Apple Event: May 7th at 7 am PT

Learn more

Add to your calendar 

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: barrrrrrrrrry
barrrrrrrrrry Author
User level: Level 1
1 points

Unable to connect to El Capitan server VPN from outside the network

Hi.


I am having problems connecting to my VPN from outside of my network. When testing internally connections succeed and I am able to use the VPN. However, from outside of the network using an external Wifi network or over 3G / 4G the connection fails every time. I have tested this using two Android devices, a Windows PC and a MacBook. I have included the server log file as it demonstrates the point of failure. Can anyone advise.


DNS Resolves to my static home IP fine but then fails at the point shown below.


My system spec is:


Mac Mini - mid 2010

El Caption 10.11

OSX Server 5.0.4(15S2259)


I am using an Apple Airport as my router which is handling DHCP and NAT. All required ports are open and automatically handled via Server



Thanks



Barry.


#Start-Date: 2015-10-10 10:41:47 BST
#Fields: date time s-comment
2015-10-10 10:41:47 BST Loading plugin /System/Library/Extensions/L2TP.ppp
2015-10-10 10:41:47 BST Listening for connections...
2015-10-10 10:43:26 BST Incoming call... Address given to client = 10.0.1.224
Sat Oct 10 10:43:26 2015 : Directory Services Authentication plugin initialized
Sat Oct 10 10:43:26 2015 : Directory Services Authorization plugin initialized
Sat Oct 10 10:43:26 2015 : publish_entry SCDSet() failed: Success!
Sat Oct 10 10:43:26 2015 : publish_entry SCDSet() failed: Success!
Sat Oct 10 10:43:26 2015 : publish_entry SCDSet() failed: Success!
Sat Oct 10 10:43:26 2015 : L2TP incoming call in progress from '<device_external_ip_address_is_displayed_here>'...
Sat Oct 10 10:43:26 2015 : L2TP received SCCRQ
Sat Oct 10 10:43:26 2015 : L2TP sent SCCRP
2015-10-10 10:43:46 BST   --> Client with address = 10.0.1.224 has hungup

OSX Server-OTHER, OS X El Capitan (10.11), OSX Server 5.0.4 (15S2259)

Posted on Oct 10, 2015 3:01 AM

Reply
29 replies
User profile for user: lexontuxi
lexontuxi
User level: Level 1
10 points

Oct 17, 2015 2:33 AM in response to barrrrrrrrrry

i am also having a problem reaching my vpn server (Server 5.0.4 (Build 15S2259)) from external networks since upgraded to 10.11:


For testing my server is in DMZ, all other services (mail, web,...) are working fine, only the vpn doesn't work. It looks like the server is not listening on port 4500 (L2TP) for incoming connections (tested with nmap from an external network).


The server also replies that the VPN service isn't reachable from the internet - but the service is on and listening for connections:


#Fields: date time s-comment

2015-10-17 11:16:45 CEST Loading plugin /System/Library/Extensions/L2TP.ppp

2015-10-17 11:16:45 CEST Listening for connections...

2015-10-17 11:17:51 CEST terminating on signal 15

#End-Date: 2015-10-17 11:17:51 CEST

#Start-Date: 2015-10-17 11:17:53 CEST

#Fields: date time s-comment

2015-10-17 11:17:53 CEST Loading plugin /System/Library/Extensions/L2TP.ppp

2015-10-17 11:17:53 CEST Listening for connections...

Oct 17 11:28:50 <host> servermgr_vpn[20169]: Connected to the Auth Service


the VPN was working fine before (no settings changed since the upgrade)...

any ideas ?


thx, Alex

Reply
User profile for user: SquirrelMac
SquirrelMac
User level: Level 1
5 points

Oct 19, 2015 2:49 AM in response to lexontuxi

I have the same issue as described, just i'm running Server 5.0.4 on Yosemite 10.10.5, which is a complete fresh install.


L2TP works fine internally, but not externally. DNS is correct both internally and externally. Checked network settings as Linc suggested.


PPTP works fine internally and externally. I opened up the DMZ just to ensure all ports were routing and that sadly made no difference to ext L2TP connections.


Noticed that in the vpnd.log when i try and connect externally on L2TP nothing registers.


Thanks
Darren

Reply
User profile for user: markhorrocks
markhorrocks
User level: Level 1
4 points

Oct 19, 2015 6:18 AM in response to SquirrelMac

I'm also having problems connecting to a Softether vpn server using the Mac L2TP client. This worked fine in Yosemite but not after upgrade to El Capitain. The error is the vpn server did not respond. The same connection works fine in ubuntu or android using lt2p and in windows using the softether client.

I added google dns (8.8.8.8, 8.8.4.4) to the dns tab in advanced settings but it still did not work.


No ports are blocked and I can ping the vpn server. My local LAN is class C and the vpn dns issues class B. The server is on a class A lan.

Reply
User profile for user: Brian Ridgway
Brian Ridgway
User level: Level 1
6 points

Nov 1, 2015 1:04 AM in response to AndreGB

I have been having problems connecting iOS devices using L2TP since upgrading to El Capitan and iOS9. When using previous L2TP settings in iOS or exporting config profiles from server.app I get a fail. However if I create new iOS L2TP config settings manually on the iOS device itself all appears to work well with my network being accessible from the outside.


Connection from Android devices using L2TP still does not work.

Reply

Unable to connect to El Capitan server VPN from outside the network

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up