I'm configuring a Mac as a server with a VPN service. So, I opened the ports listed as used by VPN in: • UDP 500 -> 500 (+ESP and AH) • UDP 4500 -> 4500 • Any UDP -> 1701 (I got to these configs setup by the router wizard to setup the VPN ports) Now, problem number 1: I cannot connect to my VPN. However, but if I set a new rule of Any UDP -> Any UDP (so, every connection to my IP) I can successfully connect to the network. For obvious reasons, I don't want to have all ports available. Problem number 2: Even though with the Any UDP -> Any UDP rule I can connect to the VPN, the OS X server says 'Reachability unknown'. ![]() But if I setup a rule Any TCP -> Any TCP then it says properly that the VPN is reachable. For obvious reasons, I don't want to have this ruler either. So, my question is: what ports or configuration am I missing? For what its worth: I'm using an Hitron BVW3653 (provided by my ISP). UPDATE I now setup the port forwarding to: • UDP 500 -> 500 (+ESP and AH) • UDP 4500 -> 4500 • UDP 1701 -> 1701 But the issue remains. The VPN server is attached to the Internet and the firewall is between the VPN server and the intranet. The firewall is attached to the Internet and the VPN server is between the firewall and the intranet. Typically 1723 and 443 TCP ports should be open, also your firewall/router/ISP must allow VPN/PPTP pass-through for PPTP VPN. How to unblock Port 500 for U-Verse to allow VPN to connect. Under the “Application Type” field hit the drop down box and select “PPTP virtual private network server”. Allow device application traffic to pass through firewall t, the You Internet embEing firewall pinholes. As a side note, I can connect to the VPN if I'm in my local network so the server setup seems to be correct, it is just the port forwarding that is not working. Here's the current configuration I have so far (server is with static ip 192.168.1.200). First off, what protocol of VPN are you using? OS X Server offers both L2TP (over IPSEC) and PPTP protocols, both of which use different ports. For L2TP you need ports 500 (UDP), 1701 (UDP), and 4500 (UDP). Forward these ports to the same ports internally. For PPTP, it would be ports 500, 1723 (TCP), and 4500, also forward the same internally. I don't know where it said to forward any UDP port to 1701, so I'm pretty sure that's your issue. Make sure all your forwarding matches both internally and externally, unless it is necessary for some reason (such as using Apache on port 8080). ![]() Do the VPN logs show anything regarding any connections at all when you are only forwarding the three/four necessary ports? OS X Server's 'Reachability' function is not always accurate, so do take it with a grain of salt.
0 Комментарии
Оставить ответ. |
АвторНапишите что-нибудь о себе. Не надо ничего особенного, просто общие данные. Архивы
Март 2019
Категории |