Hello together,
I recently got a UDM Pro and I’m starting to migrate my network to it.
Looks like the first step is already failing.
I have an external server that needs to connect to my home network by VPN.
Additionally I need to be able to connect via VPN from my phone, as I have all my SmartHome equipment only locally reachable.
Now, UDM only seems to support L2TP/Ipsec, which seems to be broken on my Pixel 3 XL(specifically on Android itself : https://issuetracker.google.com/issues/118789580).
There does not seem to be an alternative VPN client for Android which supports L2TP/ipsec.
UDM does not support any other protocol.
I’ve seen that it might be possible to run WireGuard via podman. Does anybody use this? Performance wouldn’t be too important, as long as the overall UDM performance is not impacted.
I’d prefer having a solution directly on the UDM over having a machine in my network provide the VPN.
I’d highly recommend running pihole and pivpn over hacking a wireguard fix on then udm
I have used L2TP extensively on my Pixel 2XL and other phones. It’s a bit difficult to setup, but it works well.
If you want to go the Adguard-route, I’d go with a raspberry pi instead.
That’s unifi for you , release a good product with little to no real world features at a good selling point.
Yes, I’ve read some hints, that it might only be broken on Pixel 3 devices still. The connection always breaks around the 90s mark, +/- a few.
Did a quick check with my wife’s Pixel 2, and here is how the UDM logs look like in both cases, identical to me, just that the disconnect is done manually in the Pixel 2 case:
Pixel 3 (XL)
https://gist.github.com/SgtSeppel/b3b8772585a1174613d3d633583cb4f5
Pixel 2
https://gist.github.com/SgtSeppel/86bd225d91ab77b9a2624b86a061b886
If you have it running on Android, did you have to put own routes into the VPN config or does the UDM push the network config?
After establishing the connection Android immediately tells me that my private VPN is not reachable anymore and internet connectivity is lost on the device.
Looks like no routes are installed.
Try enabling ICMP on your udm. For whatever reason, it seems like Android’s vpn need to ping in order to keep the tunnel from collapsing.
Also, the DNS must be explicitly stated in the udm vpn settings (assuming you know that based on how far you’ve gotten)
Nope. I had to set up the preshared key, and a radius user and stuff. Never had to do routes or anything.
Just saw the comment now.
Already tried it. No improvement.
I can even start the connection, start a continuous ping on both sides UDM <> Phone and it will just time out after 90 seconds.