Not in my case, Per, no.
I just did a tcpdump between various systems.
For those that do NOT work (client iPhone, client 10.7 and server 10.7) the tcpdumps look like so:
19:12:33.883057 IP Home.60845 > LionServer.500: isakmp: phase 1 I ident
19:12:33.884410 IP LionServer.500 > Home.60845: isakmp: phase 1 R ident
19:12:33.910379 IP Home.60845 > LionServer.500: isakmp: phase 1 I ident
19:12:33.918362 IP LionServer.500 > Home.60845: isakmp: phase 1 R ident
19:12:33.958995 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 1 I ident[E]
19:12:33.959349 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 1 R ident[E]
19:12:33.959461 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 2/others R inf[E]
19:12:34.997414 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
19:12:34.998323 IP LionServer.4500 > Home.60846: NONESP-encap: isakmp: phase 2/others R oakley-quick[E]
19:12:35.016983 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
19:12:35.019173 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x1), length 132
19:12:35.052641 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
19:12:35.595022 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x2), length 132
19:12:37.597957 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x3), length 132
19:12:38.212127 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
19:12:41.214447 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
19:12:41.603061 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x4), length 132
19:12:44.216935 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
19:12:45.609900 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x5), length 132
19:12:49.616860 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x6), length 132
19:12:53.623054 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x7), length 132
19:12:54.965357 IP Home.60846 > LionServer.4500: isakmp-nat-keep-alive
19:12:55.032098 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I inf[E]
19:12:55.036420 IP Home.60846 > LionServer.4500: NONESP-encap: isakmp: phase 2/others I inf[E]
19:12:56.228356 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
Note: I've done this over wired and wireless as well as 3G -- the transport on the client end is NOT the issue.
A connection that works, from iPhone ONLY (on 3G or Wireless) is:
11:24:59.960105 IP Home.61168 > LeopardServer.500: isakmp: phase 1 I ident
11:24:59.964119 IP LeopardServer.500 > Home.61168: isakmp: phase 1 R ident
11:25:00.673976 IP Home.61168 > LeopardServer.500: isakmp: phase 1 I ident
11:25:00.712858 IP LeopardServer.500 > Home.61168: isakmp: phase 1 R ident
11:25:01.466127 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 1 I ident[E]
11:25:01.468180 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 1 R ident[E]
11:25:01.468546 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 2/others R inf[E]
11:25:02.954797 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
11:25:02.978314 IP LeopardServer.4500 > Home.61169: NONESP-encap: isakmp: phase 2/others R oakley-quick[E]
11:25:03.480886 IP Home.61169 > LeopardServer.4500: NONESP-encap: isakmp: phase 2/others I oakley-quick[E]
11:25:03.486763 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x1), length 116
11:25:04.032382 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x2), length 116
11:25:06.029801 IP Home.61169 > LeopardServer.4500: UDP-encap: ESP(spi=0x0a46a01f,seq=0x3), length 116
11:25:06.517111 IP LeopardServer.4500 > Home.61169: UDP-encap: ESP(spi=0x088d7e27,seq=0x1), length 116
11:25:06.742918 IP LeopardServer.4500 > Home.61169: UDP-encap: ESP(spi=0x088d7e27,seq=0x2), length 116
And from there it's all normal.
What never works:
10.7 client to 10.7 server
iPhone to 10.7 server
The breakage seems to happen on 10.7 server here:
19:12:35.019173 IP Home.60846 > LionServer.4500: UDP-encap: ESP(spi=0x041b007d,seq=0x1), length 132
19:12:35.052641 IP LionServer.500 > Home.500: isakmp: phase 1 I ident
After that first ESP packet, the Lion Server responds with another phase 1 ident.
The Leopard server does not.
It may still be something in my setup, but, there's nothing to configure on 10.7 server other than "on" and "off" and some IP addresses, which I'm nearly certain isn't the issue...but who knows. Either the Lion Server ignores whatever is in that ESP packet, and starts over, or, iOS and OS X are sending it something it doesn't like and is forcing it to reset and start over.