Go Back   MacRumors Forums > Apple Systems and Services > OS X > Mac OS X Server, Xserve, and Networking

Reply
 
Thread Tools Search this Thread Display Modes
Old Dec 7, 2012, 05:45 PM   #1
tbottink
macrumors newbie
 
Join Date: Dec 2012
Multiple Windows VPN Clients not allowed

Hi there, tried searching but didn't find an answer to this specific problem; here it goes, hope somebody can help:

We are using a Mac Mini with OSX Mountain Lion Server 10.7.4 in an Office setup. Almost all clients are Windows 7.

We have set up client configs, and it works; both L2TP as PPTP.

My problem is multiple VPN connections from Windows clients are not allowed. When user1 is using VPN from his Windows client, no other VPN connection from a Windows client is allowed while connections from an Mac or iPad works like a charm.
If user1 disconnects vpn another Windows client is allowed.

All users are using L2TP. I have enabled PPTP for testing purposes.
VPN address pool is 20 adresses for max 4 VPN users.

Is there a explenation/solution?
tbottink is offline   0 Reply With Quote
Old Dec 7, 2012, 06:50 PM   #2
dazey
macrumors 6502
 
Join Date: Dec 2005
Are the users connecting from the same IP address by any chance? One thing I have learnt is that only one VPN connection is allowed from any one IP address (but you can have one pptp and one L2TP from the same address)
dazey is offline   0 Reply With Quote
Old Jan 14, 2013, 06:35 AM   #3
tbottink
Thread Starter
macrumors newbie
 
Join Date: Dec 2012
Hi, sorry for not answering to your reply. Missed the notification, holidays etc.

Regarding your question; no, vpn-users are on different physical locations, internet providers in the country.

Meanwhile, we have managed to test this in an other environment with exact same results. Multiple Windows clients can not connect simultaneous to a MacOSX VPN server while Mac-clients (and probably Linux) have no problems.

In the test-situation the server log reported that L2TP phase 1 authentication was OK but phase 2 NOT. From there we got stuck again.

Still trying to get it to work:
- multiple tests with PPTP, checking the local policies on Windows
- different VPN client (TheGreenBow, (free) alternatives?)
- different VPN server (Draytek etc.) will be our last resort
tbottink is offline   0 Reply With Quote
Old Jan 14, 2013, 02:13 PM   #4
sabahm
Banned
 
Join Date: Aug 2012
I think you should try some other VPN client which allow simultaneous connectivity between two OS.
sabahm is offline   0 Reply With Quote
Old Jan 15, 2013, 08:06 AM   #5
tbottink
Thread Starter
macrumors newbie
 
Join Date: Dec 2012
Quote:
Originally Posted by sabahm View Post
I think you should try some other VPN client which allow simultaneous connectivity between two OS.
I am trying several VPN clients(theGreenbox, Shrew Soft, Viscosity) but haven't got succesfull results yet.

----------

Server log has following entries:
Jan 15 13:27:15 server racoon[235]: Connecting.
Jan 15 13:27:15 server racoon[235]: IPSec Phase1 started (Initiated by peer).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 1).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 2).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 3).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 4).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase1 AUTH: success. (Responder, Main-Mode Message 5).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 5).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase1 Responder: success. (Responder, Main-Mode).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 6).
Jan 15 13:27:15 server racoon[235]: IPSec Phase1 established (Initiated by peer).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).
Jan 15 13:27:17: --- last message repeated 1 time ---
Jan 15 13:27:17 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).
Jan 15 13:27:20 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).

Can't figure out why phase 2 will not start after succesfull phase 1, when another Windows client is already connected.
tbottink is offline   0 Reply With Quote
Old Jan 18, 2013, 07:22 AM   #6
sabahm
Banned
 
Join Date: Aug 2012
Quote:
Originally Posted by tbottink View Post
I am trying several VPN clients(theGreenbox, Shrew Soft, Viscosity) but haven't got succesfull results yet.

----------

Server log has following entries:
Jan 15 13:27:15 server racoon[235]: Connecting.
Jan 15 13:27:15 server racoon[235]: IPSec Phase1 started (Initiated by peer).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 1).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 2).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 3).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 4).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase1 AUTH: success. (Responder, Main-Mode Message 5).
Jan 15 13:27:15 server racoon[235]: IKE Packet: receive success. (Responder, Main-Mode message 5).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase1 Responder: success. (Responder, Main-Mode).
Jan 15 13:27:15 server racoon[235]: IKE Packet: transmit success. (Responder, Main-Mode message 6).
Jan 15 13:27:15 server racoon[235]: IPSec Phase1 established (Initiated by peer).
Jan 15 13:27:15 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).
Jan 15 13:27:17: --- last message repeated 1 time ---
Jan 15 13:27:17 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).
Jan 15 13:27:20 server racoon[235]: IKEv1 Phase2 Initiator: dropped. (can't continue phase2 without valid phase1).

Can't figure out why phase 2 will not start after succesfull phase 1, when another Windows client is already connected.
Which service provider are you actually using?
sabahm is offline   0 Reply With Quote

Reply
MacRumors Forums > Apple Systems and Services > OS X > Mac OS X Server, Xserve, and Networking

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
Windows clients cannot see server. Mac clients can. charlielowndes Mac OS X Server, Xserve, and Networking 5 Apr 3, 2014 07:28 AM
VPN problem with Win7 clients perciodechiara Mac OS X Server, Xserve, and Networking 0 Mar 11, 2014 02:37 PM
Multiple Users On One VPN Account steiney Community Discussion 4 Sep 16, 2013 05:15 PM
10.7 & 10.8 VNC from windows clients fisty Mac Applications and Mac App Store 6 Apr 13, 2013 12:39 PM
VPN for remote Mac clients bulldigi Mac OS X Server, Xserve, and Networking 16 Feb 24, 2013 11:36 AM

Forum Jump

All times are GMT -5. The time now is 01:07 AM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC