I am not great with Linux and have basic networking knowledge... just to be clear up front. :)
I am trying to create an iOS on demand VPN connection from my son's iPhone to the Firewalla Gold. Because Wireguard and OpenVPN are not native iOS VPN's, I can't seem to find a quick and easy way, even through Apple Configurator, to create a persistent connection to my Firewalla that my son can't simply turn off.
So, I'm trying it the hard way using the instructions here: https://www.codingmerc.com/blog/ios-vpn-on-demand-profile-with-openvpn/
I have a working OpenVPN profile created and have the profile file downloaded.
However, when I SSH to the Firewalla using Putty, and execute the command to build a bundle with the credentials needed to log in (openVPN.crt, openVPN.key and server.crt) I get an error that openVPN.key can't be found. Again, I have only basic knowledge of Linux, and I've dug around a little but don't know where to locate those files.
I'm assuming that the openVPN.crt and other files needed are somewhere on the FWG? If so, can someone point me to the directory?
Also, if anyone has a better solution to be able to "lock" an iPhone to always running through the FWG VPN server, I'm open to any suggestions. Because of iOS not allowing restricting the VPN settings (either supervised or through native child settings) all he has to do is disable the VPN toggle and defeat my whole reason for getting a FWG in the first place. Has Firewalla ever thought about including a IKEv2 VPN server? I think that would allow a configuration profile to lock it, right?
Any help would be greatly appreciated!
Please sign in to leave a comment.