We’re looking to implement a custom IPSec IKEv2 VPN using the Packet Tunnel Provider network extension on iOS because we need to add extra information to EAP, which the built-in IKEv2 VPN configuration does not support. Is it possible to handle the full IKEv2 negotiation and IPSec tunneling within the Packet Tunnel Provider extension? Or are there limitations that would prevent implementing a full IKEv2 stack this way? Any insights or alternative approaches would be appreciated. Thanks!

Hello, Our iOS app is using FilterControlProvider and FilterDataProvider to filter websites. We noticed that when we used Safari to browse around, once we've gotten to a restricted site we could not use the back button to go back to previous sites. The previous pages also get blocked by the message "You cannot browse this page at ... because it is restricted". This is strange because these previous pages are not blocked by the extensions. Refreshing the page makes the message go away and the site load normally. Also, when we debugged the app, tapping back does not trigger any event in the extensions. We have tested with other browsers and the behaviour is the same. Is this behaviour expected or a bug in the web engine? Thank you!

Hello, As I read from this post, looks like I can only make split DNS to work only when I set match domains in split tunnel mode. The answer is quite old. So I was wondering if there is a way to support split DNS for full tunnel or split DNS can only be achieved via split tunnel? Thank you!