Windows 7, XP and VPN Service
Running SLS 10.6.5 with VPN Service. Configured for L2TP.
Works perfect with a half dozen Mac clients connected. plus off and on a half dozen more iOS clients, over both WiFi and 3G - so needless to say, service is configured and firewalls are all configured appropriately.
The issues are:
1) WIndows XP (over NAT-T) - does this work at all with L2TP? From what I can see it just hangs on the XP side and fails to negotiate a phase 1 on the server side? Do I need to hack an anonymous.conf together that avoid AES since XP doesn't support that? The default config should allow failback to 3DES but I've never seen it happen since OS X, iOS and Windows 7 all support AES just fine and Windows XP is never able to connect.
2) Windows 7: I can connect. Everything works. Then I disconnect. Sometimes I can't reconnect again. Sometimes I can. If you wait an hour for the SAD tables to expire the entries (3600 seconds, minus connect time) it works again, but you basically are out of luck for making another connection run again sometimes until this happens.
As a side - I'm noticing the SAD entries on the server side are pretty lazy at expiring - specifically, I have 3 people connected right now (should be 6 entires, one in and out for each) but there are 15 SAD entries still on my server (from 45 minutes ago when there was 7 people) connected. Even here, this should be 14 entries but SLS 10.6.5 has left an orphan. It tends to be that the server to remote SAD gets cleared but there is almost always a stray remote to server SAD that gets left lying around.
Any ideas, or should I call Apple support and slog this out with them?
Dual 1.8ghz G5, Mac OS X (10.4.3)