Support on SonicWall Products, Services and Solutions
Browse Knowledgebase by Category
Features and Supported functionality of Aventail Mobile connect for iOS and Android
03/26/2020 
27 
10211
DESCRIPTION:
What are the features and Functionality of Aventail Mobile connect for iOS and Android (4.x) releases.
RESOLUTION:
1. User Interface and Functionality is mostly similar to the Connect tunnel client.
2. Mobile Connect supports both SSL and ESP based connectivity. Please note ESP is supported on aventail appliances running 10.5.4 or higher.
3. Mobile Connect supports End Point Control check and the policies needs to be definited little different than the usual client machines based deployment.
4. Mobile Connect supports client side Proxy deployments like remote internet proxy, proxy auto detection.
5. Mobile connect supports VPN OnDemand (Always and Never Dial) with certificate authentication. VPN OnDemand provides seamless, secure access to the enterprise network.
6. End Point Control Profiles specifically for iOS and Android devices are available in 10.6.1 & higher releases.
7. Mobile connect does not have dynamic routing like other desktop clients like Windows/Mac/Linux. On Mobile platforms, the routes needs to be added while the Tunnel adapter is brought up during the connection. So any Resource that needs to be redirected through the VPN should have corresponding Host IP/Subnets/Range resource defined within the AMC - Resources sections along with the necessary Access rules.
8. In Split tunnel mode, only the DNS requests that match the configured VPN DNS Suffic search domains will use the Mobile connect provisioned DNS servers. Requests to domains that do not match the VPN DNS suffixes will go to the local (3G/WIFI) connection based DNS Servers.
Example DNS suffix: example.com
Query for www.example.com uses VPN DNS Server
Query for intranet.corp.example.com uses VPN DNS Server
Query for www.google.com uses Local DNS server
Query for webmail.examplecorp.com uses Local DNS server
9. iOS only Mobile connect has a limitation of 297 for no of IP/Range resources. We are currently working on this with Apple support for further clarifications.
10. For Mobile connect deployments, that require all DNS requests to be prioritized we recommend Redirect all method for the tunnel setup.
