I'm configuring a Mac as a server with a VPN service. So, I opened the ports listed as used by VPN in:. UDP 500 - 500 (+ESP and AH). UDP 4500 - 4500. Any UDP - 1701 (I got to these configs setup by the router wizard to setup the VPN ports) Now, problem number 1: I cannot connect to my VPN.
However, but if I set a new rule of Any UDP - Any UDP (so, every connection to my IP) I can successfully connect to the network. For obvious reasons, I don't want to have all ports available. Problem number 2: Even though with the Any UDP - Any UDP rule I can connect to the VPN, the OS X server says 'Reachability unknown'. But if I setup a rule Any TCP - Any TCP then it says properly that the VPN is reachable. For obvious reasons, I don't want to have this ruler either. So, my question is: what ports or configuration am I missing? For what its worth: I'm using an Hitron BVW3653 (provided by my ISP).
A VPN or Virtual Private Network is primarily used to connect Internet users to her or his work LAN from an Internet access point. High traffic telecommuting while utilizing a VPN can adversely affect the condition of the network while disrupting the connection of our regular residential subscribers. PPTP SERVER ----- ADSL MODEM, with the pptp port open, the vpn works great. I have added a cisco pix, PPTP SERVER ------ CISCO PIX ------- ADSL MODEM, the pptp port is open (i verify this with telnet), but the vpn fails to connect when checking the username/password.
UPDATE I now setup the port forwarding to:. UDP 500 - 500 (+ESP and AH). UDP 4500 - 4500. UDP 1701 - 1701 But the issue remains. As a side note, I can connect to the VPN if I'm in my local network so the server setup seems to be correct, it is just the port forwarding that is not working. Here's the current configuration I have so far (server is with static ip 192.168.1.200). First off, what protocol of VPN are you using?
OS X Server offers both L2TP (over IPSEC) and PPTP protocols, both of which use different ports. For L2TP you need ports 500 (UDP), 1701 (UDP), and 4500 (UDP). Forward these ports to the same ports internally. For PPTP, it would be ports 500, 1723 (TCP), and 4500, also forward the same internally. I don't know where it said to forward any UDP port to 1701, so I'm pretty sure that's your issue.
Make sure all your forwarding matches both internally and externally, unless it is necessary for some reason (such as using Apache on port 8080). Do the VPN logs show anything regarding any connections at all when you are only forwarding the three/four necessary ports?
OS X Server's 'Reachability' function is not always accurate, so do take it with a grain of salt.
Hi - Recently bought the WRT1900AC to replace a Billion 7800N. Very much enjoying the enhanced performance and range, however I'm having trouble getting my VPN server to work.
![Which Which](/uploads/1/2/5/4/125439956/936335179.png)
My VPN server is running on Mac OS X Server, behind the WRT1900AC. To allow traffic to access the L2TP server, I believe that I need to open the following ports/protocols to the Mac Server: UDP 500 UDP 1701 UDP 4500 Protocol 50 (ESP) This is the approach I took on the old Billion router and everything worked well.
However, I can't find a way to enable protocol 50 (ESP) on the WRT1900AC. I have also ensured that 'L2TP passthrough' is checked (whatever that is) but no luck. Any ideas welcome. Hi Chadster - I took your advice and went the OpenWRT route. I'm now running Chaos Calmer r45573 and it looks impressive. However, I'm still having trouble getting the VPN to work. I've set up UDP ports 500, 1701 and 4500 plus protocol 50 on the Network-Firewall-Port Forwards screen.
From the logs on my Mac, the incoming VPN sessions are seen, however the Mac appears to see multiple IP addresses trying to connect and finally disconnects with the message 'Maximum config requests exceeded'. 2 or 3 IP addresses are then seen to hang up. The Mac config hasn't changed since my previous router, when all worked fine, so I don't believe that it's a Mac config issue. Any advice would be welcome.
Cheers Chippy. Solved Just managed to fix it by rebooting my Mac after it had been up for a couple of weeks. Presumably having different routers in front of it was confusing it. For reference, I used the 'Port Forwarding' section to configure the ports and protocol required for L2TP.
Have to say I'm very impressed with my first experience of OpenWRT. Seems much more stable than the stock firmware; I'm now getting the hardware performance with a stable firmware - and the firewall features that I was missing. Thanks again, Chadster, for the suggestion.