Lion Server - Can access web server, not VPN.

Similar Messages

• I have a time capsule connected directly to fiber connection. I have connected a windows server directly to TC and configured it for remote desktop connection. From my interanet I can access srvr but not from my home. What config I need on TC?

  I have a time capsule directly connected to fibre optic point out. All pcs and macs are connected wirelessly to the internet. I have connected a windows server pc to TC. When configured for Remote desktop connection, I can access windows server from within interanet but don't know how to access it from internet. I guess I need to change some settings in TC to get some ip adress for the remote desktop connection from my home. Anyone who can help me out? Appreciate it.
  Narmin

  I am a little lost now.. I have read again your title and your first post.. and they seem inconsistent.
  In the title you state.
  From my interanet I can access srvr but not from my home.
  Interanet is not a word I know.. I assumed intranet...are you talking about internet or intranet? And just to be clear say WAN or LAN.. !! Is your home part of the interanet??
  In the first post you state,
  I can access windows server from within interanet but don't know how to access it from internet.
  Now this is more normal.. the issue is not in the home at all, it is accessible from there but fails from internet. If this is correct, then you can do a few obvious things to determine where the problem is.
  But first I need to know are you actually testing from a different internet connection to your home lan.. you are not just trying the public IP from inside the LAN as that will fail due to the TC not doing NAT Loopback.
  I am also assuming the TC is the only router in the network, and has the public IP on the WAN interface.
  And I am also assuming you have turned on the ping responder and you can actually ping your public ip from the internet and get a response. This helps no end in figuring out where there are issues. Strange but I have no idea if there is a ping responder in the TC WAN so you might need to forward that as well. Also if you have a dynamic public ip address are you using dyndns or no-ip or some other service to connect.
  1. Test bypassing the TC.. plug the internet connection straight into the windows server,, and test if you have access. If yes, the TC is the problem.. if not, your setup on the windows server is wrong.. look at firewall in particular.
  2. Assuming from test 1 the TC is the problem, Post the screen shots of the port forwarding setup for us to look at.. that is by far the easiest way to check it out.
  There are lots of references to port forwarding in the TC.. eg
  http://must-know-mac.blogspot.com/2008/07/how-to-port-forward-time-capsule.html
  The things that generally go wrong are firewall on the computer that is accepting the port.
  The ISP doesn't allow connections on a particular port. (not likely in your case)
  The router is behind another router.. double NAT will kill any port forward.
  Upnp has already allocated a port.. not an issue as TC doesn't use upnp although a reboot of everything after you set port forwards is well worth it.. amazing how things don't stick properly without a reboot.
  IP on the receiving device is not static and so changes.
  Not enough or right type of ports are opened. This is always messier than it looks as one port is often not enough for two way communications.

• I can access Google, but not Gmail.

  Hi guys. I've been having trouble with my internet connection for as long as I've had my Mac (one year). For the longest time, I've repeatedly had to click the icon for Airport and then turn it off and back on again to recover my connection to Google Gmail and Google docs. These are the first sites to disappear, later I have trouble accessing other sites, this is corrected by turing off and then on Airport. But that is very frustrating, and I often have to do it over and over again. Also, I'm puzzled by the fact that my Skype connection is rarely bothered when access to others sites drops.
  I've been reading as much as I can find and trying the airport utility. Clearly I am stupid because things went from bad to worse. Now I can access Google, but not Gmail. I can access most parts of Apple.com, but when I tried to purchase the upgrade to OS 10.6, I couldn't view the page images. I found the same problem on a few other sites. When I tried to access Linkedin, I could get to the login page, but no further.
  In each case, I get the usual message: Safari can’t open the page “https://www.google.com/accounts/ServiceLogin?service=mail&passive=true&rm=false& continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fhl%3Den%26tab%3Dwm%26ui%3Dhtml %26zy%3Dl&bsv=1eic6yu9oa4y3&scc=1&ltmpl=default&ltmplcache=2&hl=en” because Safari can’t establish a secure connection to the server “www.google.com”.
  I've tried resetting Airport back to the factory settings. Now all I get is the blinking yellow light - I'm not sure what that means.
  I'm now connected via hardwire, but access is limited to very few sites, such as this one and Google. I can search google, but I can't access gmail. I can access everything on my windows computer through the same wired network.
  Message was edited by: WhidbeyTomas

  I am having this same problem, but it's not related to parental controls. I have to keep turning the airport on and off as well. Here (http://www.mac-help.com/forums/showthread.php?t=9802) is a post I made over at mac-help.. still waiting for a reply.
  What I've noticed is, the DNS is resolving correctly, but I cannot access certain sites. Regardless, I've tried Open DNS servers and still get the same result. It's not a specific browser. Certain sites go down in a few minutes after visiting them. Some go down faster than others. And others don't go down at all. Sites I've had problems with are Apple.com (to make this post I've had to turn the airport on and off continually), Gmail.com, Google.com, while Google.ca works fine.
  A solution would be great..

• Lion Server not handing out DHCP addresses to Snow Leopard client

  I have been pulling my hair out over this.
  Here is the layout
  Lion Server running on the newest Mac Mini and doing mail, DNS, DHCP, Software update and has a valid, not self assigned, certificate
  3 clients running Lion Desktop (2 iMACs and a MBP pro (all no more that a year old and all woth the current updates)
  1 client running Snow Leopard Desktop (last years 13 inch MBA)
  The 3 Lion clients can get dhcp fro mthe Lion server without any issue
  The SL client cannot get a DHCP address from the Lion server
  A tcpdump shows the DHCP request coming from the MAC address of the SL client but no response from the Lion Server and nothing showing a deny in the logs for the DHCP server or any other system/kernel logs. The Lion clients all show the request and reply for them. All 4 clients currently have a static assignment in DHCP but even if I remove them all and do auto-assign for everything or even each one individually, the SL client will not get an address both on the Wifi and Ethernet (I have the USB ethernet adapter).
  I also have an Aiport Extreme and if I use that for the DHCP server then all clients get the addresses. I know the DHCP server in the extreme cannot be shut down but if you give the extreme a static address then assign dhcp on the extreme to only give out one address and that is the same one that is statically assigned then it "thinks" it is out of addresses and no longer tries to assign addresses
  At first I thought there was a conflict between the extreme and the Lion server but as I mentioned above, tcpdump clearly shows the requests going right to the Lion server
  I'm usually pretty good at this kind of thing but this one has me stumped. I'm thinking bug, anyone else run into this yet?

  Ryan jones,
  > Having trouble with our dhcp server handing out IP addresses through the
  > Wireless Lan Controller.
  Has it ever worked? Is the Wireless controller configured to forward DHCP
  requests to your DHCP server?
  Anders Gustafsson (NKP)
  The Aaland Islands (N60 E20)
  Have an idea for a product enhancement? Please visit:
  http://www.novell.com/rms

• Lion Server not reading Active Directory Groups reliably

  I am trying to upgrade one of our XServes from Snow Leopard Server to Lion Server and am running into a strange issue with our Active Directory based users and Groups.
  The current Snow Leopard Server serving files from a XSan volume is running fine, though we find a very long Lag time for Windows users to connect. Once a few users have connected the lag seems to go away, but it is still not nearly as fast as Mac users connecting or Windows connecting to a PC server.
  So I have connected a second Xserve to the SAN and performed a clean install of Lion Server. Initially while it would find my Active Directory Groups it would not import any of the users, so obvioulsly no one could connect. In a last ditch effort I installed the beta of 10.7.4, which seemed to resolve the issue for a small group of test users. However as I expanded the test I found that some users would get a message that the were no resources available to them, or they didn't have the correct permissions. This is very strange as everyone is in the same group so should have the same permissions. As a test I took one of the user accounts and created a new share and gave him R/W permission to that share and suddenly all of the shares that he should have had permission to in the first place popped up.
  The only thing that I can think of is that we have such a large Active Directory structure that the authentication is timing out or reaching some user limit and stops looking. (we have over 50,000 users and thousands of groups spread through multiple OUs in the AD structure)
  The new Server.app in Lion looks nice, but it does not seem to have nearly the robustness of the previous Server Admin tools. For instance, I never needed or wanted to setup a "Golden Triangle" but with Lion it is required. Perviously I could search for AD users or groups and drag them from the search window to the share to assign permission, now even though I've imported the groups and users it needs to search the entire directory when assigning permissions - why can't it see the groups that are already there? Why can I run a dscl search and find a user or group instantly, but the Server.app hangs for 5 minutes and shows 0 results?
  Has anyone found a way to make Lion Server work in an enterprise environment?

  Yesterday morning I bound a 10.7.4 server to our AD, and in the afternoon I eventually saw all the AD users, groups, etc show in Workgroup Manager. Now, with dscl, I can see all the AD user and group records, and with Workgroup Manager, I can search the groups, users, and computers, but with the Server.app, when trying to create new group of the type "Imported group from another directory", the searches returned nothing. Directory Utility can show all the AD information also. Our AD has thousands of user record, and so it is reasonable that it may take some time for the Mac server to get all the info. But from the add users or groups interface, I just could not get any search results. What could be wrong then? 

• Lion server not netbooting Snow Leopard image

  I have a Lion server set up and I am trying to server Lion and Snow Leopard netboot images off of this singular server. I was able to create the Netboot images using SUI for both Lion and Snow Leopard. I dropped the Snow Leopard netboot image into the proper folder on the server yet it will not recognize that the Snow Leopard netboot image. Does anyone know how to get Lion server to recognize Snow Leopard image or if Snow Leopard images can be served from Lion Server?

  Apologies if this seems overly simplistic, but just to be very sure:  you say "only one Mac OS X is enabled".  Enabling is an active process, you have to do it.  I'm on vaca, so this is from memory, but I think in server admin, selecting netboot, then the far right icon which I think is settings gives you a sort of matrix of images.  On that page is a list of tabs across the top - again I think it is labeled images and is the far right, but one of them gives a page where there is a check box for enabling images.  you check that box and click save.  you are able to see the image on that page, check the enable box, click save and yet it still is not enabled?

• Adding Lion Server as VPN server to an existing network

  So here is my story.
  I have a network that uses a local IP range of 172.25.0.x and outside range of 80.242.156.x.
  My MacMini Lion Server has a 80.242.156.x IP and a 172.25.0.x Virtual IP on the same NIC.
  What i am trying to do is to get VPN Server to work when connecting directly to 80.242.156.x address, but that doesn't seem to work.
  Now, what i have been reading on every single forum is that people have a AEBS (Airport Exteme Base Station) and the Macmini Lion Server connected to it.
  My situation is that i have the Lion Server connected directly in a switch in the datacenter, do i really need an AEBS to get VPN to work?
  Because whatever i do, when i try to connect using my iPhone, iPad or even Mac Pro, it doesn't even respond to my connection attempt, so something is not coming through.
  Anyone with suggestions or have had a similar or even the same problem and know a possible solution?
  Cheers,
  Anwar

  Well, i don't have anything that could block it, i have it plain on the internet without firewall, i did that on purpose to see if there was anything blocking indeed, but still in this setup nothing...
  i have no problem whatsoever on other servers in the rack which are all Linux based servers, except for this MacMini which is giving me a real hardtime figuring out what the problem could be.
  I have checked everything i could, even the settings in terminal with serveradmin.
  I would actually think something in OSX is blocking the connection, but then again... that would be weird cause i don't have anything special installed that could do it, its practically empty (fresh installed) and the OSX firewall is disabled...
  (It's not a residential-class connection, the server is not at home, it's in a datacenter where nothing is blocked by default.)

• Lion server not responding

  I have a mac mini server which I upgraded from Snow Leopard Server to Lion Server, I noticed that it locked up every few days, but I was still able to reboot/restart and gain access again. I updated to 10.7.1 (server) and now I can connect to the system but none of the server tools will connect to the server system, either remotely or on the same system, tried using the local name, full DNS name, and local host 127.0.0.1 all ask for userid and password but fail to connect - Yes I am using the same admin password etc as the user on the system.
  So right now I have a server that I can't manage, anyone have any ideas?

  Your L2tp and pptp address range should should be out of the range of each other and outside of the scope of any dhcp or existing fixed IP addresses
  The correct ports need to be forwarded to your server if you're behind a NAT device
  The correct ports need to be open on any firewall your running
  If your connecting via domain name, the domain name has to resolve to your IP address from the Internet
  If your connecting via IP address you'll need a fix external IP address

• Why is Lion Server not available in UK App Store

  I am trying to upgrade my old Mac Mini (running Snow Leopard Server) to Lion + Server
  When I try to install Lion, it reports Lion Server must be present before installation starts.
  So I go App Store and in my purchases there is Lion Server. It reports 'Requires OS X 10.7'.
  If I click on the link 'Requires OS X 10.7'. App Store takes me to Mountain Lion app.... Grrr....
  If I click on OS X Lion Server (in my purchases) the App Store says. 'The item you've requested in not currently available in the UK Store'.
  I see Lion Server on the US App Store but not the UK one.
  Why is Lion Server removed from the UK App Store?

  A further update to this. I can still download Lion Server (from my purchases list) on a machine running Lion.
  But I cannot download Lion Server (from my purchases list) on a machine running Snow Leopard Server!!!!

• System preferences in lion server not responding

  My System Preferences iin Lion Server are not responding.
  when I try to open any application in the system preferences panel, it never opens
  How can I fix this?

  Boot with your bootable backup/clone and restore it. If you don't have one, boot with your install disc and restore your Time Machine backup from some point in the past before the problem cropped up. Don't have one of those either? Then, boot with the install disc and reinstall Snow Leopard. That should restore all functionality without mucking with anything else. Then, run Software Update to get to something other than the 10.6 that your profile is showing, namely 10.6.4, the latest version, repair permissions, and restart.

• I can access web but cannot sign into email from my laptop. I can sign into email from explorer, don't like it. Does anyone know what might be causing this?

  I have always used Firefox and for web browsing and accessing my email account. During the last 2 days I upgraded my email home page and had to sign on again.
  Since then, I can access the web using Firefox but cannot sign into my email, the sign in button seems to be locked
  I can access my email account through Explorer, and from an alternative PC.

  From your description that sounds like absolutely nothing happens, nothing moves I'd guess Adblock Plus extension might be blocking something, try disabling ADP at its toolbar icon, if you have the extension.
  If you are not saving cookies for google.com you could have problems with cookies which would be the next thing to check out.
  If you bring up http://www.google.com do things work, and do you really need to sign in to use Google at all -- just want to make sure it is really the sign-in.

• I can't connect to facebook. Keeps saying cannot connect to the internet but I am on the internet and can access web pages etc.

  I can't connect to facebook. It keeps saying cannot connect to the internet but I am connected as I can access we pages with no problem

  Hello there, Patrick.
  The following Knowledge Base article offers up some great steps to try when troubleshooting issues with an app you've downloaded to your iOS device:
  iOS: An app you installed unexpectedly quits, stops responding, or won’t open
  http://support.apple.com/kb/ts1702
  Thanks for reaching out to Apple Support Communities.
  Cheers,
  Pedro.

• IOS can't connect to Lion Server's VPN or navigate to /mydevices

  I've configured my host name, some seperate services for my VPN and now I'd like to introduce my iPad 2 to the mix as well.
  However each time I go to navigate to - http://server.myserver.private/mydevices, safari says the server cannot be found.
  Ontop of all this, I'm having a huge time trying to even connect the iPad to my VPN as well saying "VPN Connection - the server is unreachable. Try reconnecting"
  If anyone is able to give some sort of guidance, I'll be in their debt!

  Hi - I am also having the same iPad/VPN problem.
  Did you find any solution to this?
  Regards
  Michael

• HT201250 Lion server not backing up to time machine.

  Manual backups work.  States next scheduled backup but it never runs.  Any clues?
  Running latest OS X Lion and using an external hard drive as time machine backup.

  No hacks installed, only had server running for 4 days.  I waited and watched this morning for the 7:29 backup but nothing happend. No errors or status messages.
  The only entries in the ;og files at this time are ...
  1/22/12 7:29:00.754 AM ipfw:  65534 Deny TCP 192.168.1.108:50748 192.168.1.162:389 in via en0
  1/22/12 7:29:01.857 AM ipfw:  65534 Deny TCP 192.168.1.108:50748 192.168.1.162:389 in via en0
  1/22/12 7:29:03.035 AM com.apple.launchd.peruser.501: ([0x0-0x39f39f].com.apple.iCal.helper[58606]) The HOME environmental variable changed out from under us!
  1/22/12 7:29:03.035 AM com.apple.launchd.peruser.501: ([0x0-0x39f39f].com.apple.iCal.helper[58606]) In a future build of the OS, this error will be fatal.

• Firefox can access HTTPS but not HTTP sites

  Hi,
  All of a sudden last Friday afternoon I could not load any sites external to our corporate network over HTTP in firefox; HTTPS still works fine. Also IE doesn't have any problems.
  So far I've tried uninstalling and reinstalling, creating a new profile, disabling IPV6, disabling DNS prefetching and checking my firewall settings. I've also used wireshark to try and see what firefox is doing, but it seems that no traffic at all appears when an HTTP website is accessed, however accessing an HTTPS site does generate traffic.
  We use Windows firewall with advanced security; I can't change much though because it is controlled by policy.
  We also use McAfee for antivirus and Bluecoat for filtering; again I can't change anything here because they are either policy controlled or administered from elsewhere.
  I think I can rule out Bluecoat as other PC's on our site can and still are using Firefox 4 to access the web.
  Any help would be much appreciated.
  Many thanks
  Matthew Rose

  Two different sites, one with .info and one with .net.  One works perfectly without issue and they each have similar settings in Server, however one only seems to want to work using https prefix.  The sites are both different and therefore needs to be accessed with http at this point.  The problem is when I go to http://example.info it takes me to http://example.net which is not what needs to be occuring.  This occurs internally and externally.  Before the move I did my server was doing DNS as well and those settings have not changed or been modified except when I had to change their outside static IPs.