Newsroom Update

Beginning in May, a special Today at Apple series titled “Made for Business” will offer small business owners and entrepreneurs free opportunities to learn how Apple products and services can support their growth and success. Learn more >

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: nathanspry
nathanspry Author
User level: Level 1
0 points

Lion Server VPN Service/Class C IPs/Bonjour

In order to deploy Lion Server's VPN service, you obviously are required to enter an IP range to assign. We are running a standard class C network here, with systems running on 192.168.1.x. The problem is that if a user is accessing the VPN from a remote location that also uses the same IP scheme, then they won't be able to connect. Is there a simple way to deal with this? Is the only way to fix the problem to re-assign every IP address on our network a more unique address scheme? We have a large network and that would be unwieldy.


Also, will it be possible to use Bonjour over the VPN? We want to be able to share network resources as if the user was physically connected to our LAN.


Thanks in advance for your answers!

Mac Pro, Mac OS X (10.7.3), Server

Posted on Jun 25, 2012 1:12 PM

Reply
8 replies
User profile for user: Camelot
Camelot
User level: Level 9
54,333 points

Jun 25, 2012 10:14 PM in response to Linc Davis

Bonjour doesn't work over a routed connection

actually, it does - or, at least, can do. It's called Wide-area bonjour, and it takes additional configuration on the server to make it work. Personally, I know of no one that's actually gone through the pain and hassle, but it is doable if you so desire. A quick google for 'wide area bonjour' for more details.

Reply
User profile for user: Camelot
Camelot
User level: Level 9
54,333 points

Jun 25, 2012 11:02 PM in response to Linc Davis

I know what Wide-Area Bonjour is. It has nothing to do with the OP's question


Actually, it does - it directly relates to the second part of the original question. In either case I was commenting as much on your (mis)statement about bonjour as the original post.


That said, Slinkware might provide a neater solution to the wider problem of IP address conflicts, although that's not as easy to deploy on a broad basis.

Reply
User profile for user: Kiwi Graham
Kiwi Graham
User level: Level 4
1,868 points

Sep 7, 2012 9:19 PM in response to Linc Davis

Linc Davis wrote:


Also, will it be possible to use Bonjour over the VPN?


Bonjour doesn't work over a routed connection. You would need to use something like this:


Slinkware

Thanks for this link Linc. From descriptions and reviews it sounds like exactly what I was looking for to propagate Bonjour service discovery to a remote Mac. Being a little naive I had set up an OS X Server VPN expecting Bonjour to "just work" once a remote Mac connected!

In particular the Slinkware web site has a detailed description on how to set up certificate authentication which improves security (geeky but very well detailed).

Reply

Lion Server VPN Service/Class C IPs/Bonjour

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up