Operational Defect Database
BugZero found this defect 375 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA16S00000110ogSAA
Mobile VPN with IKEv2 client profiles disconnect after 8 minutes on macOS and iOS devices
Last update date:
5/12/2023
Affected products:
No affected products provided.
Affected releases:
Any/Unknown
Fixed releases:
v12.10.2
Description:
Issue
A Mobile VPN with IKEv2 client profile for iOS and macOS devices might disconnect from a VPN tunnel after approximately 8 minutes.
Workaround/Solution
In some cases, you can enable Perfect Forward Secrecy (PFS) for Phase 2 negotiations as a workaround. When you enable PFS, you must select the Diffie-Hellman Group 14 group.To enable PFS, from the Web UI: Select VPN > Mobile VPN > Configure.Select Security > Phase 2 Settings.Select Enable Perfect Forward Secrecy to enable PFS.From the adjacent drop-down list, select Diffie-Hellman Group 14.Click Save. To enable PFS, from Policy Manager: Select VPN > Mobile VPN > IKEv2.Select Security > Phase 2.Select the Phase 2 Settings tab.Select the PFS check box to enable PFS.From the adjacent drop-down list, select Diffie-Hellman Group 14.Click OK. Download the new profile from the Firebox to your device.
