Resolved Any Lion Server VPN users?

Discussion in 'Mac OS X Server, Xserve, and Networking' started by Aduntu, Jul 20, 2011.

  1. Aduntu, Jul 20, 2011
    Last edited: Jul 21, 2011

    macrumors 6502a

    Aduntu

    Joined:
    Mar 29, 2010
    #1
    Are you able to run the VPN server and connect successfully?

    I've tried connecting multiple devices with no luck. I've configured port mapping on the AEBS and everything appears to be turned on and functioning. I can connect to the server remotely using a VNC, so I know certain elements are functioning as they should.

    Any ideas?
     
  2. macrumors newbie

    Joined:
    Aug 4, 2007
    #2
    I was also having trouble with setting this up, but got it working once I blew away the custom VPN related port mappings I had created manually on the AEBS and used the Server App to configure the ports automatically (Server.app > Hardware > AEBS > Public Services > Click + Button and add VPN service > Restart AEBS). Now it works like a charm.
     
  3. macrumors 6502a

    noah82

    Joined:
    Oct 16, 2008
    Location:
    San Diego, CA
    #3
    Make sure that Mobile Me is disabled on the AEBS. Disabling Mobile Me fixed the problem for me.
     
  4. Aduntu, Jul 21, 2011
    Last edited: Jul 21, 2011

    thread starter macrumors 6502a

    Aduntu

    Joined:
    Mar 29, 2010
    #4
    Thanks for the responses.

    I've tried both suggestions to no avail. I'm beginning to think it's a daemon issue or some other OS related problem. I took the AEBS out of the picture and connected the server directly to the modem and I still couldn't connect. I also spoke with the ISP and confirmed they weren't blocking any VPN ports.

    Are your VPN servers behind a modem and a single AEBS?



    Update for anyone else with this problem:

    My suspicions were confirmed. There was something wrong at a lower level. After a format and fresh install of Lion and Lion Server (Lion was originally installed as an upgrade), the VPN worked on the first try.
     
  5. macrumors 6502

    Joined:
    Jan 9, 2009
    #5

    Is there a definitive response from Apple that the built-in VPN is not working? My setup VPN connection from the Mac (in Lion) to the VPN site no longer connects.
     
  6. macrumors 601

    Joined:
    Jul 7, 2006
    #6
    I can't get my clients to connect either. Disabling MobileMe didn't fix it for me. I get "The L2TP-VPN server did not respond." I have all of my ports forwarded and everything else, no luck. Any ideas?
     
  7. macrumors 6502a

    Joined:
    Mar 11, 2004
    #7
    Which clients? I've found that the iPhone doesn't support some of the special characters that Server.app configures by default for the shared secret. Try a shared secret with only letters and numbers.
     
  8. macrumors member

    Joined:
    Jan 6, 2010
    #8
    I have not got the server apps but I have the VPN server working fine. I just configured it manually. I did the same on Snow Leopard and installing lion wiped out the config. I just set it up again and it works just like it did on SL. I can connect from my iPhone and iPad while out of the house.
     
  9. macrumors 601

    Joined:
    Jul 7, 2006
    #9
    Saw that, changed the secret to be alphanumeric, still no luck. I read that my AEBS firmware (7.5.2) has a bug that breaks VPN access. I'm worried that this is my problem. Not sure what to do about this, I may have to just buy a new router, which I don't want to do.
     
  10. macrumors 65816

    RafaelT

    Joined:
    Jun 9, 2010
    Location:
    Lakeland, FL
    #10
    I can't get VPN working either. All ports on my TC were forwarded correctly and my shared secret was changed.

    Apple really dropped the ball on Lion server. For a company that makes such great hardware and software Lion Server is a disgrace.
     
  11. macrumors newbie

    Joined:
    Aug 4, 2007
    #11
    I don't think the firmware is the problem, because I am using the same on my AEBS and am no longer having trouble with my VPN setup. But if you want to eliminate that as a possibility you don't have to chuck the router. It's easy to downgrade your AEBS to a prior firmware in Airport Utility, just manually configure your AEBS and click on 'Firmware:' in the list on the Summary Tab. A popup will appear allowing you to choose to upload any older firmware versions you have on disk.
     
  12. macrumors demi-god

    ChristianJapan

    Joined:
    May 10, 2010
    Location:
    日本
    #12
    Do you mind sharing ? I try without any luck to get it running.

    I can see that the outside device makes a connection attempt; looks like during the negotiations one of both reject. Some resending messages I have in log.

    My router has a static NAT configured on UDP 500, 1701 and 4500.

    It drives me crazy ...

    I tried in SL (non server) and now on Lion Server
     
  13. timbloom, Jul 31, 2011
    Last edited: Jul 31, 2011

    macrumors 6502a

    timbloom

    Joined:
    Jan 19, 2002
    #13
    Of my many problems with lion server, I have VPN working just fine. I was able to connect last night via 3G on my iPhone. One thing though: I used profile manager to download the VPN config.
    Oh I also used server.app to apply mappings and blew away my previous server related port mappings. If Server.app is pushing settings that conflict with other port mappings, active or inactive, you may see unexpected results
     
  14. thread starter macrumors 6502a

    Aduntu

    Joined:
    Mar 29, 2010
    #14
    Did you upgrade or do a clean install?

    I originally did an upgrade, VPN wouldn't work no matter what. I did a clean install and without changing any settings on the iPhone, it connected on the first try. However, I reverted to SL using a Time Machine backup and the problem started all over again, just as it had before. I then did a second clean install and it connected on the first try once again.

    I also downgraded the AEBS to 7.4.2 with no success. My problem had nothing to do with the AEBS. I even took it out of the picture and connected the server directly to the modem and it behaved the same.

    Based on my experience, the problem lies with the Lion upgrade, because a fresh install worked perfectly.
     
  15. macrumors demi-god

    ChristianJapan

    Joined:
    May 10, 2010
    Location:
    日本
    #15
    Now I tend to agree ... After a fresh install of Lion via external disk I reinstalled the server admin and after a bit playing here and there it finally worked.

    I can connect to my server from iPad and iPhone. Nice. Thanks for the hint with th e reinstall. Something got messed up when doing it bynhand before. Not sure what.

    But now I'm happy camper
     
  16. macrumors 65816

    RafaelT

    Joined:
    Jun 9, 2010
    Location:
    Lakeland, FL
    #16
    I had a fresh install of Lion and VPN will not work for me.

    Should it be showing up in server admin? Because I don't see anything.
     
  17. macrumors demi-god

    ChristianJapan

    Joined:
    May 10, 2010
    Location:
    日本
    #17
    Yes; there should be an entry point for VPN in the ServerAdmin program; do you mind sharing a screenshot ?
     
  18. macrumors 65816

    RafaelT

    Joined:
    Jun 9, 2010
    Location:
    Lakeland, FL
    #18
    Here ya go.. if you have any ideas please share. I would really like to get VPN going however I can live without it for now if I have to. All my mail and websites run off this server so I really can't do anything that is going to take it down for more then a couple minutes. As I said earlier I started with a clean install of Lion.
     

    Attached Files:

  19. macrumors demi-god

    ChristianJapan

    Joined:
    May 10, 2010
    Location:
    日本
    #19
    Sorry, I'm new to the OS X Server stuff and mixed up Server.app with ServerAdmin toolset.
    It doesn't show up in ServerAdmin tool also on my machine but at least is working via Server.app.

    What I did was using the "save configuration profile" to share the settings with my iDevices. I removd some special characters from the shares secret ( like ? Or , ) but kept it overall complicated. Also when getting the profiles I was on the same local WiFi as the server and also activated the "Profile Manager" service.
    For the iPhone I actually mailed the file as the profile manager didn't worked on the small screen.
     
  20. macrumors 6502

    mainstay

    Joined:
    Feb 14, 2011
    Location:
    BC
    #20
    This is a dumb response and not sure if you've tried but it actually worked for me...

    Try simply toggling VPN off, wait 5 seconds, and toggle it on.

    I don't thing these toggles simply turn on/off the service, I think they rebuild the hosting information. Otherwise, reboots should have worked for me... but they didn't.
     
  21. macrumors 6502

    mainstay

    Joined:
    Feb 14, 2011
    Location:
    BC
    #21
    glad this is resolved... but for the benefit of all those that come after, could you provide insight into how the problem was fixed for you?
     
  22. macrumors 68030

    Joined:
    Feb 13, 2012
    Location:
    Perth, Western Australia
    #22

    aha, cheers.

    Will try that, i had all sorts of issues with it and just gave up.
     

Share This Page