Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

iOS Device and Network Connect Profiles

kenlars_
Super Contributor
‎02-09-2012 10:47:AM
‎02-09-2012 10:47:AM

iOS Device and Network Connect Profiles

If I configure a PAC file in my Network Connetion Connection Profile, does that setting get pushed to the iOS device at logon?

Ken

0 Kudos
4 REPLIES 4
SHKM_
Frequent Contributor
‎02-09-2012 08:56:PM
‎02-09-2012 08:56:PM

Re: iOS Device and Network Connect Profiles

Hi Ken,

I hope you're using Pulse to get connected to SA. Yes, PAC file config in SA Network Connetion Connection Profile get pushed to iOS devices. It will create instant.pac file (same like desktop) and push it to iOS device; you can check the Pulse logs, you will see messages like below

2/9/12 9:50:27 AM vpnagent Info 20120209095027.779431 JuniperVPN.bundle[p84.t1799] info Calling VPNTunnelSetConfigurationEntities with configuration: {

DNS = {

SearchDomains = (

"sslvpnlab.com"

);

ServerAddresses = (

"10.10.10.1"

);

SupplementalMatchDomains = (

"sslvpnlab.com"

);

};

IPv4 = {

Addresses = (

"20.20.20.1"

);

DestAddresses = (

"10.200.200.200"

);

OverridePrimary = 1;

SubnetMasks = (

"255.255.255.0"

);

};

Proxies = {

ProxyAutoConfigEnable = 1;

ProxyAutoConfigJavaScript = "function FindClientProxy(url, host) {

\n\treturn \"DIRECT\";

\n}

\n

\nfunction FindServerProxy(url, host) {

\n\treturn \"PROXY 30.30.30.1:3128\";

\n}

\n

\nfunction FindProxyForURL(url, host) {

\n\tif (shExpMatch(host, \"20.20.20.100\")) {

\n\t\treturn \"DIRECT\";

\n\t}

\n\telse \tif (shExpMatch(host, \"20.20.20.100\")) {

\n\t\treturn \"DIRECT\";

\n\t}

\n\telse {

\n\t\treturn FindServerProxy(url, host);

\n\t}

\n}

\n";

};

VPN = {

MTU = 1400;

RemoteAddress = "20.20.20.100";

};

} (DSPluginController.m:1390)

2/9/12 9:50:27 AM vpnagent Info 20120209095027.782099 JuniperVPN.bundle[p84.t1799] info Setting tunnel status to connected (DSPluginController.m:1992)

Thanks,

Suresh

0 Kudos
kenlars_
Super Contributor
‎02-10-2012 05:09:AM
‎02-10-2012 05:09:AM

Re: iOS Device and Network Connect Profiles

Suresh -

Thanks.

I'm dealing with a situation with iOS devices with the following scenario.

  1. A PAC file is coded in a profile on the iOS device and is applied before logon to the SA.
  2. The PAC server is not accessible on the Internet.
  3. After the connection to the SA is made with Pulse, the first browser GET appears to ignore the fact that the PAC server is now accessible, and the first GET is done direct, regardless of the contents of the internal PAC file.
  4. All remaining GETs use the internal PAC file.

I am hoping that pushing the PAC to the browser at tunnel establishment will cause the first GET to honor the internal PAC. Hence my question.

Ken

0 Kudos
SHKM_
Frequent Contributor
‎02-12-2012 07:33:PM
‎02-12-2012 07:33:PM

Re: iOS Device and Network Connect Profiles

Hi Ken,

ho...! interesting...How about configuring the same PAC file in SA NC profile? what is the behavior you observe in this case?

Also, I suggest to open a Jtac case to investigate in detailed manner.

Thanks,

Suresh

0 Kudos
zanyterp_
Respected Contributor
‎03-29-2012 09:01:PM
‎03-29-2012 09:01:PM

Re: iOS Device and Network Connect Profiles

how are you installing the proxy: ipcu, manual config, or mdm? if using mdm, the connection profile proxy configuration is not honored. 

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.