Setting up an IPsec tunnel between RUT and Android phone

From Teltonika Networks Wiki
Main Page > General Information > Configuration Examples > VPN > Setting up an IPsec tunnel between RUT and Android phone

Introduction

In this example, we're going to configure IPsec tunnel between RUT and Android phone. Since L2TP VPN configuration is not available on the newest Android phones, only IPsec tunnel has to be configured.

Configuration overview and prerequisites

Before we begin, let's take a look at the configuration that we are attempting to achieve and the prerequisites that make it possible.

Prerequisites:

  • RUT/RUTX series router with RUTOS firmware;
  • An end device (PC, Laptop) for configuration;
  • Android phone with Android 13 or newer version;

If you're having trouble finding any page or some of the parameters described here on your device's WebUI, you should turn on "Advanced WebUI" mode. You can do that by clicking the "Basic" button under "Mode," which is located at the top-right corner of the WebUI.

Topology

blablabla

Router configuration

Start by configuring the router. Login to the WebUI, navigate to Services → VPN → IPsec and add a new IPsec instance. Configure everything as follows.

Note: Not specified fields can be left as is or changed according to your needs.

Instance configuration


[[|border|class=tlt-border|755x406px|right]]
  1. Enable instance;
  2. Authentication method - Pre-shared key;
  3. Pre-shared key - your desired password;
  4. Local identifier - LAN IP of RUT;

Connection configuration


[[|border|class=tlt-border|753x368px|right]]
  1. Local subnet - 0.0.0.0/.0;
  2. Key exchange - IKEv2;

Advanced Connection settings


[[|border|class=tlt-border|752x541px|right]]
  1. Remote source IP - 10.0.2.0/24;