Help configuring client to site IKEv2 VPN on ER605 V2
I'm currently running an ER605 V2 (firmware 2.0.1) managed by software controller 5.5.6. I've followed the documentation for setting up IKEv2 for Android and iOS but have been unsuccessful getting it to actually work. My guess is that it's something wrong with the phase 1 and phase 2 proposals. The documentation references setting up multiple proposal options which I assume only works in stand-alone mode. Doing it through the Omada controller, it seems you can only set one proposal. I've tried various combinations of SHA1 and SHA2, AES 128 and 256, and various DH groups.
Has anyone successfully gotten this working with iOS clients and if so, which proposals did you use?