FireBrick. (the Server name needs to match the name in the generated certificate, this is usually a hostname rather than an IP address) |
||
#*VPN type: IKEv2 |
#*VPN type: IKEv2 |
||
| Line 76: | Line 76: | ||
==Windows not setting the VPN as the gatweway?== |
==Windows not setting the VPN as the gatweway?== |
||
On our Windows 10 machine, the VPN connected, but traffic was still going out via our normal network connection and not over the IPsec VPN. |
On our Windows 10 machine, the VPN connected, but traffic was still going out via our normal network connection and not over the IPsec VPN. e.g., a tracert shows traffic going via our local router and not over the VPN. |
||
We were also unable to open the TCP/IP properties of the VPN connection. Others seem to have the problem, |
We were also unable to open the TCP/IP properties of the VPN connection. Others seem to have the problem, e.g. [http://answers.microsoft.com/en-us/insider/forum/insider_wintp-insider_web/pptp-vpn-cant-open-tcpip-propities/130425bc-7997-4b50-b535-6c590805df9d here] and [https://social.technet.microsoft.com/Forums/en-US/af1cce20-ae21-4e89-bebc-11dc17becea5/no-access-to-internet-protocol-v4-or-v6-in-10049 here], but those post are about preview releases and our Windows 10 is the final release. The button isn't grayed out on our case, it just does nothing when clicked! |
||
The problem with the routing, is that the VPN connection is set up by default for 'SplitTunneling', which is not supported by the FireBrick. The way to disable SplitTunneling is via the command-line tool 'PowerShell' which is included with Windows 10, here is how: |
The problem with the routing, is that the VPN connection is set up by default for 'SplitTunneling', which is not supported by the FireBrick. The way to disable SplitTunneling is via the command-line tool 'PowerShell' which is included with Windows 10, here is how: |
||
| Line 107: | Line 107: | ||
If all else looks correct then be sure the FireBrick is running software release of 1.36..009 or greater. |
If all else looks correct then be sure the FireBrick is running software release of 1.36..009 or greater. |
||
[[Category: |
[[Category:FireBrick IPsec Road Warrior|Windows]] |
||