Skip navigation

L2TP VPN and Back to My Mac

4479 Views 3 Replies Latest reply: Dec 8, 2012 1:16 PM by QuickTimeX RSS
DanIsaacson Level 1 Level 1 (0 points)
Currently Being Moderated
Feb 13, 2012 5:44 PM

Can someone please confirm there is a conflict with the OS X Lion Server L2TP VPN and the Back to My Mac service.


I'm getting IKE packet errors on our VPN server and suspect someone on the network has Back to My Mac enabled.


Feb 14 12:12:12 server racoon[196]: IKE Packet: receive failed. (Responder, Quick-Mode Message 1).


"Authentication Failed" from the client side.  But after a few attempts it will connect... strange.

IPv4 IPv6 issues?


My router is non-Apple

and has the following NAT entries forwared to the Mac Server for the L2TP VPN


UDP 500

UDP 1701

UDP 4500


it also has UPNP enabled.


Does Back to My Mac use UPNP, IPv4, or IPv6 only?


Is Back to My Mac conflicting with the VPN service in Lion Server?

If so, WHY is this not documented?

Mac mini, Mac OS X (10.7.3), Lion Server (10.7.3)
  • Chris.Crisp Level 1 Level 1 (0 points)
    Currently Being Moderated
    Feb 17, 2012 11:08 PM (in response to DanIsaacson)

    i'm pretty sure it's conflicting with Back to My Mac. i'd been fiddling around with it for days why i couldn't establish a VPN connection on a VPN gateway (win2k8r2) behind Airport Extreme (Back to My Mac) enabled.


    i thought at first it was the firewall, but it was not, then i checked the ports, i even tried PPTP, but i couldn't establish a successful connection even though i have the same VPN setup as with the one in our workplace.


    i then called Apple Support about this issue, i asked what ports Back to My Mac are using, he told me a dozen of ports which includes the ports for L2TP (1701, 4500, 500). and some in PPTP ports too i think, i can't remember them all.


    it would be nice though if the two (VPN and Back to My Mac) can run without conflicts. but yea... i knew already at first when i first used Back to My Mac it's basically a VPN linked to your Apple ID. simple/good implementation by Apple but i wish they used different ports right?


    edit: actually it is documented, it is written somewhere in Apple Support that you have to turn off Back to My Mac/MobileMe to use VPN. i just read it the other day.

  • QuickTimeX Level 1 Level 1 (0 points)
    Currently Being Moderated
    Dec 8, 2012 1:16 PM (in response to DanIsaacson)

    This is so disgusting. This issue wasted me hours of time.

    Is it not possible for Apple to pick different ports?


More Like This

  • Retrieving data ...

Bookmarked By (2)


  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.