5679 Views 13 Replies Latest reply: Dec 3, 2009 1:00 AM by robincasey
OK - this is how you can fix the problem.
make a backup copy of your network id pref list, perhaps using the command line as below from a terminal window.
cp /Library/Preferences/SystemConfiguration/com.apple.network.idenfication.plist /Library/Preferences/SystemConfiguration/com.apple.network.idenfication.plist.o ld
open Library/Preferences/SystemConfiguration/com.apple.network.idenfication.plist using a TEXT editor or something similar.
Open the network settings screen where your VPN is listed (under System Preferences) and make a note of your VPN settings. Then delete the VPN using the "-" button and click Apply.
In the com.apple.network.idenfication.plist you will see the the defintion for the VPN settings a little like thus:
then lots of settings info, and ending with the definition of a new service
Delete everything and including between the <dict> and </dict> for this Identifier and this will remove the VPN settings and leave all the others intact.
Save the file.
Now go back to your network settings screen and re add the you VPN and it will work once again as it did before.
The extended logging shows:
Thu Sep 10 17:20:12 2009 : PPTP connecting to server '[myserverip]' ([myserverip])...
Thu Sep 10 17:20:12 2009 : PPTP connection established.
Thu Sep 10 17:20:12 2009 : using link 0
Thu Sep 10 17:20:12 2009 : Using interface ppp0
Thu Sep 10 17:20:12 2009 : Connect: ppp0 <--> socket[34:17]
Thu Sep 10 17:20:12 2009 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x717b6286> <pcomp> <accomp>]
Thu Sep 10 17:20:13 2009 : rcvd [LCP ConfRej id=0x1 <asyncmap 0x0> <pcomp> <accomp>]
Thu Sep 10 17:20:13 2009 : sent [LCP ConfReq id=0x2 <magic 0x717b6286>]
Thu Sep 10 17:20:13 2009 : rcvd [LCP ConfAck id=0x2 <magic 0x717b6286>]
Thu Sep 10 17:20:16 2009 : sent [LCP ConfReq id=0x2 <magic 0x717b6286>]
Thu Sep 10 17:20:17 2009 : rcvd [LCP ConfAck id=0x2 <magic 0x717b6286>]
Thu Sep 10 17:20:19 2009 : sent [LCP ConfReq id=0x2 <magic 0x717b6286>]
Thu Sep 10 17:20:19 2009 : rcvd [LCP ConfAck id=0x2 <magic 0x717b6286>]
until it breaks. Would love a fix!
What worked for me was to create a custom configuration although I usually leave it at Default, because I keep each VPN server as a separate service so I’m able connect to multiple servers simultaneously.
The problem existed with two out of six servers running Mac OS X Server 10.5.8 and a MacBook Pro running Mac OS X 10.6.1. The same MacBook Pro running Mac OS X 10.5.8 was able to connect without problems.
There is no obvious difference in between the servers. All have dynamic IP addresses, are an Open Directory master, only have L2TP over IPsec turned on, authenticate through MS-CHAPv2 and have their client information fields filled with the internal DNS servers and a custom search domain.
Clearing the client information fields in Server Admin, as was suggested on another thread, did not fix the problem. Removing the VPN service, clearing left over information in the appropriate .plist file and re-creating the VPN service on the client, also didn’t help.
I had an issue where my router's DNS (pointed to OpenDNS) was used first, before the DNS of my VPN (using Snow Leopard Cisco VPN).
Flushing the cache, reordering the services (in System preferences), etc, nothing worked.
I have now resolved it manually by specifying the DNS servers for the interfaces in the order I want.
So, when I connect via AirPort I use this :
sudo networksetup -setdnsservers AirPort VPNDNS_ServerIP VPNDNS_ServerIP2 OpenDNSServerIP
I can confirm that this is what I want with :
I then get this :
search domain : WORKDMAIN.COM
nameserver : CORRECTNAMESERVER1IP
nameserver : CORRECTNAMESERVER2IP
nameserver : 22.214.171.124
order : 200000
Note : nameserver : 126.96.36.199 = OpenDNS
Hopefully this is fixed in 10.6.2
I have the same problem...I think VPN is broken at least on one side...
I can get it to work INSIDE the network (and since it works, Apple Care washes their hands of the issue). But I am unable to get connected from outside the network.
I have opened the proper ports in my router (using PPTP since the router won't support L2TP without a $500 add-on package which I think won't work anyhow if the VPN is broken)...according to the Network Services PDF (which, BTW, has a typo for setting up ports on the router...so you have to refer to the "Well Known Ports" document) but I'm not sure if I'm still not opening the right ports.
My router folks have verified that the traffic is getting through the router, but there is absolutely NO RESPONSE from the server. When I look at the VPN logs the server is "listening", but DEAF (IMHO).
I really don't know where to go from here except that the router folks said I should do a packet capture but I have to go back to Astro-Physics 500 to figure out how to run the packet capture software and I'm worried it will crap up my server anyhow. But what the heck...life is short and art is long...
I'll let you know how it works out.
Message was edited by: firstname.lastname@example.org