Mobile VPN with IKEv2

Mobile Virtual Private Networking (Mobile VPN) with IKEv2 (Internet Key Exchange v2) creates a secure connection between a remote computer and the network resources behind the Firebox. Mobile VPN with IKEv2 uses IPSec to provide strong encryption and authentication. In Fireware v12.1 and higher, you can configure Mobile VPN with IKEv2 on the Firebox.

Mobile VPN with IKEv2 supports connections from native IKEv2 VPN clients on iOS, macOS, and Windows mobile devices. Android users can configure an IKEv2 VPN connection with the third-party strongSwan app.

To authenticate mobile IKEv2 users, you can configure Mobile VPN with IKEv2 to use these authentication servers:

• Firebox-DB (local Firebox authentication)
• RADIUS
• AuthPoint (Fireware v12.7 or higher)

For information about IKEv2 user authentication, see About Mobile VPN with IKEv2 User Authentication.

In Fireware v12.8 or higher, Mobile VPN with IKEv2 supports MOBIKE, a mobility protocol that keeps the VPN connection active when a user connects to a different network. For more information about MOBIKE, see MOBIKE Support for Mobile VPN with IKEv2.

For information about how to set up Mobile VPN with IKEv2 on the Firebox and connect from an IKEv2 client, see:

• Use the WatchGuard IKEv2 Setup Wizard
• Edit the Mobile VPN with IKEv2 Configuration
• Configure Client Devices for Mobile VPN with IKEv2

See Also

About Mobile VPN with IKEv2 Licensing

Mobile VPN with IKEv2 Connections

Internet Access Through a Mobile VPN with IKEv2 Tunnel

Certificates for Mobile VPN with IKEv2 Tunnel Authentication

Configure Windows Devices for Mobile VPN with IKEv2

Configure iOS and macOS Devices for Mobile VPN with IKEv2

Configure Android Devices for Mobile VPN with IKEv2

Troubleshoot Mobile VPN with IKEv2